The Tea app data breach has grown into an even larger leak, with the stolen data now shared on hacking forums and a second database discovered that allegedly contains 1.1 million private messages exchanged between the app's members. On Friday, an anonymous user posted on 4chan that Tea used an unsecured Firebase storage bucket to store drivers' licenses and selfies uploaded by members to verify they are women, as well as photos and images shared in comments. This database contains much more recent data, ranging from 2023 to last week, and reportedly includes messages discussing sensitive topics, such as those about abortions, cheating husbands, and two-timing boyfriends. What was meant to be a safe space for women has now become a tool to embarrass them, with someone even creating a “facesmash”-style site where visitors can rate the selfies exposed in the leaked data. "A legacy data storage system was compromised, resulting in unauthorized access to a dataset from prior to February 2024," reads a security breach announcement. Threat actors have now begun sharing torrents of the leaked data on hacking forums, potentially exposing the app's members to social engineering attacks. BleepingComputer has confirmed that the shared data contains driver's licenses, selfies, and message attachments. To make matters worse, 404 Media now reports that an additional database was found containing 1.1 million private messages sent between users on the Tea platform. In total, over 59 GB of data was exposed in the leak, with Tea confirming in a public statement that it affects users who signed up before 2024. The user shared a Python script that could be used to download the data from the now-secured storage bucket. According to 404 Media, it's possible to identify users based on social media profiles, phone numbers, or other personal details revealed in the messages.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 28 Jul 2025 20:55:19 +0000