Despite Years of Criticism, OkCupid Fails to Ensure User Data is Safeguarded, EFF Says
OkCupid hasn’t implemented HTTPS sitewide to ensure user data is safeguarded, three years after the Electronic Frontier Foundation “first called out” the site, wrote EFF Activism Director Rainey Reitman in a blog post Friday. “For users who haven’t upgraded to…
Sign up for a free preview to unlock the rest of this article
Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.
paid accounts, their emails, chat sessions, searches, clicked links, pages viewed, and usernames are transmitted over the Internet in unencrypted plaintext, where they can be intercepted and read by anyone on the network.” OkCupid has enabled some HTTPS encryption on its site for those who pay to use the site and during the initial log in, she said. Failing to enable HTTPS across the entire site leaks a lot of data about most users, she said. Reitman encouraged the public to sign a petition started by Fight for the Future (see 1509110041) to “pressure the company into doing the right thing.”