Security Researchers at VPNMentor discovered a DOM-XSS bug in Branch.io, this bug affected over 685 million users, these users visit sites like Tinder, Shopify, and Yelp. They also suspected that the flaw could take advantage of vulnerabilities in Tinder profiles, as there was one found to have multiple client side vulnerabilities.
Although the endpoint was owned by Branch.io, and not Tinder, they were still able to put out a timely patch and shore up the hole.
That was the news, take it easy, peace.
-----Sh7nk-Z0id
01001001 00100000 01000001 01001101 00100000 01011010 01001111 01000100 01001001 01000001 01000011