No evidence of access to other parts of the Tea environment were affected.
The women-only U.S. dating advice app Tea has suspended direct messaging following a series of security breaches.
After a misconfigured Firebase storage bucket with over a million private messages was disclosed, following the compromise of "a legacy data storage system" storing over 100,000 images last week, Tea has taken the affected system offline “to address the issue and out of an abundance of caution.”
It said: “At this time, we have found no evidence of access to other parts of our environment.”
According to
Reuters, Tea did not respond to requests seeking further comment but did say in a TikTok message that the FBI was investigating the circumstances around the breach.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
