Lunduke
News • Science & Tech
The Tea App Breach - 60GB of Personal Info
Selfies, Drivers Licenses, & Locations. All made publicly available by the developer.
July 25, 2025
post photo preview

The “Tea App” — an online dating app marketed as a dating tool that “protects women” — has been hacked. And a lot of data has been exposed. An extreme amount.

Not the first major breach this year. And it certainly won’t be the last.

 

First published over on 4Chan (of course), the “hack” of Tea App wasn’t even really much of a “hack”. The developers of Tea App apparently simply left the user data open for the world to download at their leisure.

And Tea App was becoming pretty popular — which means roughly 60 GB of user data was made available before the developers finally thought about locking things down.

 

What kind of data was made publicly available — because, presumably, the developers simply didn’t think about “security” much — by this Tea App Hack?

Selfies. Drivers licenses. All manner of private information which will, no doubt, be exploited by unscrupulous types over the days to come.

 

Even worse — meta data appears to have been preserved on uploaded photos. Meaning that many of the user selfies included location data (in addition to the address on the drivers license). Which said unscrupulous types have already begun using to create maps of Tea App users.

 

The developers of Tea App have put out a statement which says 59,000 images used for “account verification” were made available (read: Government ID). Which would already be catastrophic… however a quick look at details of the data (including the file size alone) would suggest that number could be much, much larger.

Here is the full statement from the developer:

 

Which brings us to an important lesson which we — as humans — never seem to learn:

If user data is stored, it will get hacked.

It’s simply a matter of time.

There are currently close to 15 Billion (with a B) accounts listed on Have I Been Pwned. And those are simply from hacks and breaches which were reported to that one website.

 

The reality is, the vast majority of hacks and data breaches are never made publicly known. Either by the people doing the hacking, or by the company / government which got hacked.

As systems continue to grow ever more complex and interconnected — and more systems become AI-developed (aka “Vibe Coded”) — these hacks and breaches become easier to pull off.

Combine that with the ever-expanding quantity of data — and the growing number of services storing it — and we are quickly reaching a point where everyone will have at least some of their data breached at some point. For some people it will happen regularly. Repeatedly.

And those will just be the breaches we find out about.

The only way to minimize the damage of such hacks & breaches is to minimize the amount and type of data stored, long term, by a service.

  • Need pictures of government ID for age verification? Delete that picture immediately after verification.

  • Need payment and shipping information? Delete all of it immediately after payment is processed and shipment is verified.

  • Need location data (GPS, IP, etc.)? Delete it immediately once done with it.

You get the point. Unless a piece of personal data is absolutely 100% necessary, delete it.

It’s hard for a hacker to obtain files… that aren’t there.

community logo
Join the Lunduke Community
To read more articles like this, sign up and join my community today
5
What else you may like…
Videos
Podcasts
Posts
Articles
Microsoft's Project Aion (AI Desktop) Leaked Demo Video

This leaked video shows Microsoft's AI centric vision for a future OS. No native (legacy) Windows software. All web based, and all AI.

NeXTStep, Emacs, & Desqview/X Walls:
https://lunduke.substack.com/p/vim-beats-emacs

Get on The Wall with a Massively Discounted Lifetime Sub:
https://lunduke.substack.com/p/50-off-yearly-and-massively-discounted

More from The Lunduke Journal:
https://lunduke.com/

00:22:14
Microsoft Adopts Rust CoreUtils Clone... for Windows (Not a Joke)

Those increasingly buggy, not yet complete, Rust clones of the GNU CoreUtils? The ones Ubuntu ships? Microsoft is now officially maintaining them for Windows.

Massively Discounted Lifetime Subs Through June:
https://lunduke.substack.com/p/50-off-yearly-and-massively-discounted

More from The Lunduke Journal:
https://lunduke.com/

00:13:53
Debian Replacing GNU Coreutils with Rust Clones?

Is Debian going the way of Ubuntu, dropping tested code in favor of untested Rust clones? It's looking that way.

NeXTStep, Emacs, & Desqview/X Walls:
https://lunduke.substack.com/p/vim-beats-emacs

Get on The Wall with a Massively Discounted Lifetime Sub:
https://lunduke.substack.com/p/50-off-yearly-and-massively-discounted

More from The Lunduke Journal:
https://lunduke.com/

00:14:58
November 22, 2023
The futility of Ad-Blockers

Ads are filling the entirety of the Web -- websites, podcasts, YouTube videos, etc. -- at an increasing rate. Prices for those ad placements are plummeting. Consumers are desperate to use ad-blockers to make the web palatable. Google (and others) are desperate to break and block ad-blockers. All of which results in... more ads and lower pay for creators.

