In a letter to Sen. Ron Wyden, Match Group, Tinder’s parent company publicly announced that it will now begin encryption of photos exchanged between its application and Tinder’s servers. The said changes were implemented in the month of February as a result of the disclosure of an attack which have allowed hackers to view user’s profile pictures and swipe actions.
So, um, this is pretty weird. Apparently Senator Wyden just got Tinder to properly encrypt your swipe data, so you can all get it on in private. pic.twitter.com/BniAVUi77Q
— Matthew Green (@matthew_d_green) June 29, 2018
Sen. Ron Wyden had written a letter to Tinder in February in which he had requested that the company encrypt user’s photos. According to the response letter by Tinder, they had apparently already implemented this feature on 4th February but had now introduced a separate privacy feature which converts all swipe data to the same size. The swipe data’s size was employed by security researchers to demarcate actions from each other. This change however was not applied until 19th June.
Does this actually mean anything for the actual user? The answer to this query is that there is nothing much in this change for the user except that they can rest at ease knowing that potential hackers would not be able to view their encrypted profile pictures. In spite of whether or not the profile pictures are sensitive, but it ensures that the picture remains for the eyes of the Tinder user only.