A series of unpatched security vulnerabilities in Lovense's companion app for connected adult toys has left users exposed to potential privacy breaches and account takeovers. The app, used to control Bluetooth-enabled devices remotely, reportedly leaks user email addresses through its API and contains authentication flaws that could allow unauthorized access to accounts.
Security researchers first identified these issues months ago, notifying Lovense about the vulnerabilities through proper disclosure channels. However, the company failed to implement fixes, leaving the same security gaps open. The email leak vulnerability exposes users' registered email addresses through simple API requests, while the authentication flaw could enable account access without requiring password verification.
This situation is particularly concerning given the sensitive nature of Lovense's products. Users of intimate devices have heightened privacy expectations, and exposed email addresses could reveal personal information about their sexual preferences and habits. The account takeover risk compounds this privacy threat, potentially allowing malicious actors to gain control of devices or access chat histories and other personal data stored in the app.
The persistent vulnerabilities raise questions about Lovense's commitment to user privacy and data security. In the IoT space, particularly for intimate devices, manufacturers must prioritize security by design and respond promptly to identified vulnerabilities. The cybersecurity community has expressed frustration with companies that ignore researcher disclosures, as this pattern puts users at unnecessary risk while eroding trust in connected devices.
Security professionals recommend that Lovense users enable two-factor authentication where available and consider using dedicated email addresses for sensitive apps. Until the company addresses these vulnerabilities, users should be aware that their data may remain exposed to potential threats.
Comentarios 0
Comentando como:
¡Únete a la conversación!
Sé el primero en compartir tu opinión sobre este artículo.
¡Inicia la conversación!
Sé el primero en comentar este artículo.