It's a fascinatingly annoying cycle. And there's only one viable way out of it.

Looking for the Podcast RSS feed or other links? Check here:
https://lunduke.locals.com/post/4619051/lunduke-journal-link-central-tm

Give the gift of The Lunduke Journal:
https://lunduke.locals.com/post/4898317/give-the-gift-of-the-lunduke-journal

The futility of Ad-Blockers
November 21, 2023
openSUSE says "No Lunduke allowed!"

Those in power with openSUSE make it clear they will not allow me anywhere near anything related to the openSUSE project. Ever. For any reason.

Well, that settles that, then! Guess I won't be contributing to openSUSE! 🤣

Looking for the Podcast RSS feed or other links?
https://lunduke.locals.com/post/4619051/lunduke-journal-link-central-tm

Give the gift of The Lunduke Journal:
https://lunduke.locals.com/post/4898317/give-the-gift-of-the-lunduke-journal

openSUSE says "No Lunduke allowed!"
September 13, 2023
"Andreas Kling creator of Serenity OS & Ladybird Web Browser" - Lunduke’s Big Tech Show - September 13th, 2023 - Ep 044

This episode is free for all to enjoy and share.

Be sure to subscribe here at Lunduke.Locals.com to get all shows & articles (including interviews with other amazing nerds).

"Andreas Kling creator of Serenity OS & Ladybird Web Browser" - Lunduke’s Big Tech Show - September 13th, 2023 - Ep 044
6 hours ago

Just saw this over on Level1!
So I asked myself: If I were designing an OS from scratch, how would I do it differently?

And so I designed and developed my own kernel and userspace, and the result is my experimental open-source system — LiberSystem :slight_smile:

A microkernel OS written in Rust, based on typed objects, capability-based security, isolated services/drivers, and explicit volumes instead of classic mount points.

I do not see it as a replacement for Linux, more as an experiment.

I would be interested to hear what you think: does this direction make sense to you, or is the Unix model still the best approach in your opinion?

More info about my project: libersystem dot com
Source code on GitHub: libersoft-org/libersystem

5 hours ago

Energy Engineer Explains: The Math Behind "AI Will Take Your Job" Is Laughably Wrong - YouTube

6 hours ago

Apple loses gatekeeper ruling appeal in the EU. They are still classified as a gatekeeper in the EU for the way the IOS app store works.

Apple has lost its legal challenge against EU rules designating it as a gatekeeper under an EU law requiring some of the world’s largest technology companies to open their platforms to greater competition.
The EU’s Luxembourg-based General Court said on July 8 that the EU was correct to classify Apple back in 2023 as a gatekeeper in relation to its App Store and iOS.
Under the bloc’s Digital Markets Act (DMA), companies designated as gatekeepers must follow rules intended to make digital markets more open and give rivals a fairer chance to compete. The court said the EU correctly treated Apple’s App Stores across different devices as a single core platform service.

https://www.theepochtimes.com/world/apple-loses-eu-court-fight-over-app-store-gatekeeper-rules-6058868

Vim beats Emacs!

Well, we’ve done it.

We’ve answered the eternal question: “Which Lunduke Journal Lifetime Subscriber Wall would fill with names quicker? Emacs or Vim?”

The answer, it turns out, is “Vim”. And it takes just 8 days.

 

A hearty “Thank You” to everyone who supports The Lunduke Journal by getting Lifetime Subscriptions (massively discounted throughout July) and getting on these walls! You make all of this possible!

Now. How long will it take for Emacs to fill up (matching the same number of names as the Vim Wall)?

Well, right now the Emacs Wall is a hair over 2/3rds of the way full. So we’ll find out!

Welcome NeXTStep Wall!

With the closing of the “Vim” Wall (and the BeOS Wall only having the space for 1 name left), now seemed like a good time to add a new retro computer wall: The NeXTStep 1.0 Wall.

Right now, there are 4 Walls available to add your name to (*cough* massive discount *cough*).

