Technology reporter
Getty ImagesMessaging has been turned off on the women’s dating safety app Tea, following a hack which has exposed thousands of images, posts and comments.
In a new statement the company said: “As part of our ongoing investigation into the cybersecurity incident involving the Tea App, we have recently learned that some direct messages (DMs) were accessed as part of the initial incident.”
The app, which allows women to do background checks on men they might date, first said it had been hacked in late July.
It’s a US-based women-only app with 1.6 million users, who have been told to expect further updates as more information becomes available.
“Our team remains fully engaged in strengthening the Tea App’s security, and we look forward to sharing more about those enhancements soon,” the company said.
“In the meantime, we are working to identify any users whose personal information was involved and will be offering free identity protection services to those individuals.”
A report from tech publication 404 Media claims some of the exposed messages include sensitive conversations around abortions and infidelity.
“Conversations could include names, details of past relationships, or other private material, opening the door to blackmail or emotional harm,” cybersecurity expert Rachael Percival told the BBC.
She said Tea users should accept free identity protection from the company as soon as it’s offered.
“It may include credit monitoring, fraud alerts, and identity theft insurance,” she said.
Images hacked
Kevin Marriott, senior manager of at cybersecurity firm Immersive, said Tea’s update will be “concerning for users who have shared personal details, addresses, and meet-up locations”.
“The fact that criminals potentially have both images and the associated account’s direct messages should raise the level of concern among users.”
Mr Marriott said users should remain vigilant as they wait to see what hackers plan to do with the stolen information.
Tea lets women check whether potential partners are married or registered sex offenders as well as run reverse image searches to protect against “catfishing”, where people use fake online identities.
One of the most controversial aspects of Tea is that it allows women to share information on men they have dated to “avoid red flags” – potentially abusive behaviours – but also highlight those with “green flag” qualities.
It previously revealed that hackers had accessed 72,000 images submitted by its users.
Some included images of women holding photo identification for verification purposes, which Tea’s own privacy policy promises are “deleted immediately” after authentication.
Tea said the breach affected members who signed up before February 2024.
The app has recently experienced a surge in popularity – as well as criticism from some who claim it is anti-men.
