Millions of users of the Bumble dating app may have had their privacy compromised online due to security breaches that have not been fixed for over six months. Researchers at California-based Independent Security Evaluators (ISE) found that an attacker could easily acquire sensitive information about every Bumble user, even if they had already been banned from the app. Because the Bumble API did not perform the necessary checks to see if a requester could perform a specific action or set limits on the number of requests that could be sent, it was possible to access data on Bumble's servers that should have been maintained. private. If a Bumble profile were connected to Facebook, hackers could access more information, including the type of date they were looking for and the images they had uploaded to the app. More troubling was the ability to discover a user's approximate location while in the same city as the hacker. By evaluating a user's "distance in miles" across various fake accounts, hackers could triangulate a user's location with alarming accuracy.