  • NeXTStep (just opened)

  • Emacs (about 2/3rds full)

  • BeOS R5 (1 spot left)

  • Desqview/X (1/2 full)

 

Once again, huge thanks to everyone who supports The Lunduke Journal!

-Lunduke

Read full Article
Lunduke's Week in Tech : June 28 - July 4, 2026

Lunduke’s Thoughts of The Week

Yesterday was the 4th of July.

As such, time that I normally would have spent writing up some thoughts on the Tech News of the Week (tm) was, instead, spent eating hamburgers, watching fireworks, and generally goofing off with my kids.

So allow me to briefly summarize my thoughts using as little effort as possible:

Rust is weird, Sony sucks, and America is awesome.

… Yup. That just about covers it.

I hope all of my fellow Americans had a truly splendid Independence Day.

Biggest Tech Stories - June 28 - July 4, 2026

Here are the major stories from the last week, with direct links to X and Substack.

See Lunduke.com for all other platforms (Rumble, RSS Audio Podcast, etc.).

  • Git Takes Another Step Towards Making Rust Mandatory (X, Substack)

  • 74 Million User Accounts Exposed in Breaches During June (X, Substack)

  • BCacheFS Adding Rust Dependency Even Though “Rust doesn’t have a stable ABI” (X, Substack)

  • Git Without Rust From Dev of XLibre (X, Substack)

  • Sony Says No More Physical PlayStation Games (X, Substack)

  • Ubuntu Sponsors Rust Clone Foundation (X, Substack)

  • Like Computers? Thank America. (X, Substack)

Huge thank you to all of The Lunduke Journal’s subscribers. You make all of this possible.

-Lunduke

 
Read full Article
post photo preview
Last call for Emacs & Vim Walls!

The “Emacs” & “Vim” Lunduke Journal Lifetime Subscriber Walls are on track to be full some time tomorrow (Monday) afternoon!

If you want to get your name on one of these, chop chop!

 

As soon as these Walls are full, I will update Lunduke.com (check the bottom) and send out the final result.

Will “Emacs” or “Vim” be the first to fill up?

I’ll let you in on a secret: It’s going to be very close.

  • So if you already have a Lifetime Subscription (and are not on any other Lifetime Wall), email me (bryan at lunduke.com) and let me know which Wall you want to be listed on.

  • Or grab a new Lifetime Subscription (scroll down, the details are below). They’re mega discounted and it takes 60 seconds.

Either way. You’ve gotta move quick to get on one of those two Walls.

How to Grab a Discounted Lifetime Subscription:

Through the end of July, Lifetime Subscriptions are only $125 (regularly $300).

And you only pay once. For life. Which means that every month, the “cost per month” gets lower and lower. Save money, and show your support for The Lunduke Journal at the same time. Win-win.

There are 3 different ways to pick up a Lunduke Journal Lifetime sub (Substack, Locals, & Bitcoin). All of them work great and are listed below. Choose whichever is easiest for you!

Get a Lifetime Subscription via Locals:

  1. Go to Lunduke.Locals.com/support.

  2. Select “Give Once“.

  3. Enter “125“ into the amount field.

  4. After checking out, Lunduke will toss you an email once your account is set to full lifetime status. (This usually happens within a few hours.)

Get a Lifetime Subscription via Substack:

  1. Go to Lunduke.Substack.com/subscribe.

  2. Select the “Lifetime Subscription” option.

  3. After checking out, Lunduke will toss you an email once your account is set to full lifetime status. (This usually happens within a few hours.)

If you would also like full, Lifetime access to Lunduke.Locals.com (which is included):

  1. Make a free account on Lunduke.Locals.com.

  2. Email “bryan at lunduke.com” with the email address you use on both Substack and Locals (can be different email addresses).

  3. Lunduke will toss you an email once your account is set to full lifetime status on Locals.

Get a Lifetime Subscription with Bitcoin:

Bonus: Save an extra $10 with the Bitcoin option, as Bitcoin processing has fewer fees associated with it.

bc1qyjakve8fywm8pz2v99v57yhjj0vzr2vjze6fcq

  • Email “bryan at lunduke.com” with the following information: What time you made the transaction, how much was sent (in Bitcoin), and the email address you use (or plan to use) on Locals.com or Substack.com.

-Lunduke

Read full Article
See More
Available on mobile and TV devices
google store google store app store app store
google store google store app tv store app tv store amazon store amazon store roku store roku store
Powered by Locals