Comments on: Password Optional: Huge Security Breach Hits SpeedDate

By: DaynaV

DaynaV — Sat, 07 Feb 2009 00:52:08 +0000

There’s almost nothing good to say about these guys. I was checking them out and without my permission they grabbed my entire AOL directory and spammed them over and over. In fact, its still happening… even when my friends and family unsubscribe. And for my unfortunate friends who clicked that “yes” they knew me… their entire directories are now also getting spammed. Stay away from this site. Its one of the worst offenders I have ever seen.

By: Lei Jin

Lei Jin — Thu, 05 Feb 2009 21:26:48 +0000

Guys, cool down. People make mistakes, admittedly this one is pretty nasty, but even Google let that infamous / slip by their QA process.

By: diascanner

diascanner — Thu, 05 Feb 2009 15:20:33 +0000

yes, they call it a new set of features:

free login
free impersonating

By: Dating op de iPhone: SpeedDate > Nieuws > iPhoneclub.nl

Dating op de iPhone: SpeedDate > Nieuws > iPhoneclub.nl — Thu, 05 Feb 2009 11:59:35 +0000

[...] de dienst waarbij je soms geen wachtwoord hoeft in te vullen en gewoon in andermans profiel kunt kijken, is nu ook beschikbaar op de iPhone. [...]

By: Schmoo

Schmoo — Thu, 05 Feb 2009 10:19:10 +0000

Domain name FAIL.

By: dabien

dabien — Thu, 05 Feb 2009 06:04:34 +0000

what a good domain. what a waste. what-a-waste!

By: Jennifer Q.

Jennifer Q. — Thu, 05 Feb 2009 03:21:31 +0000

I reviewed this site when speaking to a recruiter and had to “date” a few rounds to give my thoughts.

Aside from the security issues, the experience really, really sucks. However, I am sure Speeddate will disagree. But still, it sucks more than anything I’ve seen in years. No lie! I’ve never been so interrupted with inappropriate pop-up notices.

I read this and went to see if I ever closed that account I registered under a fake everything.

Even closing the account sucks. Really! I was told to deactivate & clicked the button. Then I was asked to give feedback on what I like and don’t like about Speed date, so I gave a one line answer. Then, the interface told me my answer was too short and refused to “deactivate” the account. What? Requesting to deactivate and providing an answer to a question is not enough? My answer is not long enough?

Well, all I have to say is …

It really
ssssssssssss
uuuuuuuuuu
cccccccccccc
kkkkkkkkkkk
sssssssssssss
!!!!!!!!!!!!!!!!!!!

By: dating

dating — Wed, 04 Feb 2009 22:23:40 +0000

Maybe they’ll use it as their new marketing slogan;

“our users are more ‘exposed’ than any other dating site”

By: Screen Sleuth

Screen Sleuth — Wed, 04 Feb 2009 17:49:18 +0000

Passwords are so, like, 2006 anyway. Who needs ‘em?

Sad indeed…would you trust a site like this with your payment details?

By: pete

pete — Wed, 04 Feb 2009 17:18:29 +0000

Passwords? We no need no stinkin’ passwords!

This is SpeedDate, for crying out loud… too much time for passwords.

By: Free Online Dating

Free Online Dating — Wed, 04 Feb 2009 15:36:45 +0000

The number one aspect of any site is security.

By: Toronto Speed Dating - No Password Required! | Toronto Dating Scene

Toronto Speed Dating - No Password Required! | Toronto Dating Scene — Wed, 04 Feb 2009 14:50:38 +0000

[...] has the scoop about how, for a limited time, SpeedDate.com (an online speed dating service) had a major security [...]

By: Andy Kruger

Andy Kruger — Wed, 04 Feb 2009 14:33:02 +0000

It’s hard to believe these people are still around, seemingly with a fairly big userbase. After their bait and switch scam, sorry I mean issue, last year I would have hoped they would just go away.

I think it’s fairly obvious I am not a SpeedDate user, considering the history I have with them, but I do know one or two people who do use it despite my warnings.

It’s worth noting that I’m still waiting for SpeedDate.com to post a reply to the comments on my original blog post from September.

By: Steve Nimmons

Steve Nimmons — Wed, 04 Feb 2009 13:25:57 +0000

Makes you wonder if, where and how they are storing and protecting subscriber payment details. Time for an audit perhaps…

By: SpeedDate.com ‘da Güvenlik sorunu- Parolasız giriliyor « Bay Bedava - Netten Başlıklar

Wed, 04 Feb 2009 09:59:27 +0000

[...] [...]

By: Se connecter sans mot de passe c’est possible « The IT mood

Se connecter sans mot de passe c’est possible « The IT mood — Wed, 04 Feb 2009 09:37:24 +0000

[...] Plus d’infos ici. [...]

By: Ashu

Ashu — Wed, 04 Feb 2009 09:01:49 +0000

this is not good.

By: Peter Urban

Peter Urban — Wed, 04 Feb 2009 08:33:09 +0000

That’s crazy.

By: kjlk

kjlk — Wed, 04 Feb 2009 07:13:03 +0000

ytyutu

By: When

When — Wed, 04 Feb 2009 06:41:59 +0000

is sissy ass spit boy coming back to work??

By: lazysupper

lazysupper — Wed, 04 Feb 2009 06:35:59 +0000

Agreed… except they should be mentioned as a risk.

I got “tricked” into joining them through FB last year… by what looked like an invitation from a known friend to something that was NOT SpeedDate.

By: Nikolay Kolev

Nikolay Kolev — Wed, 04 Feb 2009 06:32:16 +0000

They should not be covered on TechCrunch as a Web 2.0 startup – they are scumbags and their practices are not in the spirit of the Social Web.

By: Nikolay Kolev

Nikolay Kolev — Wed, 04 Feb 2009 06:29:42 +0000

This year they are converting My Starbucks Facebook App to SpeedDate. At some point, I thought somebody hacked into My Starbucks app. They have to be permanently banned from Facebook as this is a totally unfair business practice!

By: sam

sam — Wed, 04 Feb 2009 06:27:06 +0000

whew, speeddate has got to be one the most dubious companies out there – they bait and switch FB apps to get users and now this…

anyone who signs up for their service is an idiot.

By: Janes

Janes — Wed, 04 Feb 2009 06:17:50 +0000

I would guess the implementation was just simply receive user/pwd pair then query the user table of the database to find a match. I would suspect the site was an easy target of SQL injection as well.

http://xrl.us/jugargame