Nearly 1.5 million explicit and private images were left unprotected online. Register your interest to stay informed and receive updates if this claim is taken forward by one of our partner law firms.
Join the Claim isn’t a law firm. We connect you with regulated UK firms that run group action claims. If one of our partner firms takes this case forward, we’ll share more details, including how to check your eligibility.
Some claims are regulated by the Financial Conduct Authority (FCA). This claim is not currently regulated by the FCA.
Register your interest
Overview
In March 2025, it was revealed that nearly 1.5 million explicit and private images from dating apps developed by M.A.D Mobile – including BDSM People, Chica, Pink, Brish, and Translove – were left unprotected online. This privacy failure potentially exposed users to serious risks of extortion, blackmail, and reputational harm. These apps serve hundreds of thousands of people, many within the LGBTQ+ and kink communities, who may be particularly vulnerable to discrimination or abuse if their private images have been exposed.
For many, the most distressing part of this breach is the unknown:
Who saw your images? Were they downloaded? Shared? Used without your knowledge? While the data protection failure was flagged by an ‘ethical hacker – someone who uses their skills responsibly to alert organisations to security vulnerabilities – there’s no guarantee other malicious hackers haven’t accessed the images.
If you used any of these apps, your intimate images could have been accessible to anyone – without a password or encryption. Data breach lawyers are now investigating the incident.
We are monitoring the situation closely. Register your interest and we’ll keep you updated if one of our regulated UK partner law firms is able to take this claim forward.
At a glance
Take a moment to answer a few simple questions so we can understand your connection and keep you updated.
Share your details so we can keep you informed if any updates become available.
If a partner law firm takes this claim forward, we’ll let you know the next steps and how to join.
March 2025
The BBC emails M.A.D Mobile to ask about the security issue after being tipped off by the researcher. After the BBC gets involved, M.A.D Mobile finally secures the storage and removes public access to the image repository. The BBC publishes its investigation, confirming the scale and sensitivity of the data exposure.
January 2025
An ethical hacker from Cybernews discovers nearly 1.5 million user images - including explicit content - publicly accessible online due to an unprotected cloud storage bucket used by M.A.D Mobile apps. He privately contacts M.A.D Mobile to report the security vulnerability. M.A.D Mobile does not respond or take any visible action to secure the exposed images.
We’ll provide more updates on the M.A.D Mobile dating app image breach as they occur.
Who could be affected by the M.A.D Mobile Dating App Image Breach?
If you used any of these apps, your intimate images could have been accessible to anyone – without a password or encryption.
Register to stay updated and we’ll let you know if a partner law firm takes this claim forward.
Between January and March 2025, security researchers discovered that nearly 1.5 million private images from five dating apps developed by M.A.D Mobile were being stored online without password protection or encryption. These included profile pictures, images sent via private messages, and even content removed by moderators.
The following M.A.D Mobile apps were involved:
If you used any of these apps, your private images may have been exposed.
Researchers found unprotected access to photos, including:
No names were attached to the images, but the content was still highly sensitive and potentially identifiable.
No this wasn’t a breach via hacking. It was a serious failure of basic security by M.A.D Mobile. Anyone with the link could view the images without needing a password. This made them vulnerable to malicious actors, extortionists, and leaks.
You may be able to, for:
Lawyers are likely gathering interest to explore a group legal action.
Not necessarily. And not at this stage. If you used one of the affected apps, especially if you shared private images, you may have a claim. Legal teams can request access logs, timestamps, and app usage records as part of the investigation.
A group action claim allows people affected by the same issue to take action together. This strength in numbers helps stand up to big organisations. Join the Claim helps connect people with law firms so these actions have real impact.
We connect consumers with their legal dream teams to ensure they get the compensation and support they deserve.
Join the Claim is not a law firm. We connect individuals with top law firms for group action claims, and our service is free to use. While we may receive a fee from the law firms we introduce you to, this will not affect your costs or compensation. We are not responsible for the advice or services provided by these firms. Please note, nothing on this website is legal advice, and while we check claim eligibility, we cannot guarantee a law firm will accept a case.
Join the Claim is a trading name of Join the Claim Limited, authorised and regulated by the Financial Conduct Authority (FRN: 1053404). Registered in England and Wales, Company No: 16245278. Registered office: 32 Eyre Street, Sheffield, S1 4QZ.
© Join the Claim All Rights Reserved |
