Luxury sex toy maker Lovense has fixed two major security vulnerabilities that exposed users’ private email addresses and allowed attackers to remotely take control of any user’s account. The company says the bugs are “fully resolved,” but its CEO is now considering taking legal action.
According to a statement from Lovense, the fixes require users to update their apps before they can resume using all features. However, experts have questioned the company’s claim that no user data was compromised or misused, citing evidence suggesting otherwise.
The issues were first reported by security researcher BobDaHacker, who revealed details of the bug earlier this week after Lovense initially claimed it would take 14 months to fix rather than a faster one-month solution.
Lovense has confirmed it fixed both vulnerabilities and will require users to update their apps before accessing full features. However, concerns remain over how the company determined whether any user data was compromised during these security incidents.
In recent years, companies have resorted to legal threats to silence media outlets that report on embarrassing security breaches.
Source: https://techcrunch.com/2025/08/01/sex-toy-maker-lovense-threatens-legal-action-after-fixing-security-flaws-that-exposed-users-data