ITPROPORTAL - Apr 17 - The flaw was discovered in early March, but is still active, according to Ars Technica. Match.com does not use HTTPS security – it uses the older HTTP standard instead. This means that the login info can be stolen by anyone on the same Wi-Fi.
by Sead Fadilpašić
See full article at ITProPortal