A significant data breach at Tea, a popular women-only dating advice application, has resulted in the exposure of over 1.1 million private direct messages, alongside approximately 72,000 user images. The breach, discovered on July 25, 2025, compromised sensitive user data, including intimate conversations, photo identifications, and selfies, which were subsequently posted on the anonymous message board 4chan. The incident has raised widespread concerns about digital privacy and the security of user-generated content on social platforms.
The exposed data includes private messages exchanged between users from February 2023 through July 2025, containing highly personal details such as discussions about divorce, abortion, and cheating, as well as phone numbers and meeting locations. Initially, the breach was reported to involve 72,000 images, encompassing 13,000 selfies and ID photos used for verification, and an additional 59,000 images from app posts and direct messages. The company attributed the compromise to unauthorized access to a "legacy storage system" and an exposed Firebase database.
In response to the breach, Tea confirmed the incident and temporarily disabled its direct messaging feature. The company announced it has launched a full investigation with the assistance of external cybersecurity experts and has involved the Federal Bureau of Investigation (FBI). Tea has also stated plans to identify affected users and offer free identity protection services to mitigate potential risks.
The breach has sparked outrage among users and the broader online community, highlighting the vulnerabilities associated with sharing personal information on digital platforms. Reports indicate that two class-action lawsuits have already been filed in California against Tea, citing privacy violations and the failure to adequately protect user data. The incident has also fueled a contentious debate about the nature of anonymous "whisper networks" and their implications for privacy and reputation.
Tea, founded in 2023, rapidly gained popularity in July 2025, reaching over 4 million users who utilized the app to anonymously review men they had dated, share advice, and conduct background checks. The app's marketing as a tool for women's safety in dating now stands in stark contrast to the widespread privacy compromise, prompting many to question the security measures in place. The ongoing investigations aim to uncover the full extent of the breach and hold responsible parties accountable.