Security flaws in Freedom Chat app exposed users’ phone numbers and PINs

Messaging app Freedom Chat has fixed a pair of security flaws: one that allowed a security researcher to guess registered users’ phone numbers, and another that exposed user-set PINs to others on the app. Freedom Chat, released in June, bills itself as a secure messaging app, and claims on its website that users’ phone numbers stay private. But security researcher Eric Daigle told TechCrunch that users’ phone numbers and PIN codes, used for locking the app, could be easily obtained by exploiting vulnerabilities. Daigle found the vulnerabilities last week and shared their details with TechCrunch, as Freedom Chat does not provide a public way to report security flaws, like a vulnerability disclosure program. TechCrunch then alerted Freedom Chat founder Tanner Haas to the security flaws by email. Haas confirmed to TechCrunch that the app has now reset user PINs and released a new version. Haas added that the company is removing instances where users’ phone numbers were occasionally visible, and has notched up rate-limiting on its servers to prevent mass-guess attempts. Daigle, who published his findings in a blog post, told TechCrunch it was possible to enumerate the phone numbers of close to 2,000 users who had signed up to use Freedom Chat since it launched. Daigle said Freedom Chat’s servers allowed anyone to flood it with millions of phone number guesses to determine if a user’s phone number was stored on the servers. Per Daigle, this technique is identical to one described by the University of Vienna in research last month, where academics scraped data on some 3.5 billion user accounts who signed up to WhatsApp by matching billions of phone numbers against WhatsApp’s servers. Daigle also found Freedom Chat was leaking users’ PIN codes. Using an open-source network traffic inspection tool to analyze the data going in and out of the app, Daigle saw that the app would respond with the PIN codes of every other user in the same public channel — even if the PINs weren’t visible to users within the app itself. According to Daigle, anyone who was in the default Freedom Chat channel, which users are automatically subscribed to when they first sign up, had their PIN broadcast to everyone else in the channel. Daigle told TechCrunch that knowledge of a person’s PIN could allow someone to open the app from a user’s stolen device. In an app store update published Sunday, Freedom Chat noted: “A critical reset: A recent backend update inadvertently exposed user PINs in a system response. No messages were ever at risk, and because Freedom Chat does not support linked devices, your conversations were never accessible; however, we’ve reset all user PINs to ensure your account stays secure. Your privacy remains our top priority.” Freedom Chat is Haas’ second messaging app, after Converso, which was delisted from app stores following the disclosure of security flaws that exposed users’ private messages and content. Topics cybersecurity, encryption, Exclusive, messaging, Security, TC Zack Whittaker Security Editor Zack Whittaker is the security editor at TechCrunch. He also authors the weekly cybersecurity newsletter, this week in security. He can be reached via encrypted message at zackwhittaker.1337 on Signal. You can also contact him by email, or to verify outreach, at zack.whittaker@techcrunch.com.

View Bio Dates TBD Locations TBA Plan ahead for the 2026 StrictlyVC events. Hear straight-from-the-source candid insights in on-stage fireside sessions and meet the builders and backers shaping the industry. Join the waitlist to get first access to the lowest-priced tickets and important updates.

Waitlist Now Most Popular Marco Rubio bans Calibri font at State Department for being too DEI Julie Bort SpaceX reportedly planning 2026 IPO with $1.5T valuation target Sean O'Kane Claude Code is coming to Slack, and that’s a bigger deal than it sounds Rebecca Bellan Creator IShowSpeed sued for allegedly punching, choking viral humanoid Rizzbot Dominic-Madori Davis Sources: AI synthetic research startup Aaru raised a Series A at a $1B ‘headline’ valuation Marina Temkin SpaceX reportedly in talks for secondary sale at $800B valuation, which would make it America’s most valuable private company Connie Loizos Meta acquires AI device startup Limitless Sarah Perez