Lovense: The Company That Lies to Security Researchers | bobdahacker
How Lovense ignored critical vulnerabilities for 8+ years despite multiple researchers reporting them since 2017, exposed 11+ million users' emails through XMPP, allowed account takeovers without passwords, lied to researchers about fixes, and only patched after public exposure forced their hand.| bobdahacker.com
