Some of OkCupid’s users have reported that their accounts have been hacked, although the dating site is denying it has experienced a security breach.
A user who contacted reporters revealed that a hacker broke into his account and changed his password, as well as his email address on file, so that he couldn’t reset his password. OkCupid also never sent an email to confirm the address change, and was unhelpful when its customer reached out for assistance.
“Unfortunately, we’re not able to provide any details about accounts not connected to your email address,” said OkCupid’s customer service in response to his complaint. The hacker then started to harass the user via text messages from his phone number that was obtained from one of his private messages.
And this doesn’t seem to be an isolated incident. Reporters found other people who have complained that their accounts had been hacked, with one able to get his account restored after “quite the battle.”
“It was two days of constant damage control until [OkCupid] finally reset the password for me,” he said.
Despite the user complaints, the site is denying a breach.
“There has been no security breach at OkCupid,” said Natalie Sawyer, a spokesperson for OkCupid. “All websites constantly experience account takeover attempts. There has been no increase in account takeovers on OkCupid.”
In fact, the company says on its support pages that account takeovers often happen because someone obtains a user’s login information. “If you use the same password on several different sites or services, then your accounts on all of them have the potential to be taken over if one site has a security breach.”
However, some of the users said that their OkCupid passwords were unique only to that account, and were not used for other sites or apps. When reporters asked OkCupid how it will prevent future account hacks, the spokesperson said the company had “no further comment.”