Dating app OKCupid fixed serious security vulnerability after alert

July 29, 2020
  • Threat actor generates a link containing a payload that initiates the attack.
  • Threat actor sends the link to the victim, or publishes it in a public forum.
  • Once the victim touches or clicks the link, the malicious code is executed, resulting in data exfiltration.