Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

FBI Arrests Man Accused of Using Steam Games to Empty Victims’ Crypto Wallets

Indian AI coding startup Emergent goes unicorn with $130M Series C

Zoox issues software recall after a robotaxi was confused by heavy smoke

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    Patreon Stops Asking AI Bots Not to Scratch — and Starts Blocking Them

    17 July 2026

    Roblox is launching an AI-powered game creation feature on its mobile app

    17 July 2026

    Google’s AI feature now lets you connect and interact with select apps

    16 July 2026

    Applied Computing wants to give oil and gas operators an artificial intelligence model for the entire plant

    16 July 2026

    Anthropic, Blackstone bets next trillion-dollar AI business is implementation, not just models

    15 July 2026
  • Apps

    Newsletter platform Beehiiv now lets subscribers chat with each other, adds AI

    17 July 2026

    Google Vids now lets you star in your own AI videos

    17 July 2026

    Beehiiv’s newsletter platform now lets subscribers chat with each other, adds AI

    16 July 2026

    Apple bans home services from its upcoming Maps ads

    16 July 2026

    Whatnot acquires Shaped to provide live, real-time shopping recommendations

    15 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

    10 July 2026

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026
  • Hardware

    Smart glasses without a camera? Even Realities bets, productivity beats logging everything

    17 July 2026

    A SpaceX vet raises $65 million to pull out Cold War-era cables

    16 July 2026

    In the midst of a hardware legal battle, OpenAI is releasing a $230 keyboard for Codex

    16 July 2026

    India is betting billions to break China’s dominance in smartphone manufacturing

    15 July 2026

    I discourage you from buying the RingConn 3 (even though it is beautiful)

    15 July 2026
  • Media & Entertainment

    Spotify extends parent-managed accounts to users on its free tier

    16 July 2026

    Spotify extends its AI with a ChatGPT-style music assistant

    15 July 2026

    12 states sue to block $110 billion Paramount deal from Warner Bros

    14 July 2026

    Netflix could be planning “always on” live TV channels.

    11 July 2026

    Netflix is ​​dealing with shorter video content with its new set of publisher deals with Variety and others

    8 July 2026
  • Security

    FBI Arrests Man Accused of Using Steam Games to Empty Victims’ Crypto Wallets

    17 July 2026

    British police say the arrest of two young hackers has disrupted the operations of a notorious hacking group

    16 July 2026

    US blames Russian ‘bulletproof’ web hosts for cyberattacks that netted $62m from cybercrime victims

    15 July 2026

    Telegram’s short links domain is back online after a day-long suspension

    14 July 2026

    LAPD lets contract with surveillance giant Flock lapse, citing ‘serious concerns’ about civil liberties and privacy

    14 July 2026
  • Startups

    Indian AI coding startup Emergent goes unicorn with $130M Series C

    17 July 2026

    Ultrahuman’s ex-VP of hardware raises $5.5 million for devices that control AI agents, not just record you

    17 July 2026

    Why AMI Labs’ Alexandre LeBrun Doesn’t Call His AI ‘AGI’ or ‘Superintelligence’

    16 July 2026

    Lululemon backs nylon recycling startup Syntetica in $30M Series A

    16 July 2026

    Reelful’s AI turns your camera roll into short-form videos for social media

    15 July 2026
  • Transportation

    Zoox issues software recall after a robotaxi was confused by heavy smoke

    17 July 2026

    San Francisco mayor pushes for tougher rules after Waymo traffic fiasco

    17 July 2026

    Sheryl Sandberg leads $10 million investment in AI-powered vehicle inspection service

    16 July 2026

    Tesla driver in fatal Texas crash had 100% throttle, NTSB confirms

    16 July 2026

    Lucid Motors denies it is considering bankruptcy

    14 July 2026
  • Venture

    No product? No problem. This Disrupt 2026 session shows how to get early stage funding with conviction, storytelling

    17 July 2026

    Founders Fund hires ex-OpenAI exec Ryan Beiermeister (and not because of her ‘mafia’ skills)

    17 July 2026

    Why Greylock limited its new fund to $1.5 billion when it says it could have raised more

