Close Menu
  • Home
  • UNSUBSCRIBE
  • News
  • Lifestyle
  • Tech
  • Entertainment
  • Sports
  • Travel
Facebook X (Twitter) WhatsApp
Trending
  • Diagnostic dilemma: A woman heard voices for years — but not because of psychosis
  • Euclid telescope discovers the 2 most ancient monster black holes in the universe ‪—‬ each brighter than a trillion suns
  • 2,500-year-old tomb of a ‘warrior prince’ with chariot and helmet discovered on Italy’s Adriatic coast
  • ‘One of the oldest gravestones of a free Black person in America’ discovered in Boston
  • 6,000-year-old broken ribs discovered in Syria may be one of the oldest known cases of child abuse in the world
  • A physicist built a ‘mini-universe’ out of ultracold atoms and watched time being born inside it.
  • Are CAPTCHAs obsolete in the age of AI?
  • Colorful ‘painting-like’ ripples cover an ancient seafloor structure the Bahamas — Earth from space
Facebook X (Twitter) WhatsApp
Baynard Media
  • Home
  • UNSUBSCRIBE
  • News
  • Lifestyle
  • Tech
  • Entertainment
  • Sports
  • Travel
Baynard Media
Home»Tech»Lovense has finally fixed its account takeover problem
Tech

Lovense has finally fixed its account takeover problem

EditorBy EditorAugust 3, 2025No Comments2 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email

Lovense is well-known for its selection of remote-controlled vibrators. It’s slightly less known for a massive security issue that exposed user emails and allowed accounts to be wholly taken over by a hacker without even needing a password. Fortunately, both issues have been fixed, but it didn’t happen without some drama. 

As the story goes, security researcher BobDaHacker (with some help) accidentally found out that you could uncover a user’s email address pretty easily by muting someone in the app. From there, they were able to figure out that you could do this with any user account, effectively exposing every Lovense user’s email without much effort. 

SEE ALSO:

Discord user data leak resurfaces on hacker forum as third-party service disputes breach

With the email in hand, it was then possible to generate a valid gtoken without a password, giving a hacker total access to a person’s Lovense account with no password necessary. The researchers told Lovense of the issue in late March and were told that fixes were incoming. 

Mashable Light Speed

In June 2025, Lovense told the researchers that the fix would take 14 months to implement because it did not want to force legacy users to upgrade the app. Partial fixes were implemented over time, only partially fixing the problems. On July 28, the researchers posted an update showing that Lovense was still leaking emails and had exposed over 11 million user accounts. 

“We could have easily harvested emails from any public username list,” BobDaHacker said in a blog post. “This is especially bad for cam models who share their usernames publicly but obviously don’t want their personal emails exposed.”

It was around then that the news started making its way around the news cycle. Other researchers began reaching out to show that the exploit had actually been known as far back as 2022, and Lovense had closed the issue without issuing a fix. After two more days in the news cycle, the sex toy company finally rolled out fixes for both exploits on July 30. 

It’s not Lovense’s first roll in the mud. In 2017, the company was caught with its proverbial pants down after its app was shown to be recording users while they were using the app and toy. Lovense fixed that issue as well, stating that the audio data was never sent to their servers.

Topics
Apps & Software
Sex Toys

Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleHungarian GP: McLaren left facing Oscar Piastri-Lando Norris strategy dilemma after Charles Leclerc’s shock pole | F1 News
Next Article SummerSlam 2025: Jey Uso, Roman Reigns take care of Bron Breakker, Bronson Reed
Editor
  • Website

Related Posts

Tech

iPhone exploit DarkSword has been released in the wild

March 24, 2026
Tech

The U.S. router ban: Everything you need to know

March 24, 2026
Tech

Underage sexual content, self-harm info targeted by OpenAI’s new open-source prompts

March 24, 2026
Add A Comment

Comments are closed.

Categories
  • Entertainment
  • Lifestyle
  • News
  • Sports
  • Tech
  • Travel
Recent Posts
  • Diagnostic dilemma: A woman heard voices for years — but not because of psychosis
  • Euclid telescope discovers the 2 most ancient monster black holes in the universe ‪—‬ each brighter than a trillion suns
  • 2,500-year-old tomb of a ‘warrior prince’ with chariot and helmet discovered on Italy’s Adriatic coast
  • ‘One of the oldest gravestones of a free Black person in America’ discovered in Boston
  • 6,000-year-old broken ribs discovered in Syria may be one of the oldest known cases of child abuse in the world
calendar
July 2026
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  
« Jun    
Recent Posts
  • Diagnostic dilemma: A woman heard voices for years — but not because of psychosis
  • Euclid telescope discovers the 2 most ancient monster black holes in the universe ‪—‬ each brighter than a trillion suns
  • 2,500-year-old tomb of a ‘warrior prince’ with chariot and helmet discovered on Italy’s Adriatic coast
About

Welcome to Baynard Media, your trusted source for a diverse range of news and insights. We are committed to delivering timely, reliable, and thought-provoking content that keeps you informed
and inspired

Categories
  • Entertainment
  • Lifestyle
  • News
  • Sports
  • Tech
  • Travel
Facebook X (Twitter) Pinterest WhatsApp
  • Contact Us
  • About Us
  • Privacy Policy
  • Disclaimer
  • UNSUBSCRIBE
© 2026 copyrights reserved

Type above and press Enter to search. Press Esc to cancel.