Slick was launched in November last year.
Indian social media application Slick has reportedly left the personal data of users, including that of children, publicly exposed on the internet for months. According to a report by TechCrunch, data of 153,000 users was left unprotected online since December 11.
The exposed database contained names, mobile numbers, dates of birth, and profile pictures of Slick users. Due to a misconfiguration, this data of 153,000 users could be accessed by anyone familiar with the database’s IP address. The unprotected database was found by security researcher Anurag Sen from CloudDefense.ai.
The Bengaluru-headquartered company’s young chief Archit Nanda later confirmed that Slick has secured the database. It is still unclear if the exposed database has been accessed by anyone else apart from Sen.
Nanda, who has previously launched CoinMint and has worked as an executive at Unacademy, launched Slick in November last year. Within a few months of its launch, the homegrown social media platform managed to garner 100,000 downloads, the company’s co-founder informed on Twitter.
A compliment-based app that goes by the tagline “Slay all day” allows students from school and colleges to anonymously talk with and about their friends. “So many people admire you, waiting for the right way to say it. So let’s be Slick, turn on that charm, and declare our true feelings like nobody’s watching. The best part? Everybody’s watching, but they won’t know it’s you!” the company’s Google Play store description read.