    16 July 2026

    Hermes agent maker Nous Research is in talks for fresh funding at a $1.5 billion valuation

    14 July 2026

    Filed Under: College Fizz App Accuses VC Of Sharing Confidential Startup Info With Rival Sidechat

    11 July 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»Security flaws in the Freedom Chat app exposed users’ phone numbers and PINs
Security

Security flaws in the Freedom Chat app exposed users’ phone numbers and PINs

techtost.comBy techtost.com11 December 202503 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
Security Flaws In The Freedom Chat App Exposed Users' Phone
Share
Facebook Twitter LinkedIn Pinterest Email

Messaging app Freedom Chat has fixed a pair of security flaws: one that allowed a security researcher to guess the phone numbers of registered users and another that exposed user-set PINs to others on the app.

Freedom Chat, launched in June, bills itself as a secure messaging app and claims on its website that users’ phone numbers remain private.

However, security researcher Eric Daigle told TechCrunch that users’ phone numbers and PINs, used to lock the app, could be easily obtained by exploiting vulnerabilities.

Daigle found the vulnerabilities last week and shared their details with TechCrunch, as Freedom Chat does not provide a public way to report security flaws, such as a vulnerability disclosure program. TechCrunch then notified Freedom Chat founder Tanner Haas of the security flaws via email.

Haas confirmed to TechCrunch that the app has now reset users’ PINs and released a new version. Haas added that the company is removing cases where users’ phone numbers were occasionally visible and has rate-capped its servers to prevent mass guessing attempts.

Daigle, who published his findings in a blog posttold TechCrunch that it was able to list the phone numbers of nearly 2,000 users who had signed up to use Freedom Chat since it launched. Daigle said Freedom Chat’s servers allowed anyone to flood it with millions of phone number guesses to determine whether a user’s phone number was stored on the servers.

According to Daigle, this technique is identical to one described by the University of Vienna in an investigation last month, where academics scratched data on approximately 3.5 billion user accounts registered on WhatsApp by matching billions of phone numbers with WhatsApp servers.

Daigle also found that Freedom Chat leaked users’ PINs. Using an open-source network traffic inspection tool to analyze data coming in and out of the app, Daigle saw that the app would respond with the PINs of every other user on the same public channel — even if the PINs weren’t visible to users within the app itself.

According to Daigle, anyone who was in the default Freedom Chat channel, which users are automatically subscribed to when they first sign up, had their PIN broadcast to everyone else in the channel. Daigle told TechCrunch that knowing a person’s PIN could allow someone to open the app from a user’s stolen device.

In an app store update posted Sunday, Freedom Chat noted: “A critical reset: A recent support update inadvertently exposed user PINs in a system response. Messages were never compromised, and because Freedom Chat doesn’t support connected devices, your chats were never accessible. However, we reset all user PINs to ensure your account remains secure.”

Freedom Chat is Haas’ second messaging app, after Converso, to be pulled from app stores after the revelation security flaws that exposed users’ private messages and content.

app Chat cyber security encryption Exclusive exposed flaws freedom messages Numbers phone Pins security Users
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleOboe Raises $16M From a16z For AI-Powered Course Creation Platform
Next Article Disney signs deal with OpenAI to allow Sora to create AI videos with its characters
bhanuprakash.cg
techtost.com
  • Website

Related Posts

FBI Arrests Man Accused of Using Steam Games to Empty Victims’ Crypto Wallets

17 July 2026

Newsletter platform Beehiiv now lets subscribers chat with each other, adds AI

17 July 2026

Roblox is launching an AI-powered game creation feature on its mobile app

17 July 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

FBI Arrests Man Accused of Using Steam Games to Empty Victims’ Crypto Wallets

17 July 2026

Indian AI coding startup Emergent goes unicorn with $130M Series C

17 July 2026

Zoox issues software recall after a robotaxi was confused by heavy smoke

17 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

10 July 2026

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026
Startups

Indian AI coding startup Emergent goes unicorn with $130M Series C

Ultrahuman’s ex-VP of hardware raises $5.5 million for devices that control AI agents, not just record you

Why AMI Labs’ Alexandre LeBrun Doesn’t Call His AI ‘AGI’ or ‘Superintelligence’

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.