Fixing Privacy Concerns: Sex Toy App Resolves Email Leak Security Issue for Users’ Peace of Mind

In an update on July 30, Lovense has reportedly addressed the security vulnerabilities that were initially disclosed earlier this week by security researcher BobDaHacker. The researcher has confirmed that these issues have since been rectified, attributing the swift action to public pressure exerted by technology media outlets.

The unresolved security flaws posed a significant risk to the privacy of Lovense’s 11+ million users, as detailed in BobDaHacker’s initial report published on July 29. The popular internet-connected sex toy brand was found to have two vulnerabilities in its app, which had gone unaddressed since they were first reported by security researchers in March 2025.

One of the flaws allowed user email addresses to be exposed when a third party knew their username and employed a specific method for data extraction. This posed a particularly serious threat to users who publicly shared their usernames, as their private information could potentially be accessed by anyone.

In an effort to address these concerns, Lovense has confirmed that the identified flaws will be addressed in an upcoming app update, which is expected to roll out across app stores within the next week. However, BobDaHacker disputes Lovense’s claim that they had already fixed the email address exposure issue in June, providing evidence that the flaw persists to this day. Bleeping Computer was also able to confirm the active status of the vulnerability on July 28.

For users concerned about their privacy, it is recommended to use a separate, non-professional email account when interacting with Lovense services. The company has yet to provide official comment regarding these developments.