This is why you don’t vibe code a webservice

At least they’re honest, they did spill tea.

A whole lot of tea.

"Stop attacking us guys we just want to do a little misandry" -Tea app

fuck off with that complacency

there's so much underlying rules for private communication between computer systems, this type of thing is pure neglect boardering on international.

there's no reason to think everything online should be open and available. we should all be allowed to be in private spaces, especially if it's advertised as a private space

Everyone is talking about the poor security practices, which is fair. Or they are talking about the appropriateness of such an app existing, which is also fair.

But the immediate take away should be, especially in today’s political environment, that we cannot and should not trust sensitive data that leaves our device, particularly if you are of any kind of non privileged group.

Ostensibly, a noble goal. Practice is a bit more fuzzy.

Also: nothing is ever new

People complaining here that security was to lax, people complaining in the next thread that the libre dev is the victim because security was to high.

Is it possible to get both balanced, yes. But it will never make everyone happy.

Just another story where victims go on to become absuers it seems.

I'm not going to hold it against women for having a private group to tell on predatory dudes when this existed and nobody ever faced any consequences. What We Learned About the 70K-Person Telegram Channel on How to Rape Women

The only thing that surprises me about this is that it didn’t happen earlier.

I'm way out of the dating game at this point, and also a man, so it's very likely that I'm just out of the loop

But I hadn't heard anything about this app until a couple weeks ago when I saw an article or two about it

Then about a week later this happened

So I kind of feel like maybe most of the assholes who did this were similarly unaware of it until it got some exposure and then it was on their radar.

I would certainly imagine that most women using this app probably weren't telling the angry misogynists in their lives about this app.

the entire UK government disliked this comment

You get 89 cents in the settlement. Do you prefer to get a direct deposit or a check?

Nah, they just go bankrupt.

Warning I'm going off memory and I'm too lazy to check this.

One of the articles on the first data leek mentioned it became big on the google play store shortly before the leek. It probably just wasn't around long enough for you to notice it.

I mean, it's on brand. The doxxing app is successfully doxxing people...

There are no private spaces online, your privacy is at the whim of whoever owns the servers and whatever government controls them.

Unless you're using end to end encrypted communication with people you know and trust you should assume that everything you do online has your actual name and face attached to it.

I do agree that it sucks.

There should be laws, with criminal consequences, that protect our privacy but essentially every government is of the opinion that actual privacy should never exist online because they think it's better to sacrifice everyone's privacy than to let a single criminal go undetected.

This is why you see all Western governments simultaneously running "think of the children" campaigns as they slowly manuver the Internet into requiring every device be identifiable and linked to a person.

This is why the end-to-end encrypted communication providers are also being pressured right now. Because with systems built using encryption to enforce the rules are actually private.

Governments know this, as they heavily rely on encrypted communication systems. They just don't want anybody else to have that privilege.

Wrong thread... ‍

It is negligence, but information workers have very little regulation when it comes to handling personal data (outside of specific fields, like healthcare and finance).

I say this as an information worker who handles a lot of personal data. Worst case scenario, I get fired and can't use them as a reference. Unless I'm intentionally stealing data and using it for crimes there's no risk of criminal penalties.

We needed privacy laws 20 years ago but the tech bros assured everyone that it would be fine and for a long time they were mostly responsible with our data. But now we're well into the enshittification of the Internet and the lack of regulation is allowing these kinds of harms to become common.

Though, in a sane regulatory framework Tea wouldn't be allowed to exist in the first place. The entire point of the site is to doxx people and share personal details about them without their consent.

Arguing that tea was for "telling on predatory dudes" is like saying backdooring encryption is to catch people spreading CP.