According to the Daily Dot, Infected has not taken basic measures to protect user data. Confidential information has been exposed and anyone can become an administrator of the site due to incorrect settings.

Uncontaminated: Unprotected

• The configuration error was discovered by a security researcher known as GeopJr. noticed that you are on the site worked with “debug mode” enabled – a special set of functions that software developers use when working on a site that should never be included by default in a product previously distributed for users.
• The “uninfected” site is configured as follows: admin panel was fully accessible to anyone who knows how to search for it.
• Using this dashboard, the administrator can access the information of any user of the site, including name, date of birth, e-mail address and home address, if any. According to the source, about 3,500 users are registered on the site.
• Edited a few posts on the site to verify access rights. according to the researcher almost all changes on the site were available to himincluding adding or removing pages, managing subscriptions to paid services, and even deleting your entire message backup database.

The site is currently the main location for the project after the mobile app was removed from the Apple App Store in August 2021 for violating Apple’s content policy regarding COVID-19. Android users can continue to download the app from the Google Play Store, which has more than 10,000 downloads and an average 2.5 star rating.