Snapchat Promises App Tweaks To Prevent Future Security Breaches, Does Not Apologize

rated by 0 users
This post has 1 Reply | 0 Followers

Top 10 Contributor
Posts 26,180
Points 1,185,810
Joined: Sep 2007
ForumsAdministrator
News Posted: Sat, Jan 4 2014 9:49 AM
Earlier this week, news broke that a security exploit in Snapchat allowed hackers to claim some 4.6 million usernames and phone numbers from the service. The group responsible for the hack posted the list, with some information redacted, for all to see.

Snapchat described the issue in a blog post, noting that it was the Find Friends feature that was at fault. The tool lets users check their friends’ phone numbers against the Snapchat database to see if they’re available on the site. It’s just a way for people to find each other on Snapchat, but as Snapchat described it, “Theoretically, if someone were able to upload a huge set of phone numbers, like every number in an area code, or every possible number in the U.S., they could create a database of the results and match usernames to phone numbers that way.”

Snapchat

The company says that it will address the problem by updating the app so that people can opt out of the Find Friends feature as well as “improving rate limiting and other restrictions”. Snapchat, apparently realizing that white hat security pros such as Gibsons Security (the company that first made Snapchat aware of the security problem) are there to help, also has a new email address for those folks to send them any issues they find.

What Snapchat did not offer was an apology.
  • | Post Points: 20
Not Ranked
Posts 1
Points 5
Joined: Jan 2014

I'm sure they'll fix the problem, but what about when Google or Facebook gets hacked? Just think about all of the personal information they collect about you. This isn't limited to information you give them. They track your browsing history and have information about every website you visit. When that information gets hacked and distributed to your friends, family, and colleagues, then you will be ruined. This is why I'm a strong advocate for using privacy-based sites such as DuckDuckGo, Ravetree, HushMail, SnapChat, etc.

  • | Post Points: 5
Page 1 of 1 (2 items) | RSS