Lovense App Vulnerability Exposes User Emails, Accounts

A critical vulnerability in the Lovense sex toy app has exposed millions of users’ private email addresses and left accounts open to hijacking, according to cybersecurity researcher BobDaHacker. The flaw allowed attackers to obtain a user's email with only their public username, putting cam models and regular users at risk of doxxing, harassment, and privacy breaches. Researchers reported the issue to Lovense in March 2025, but the company delayed a full fix, citing worries about disrupting support for legacy devices, and the email leak remains unpatched. Even basic actions, such as muting, could inadvertently trigger data exposure. Lovense, already noted for integrating ChatGPT into its products, faces renewed scrutiny over the security of connected intimate devices. The ongoing problem has prompted researchers and users to call for immediate, comprehensive security updates to protect user privacy.