Snapchat hack of 4.6m users' data prompts the company to release updated app
Snapchat has announced plans to release an updated version of its disappearing photo-sharing app after hackers uploaded account information belonging to more than 4.6 million users online.
The data was comprised of usernames and mobile phone numbers with the last two digits redacted, with the hackers claiming that they were working to “raise public awareness on how reckless many internet companies are with user information.”
The situation has been particularly troubling for Snapchat,following claims from Australian-based security group Gibson Security that they informed the company about the vulnerability in their code twice last year.
Snapchat’s relatively sluggish response to the issue (Gibson Security say they contacted the company in August and on Christmas day, before the stolen data was uploaded online by an unknown group on New Year’s day) has led to speculation that the app’s extremely rapid growth has left it unprepared for such a high-profile security breach.
“The main problem was that they ignored a responsible report by security researchers,” said Christopher Soghoian, principal technologist with the American Civil Liberties Union.
Soghoian noted that it’s common practice for independent experts to expose flaws in technology company’s products, and that large companies such as Google and Microsoft welcome these reports, offering cash bounties for every vulnerability reported.
More on Snapchat: The 23-year- old Snapchat co-founder and CEO who said no to a $3bn offer from Facebook
“Snapchat may be too small to pay bounties, but they certainly should be treating researchers with respect and addressing issues as soon as they are told about them,” he added.
Snapchat was founded in 2011 and currently has no source of revenue, but its ability to attract an estimated userbase of 20 million adult users in the US led to Facebook offering a reported $3bn (£1.8bn) to buy the company in 2013.
Snapchat co-founder and CEO, the 23-year-old Evan Spiegel, turned down the offer and has since attracted significant venture capital investment, with a recent round of funding led by Chinese e-commerce giant Tencent Holdings valuing Snapchat at $4bn.
In a blog post on their site the company confirmed that the vulnerability in their app lay with their recently-added ‘Find Friends’ feature, “an optional service that asks Snapchatters to enter their phone number so that their friends can find their username.”
“We will be releasing an updated version of the Snapchat application that will allow Snapchatters to opt out of appearing in Find Friends after they have verified their phone number,” said the company in an online statement. “We’re also improving rate limiting and other restrictions to address future attempts to abuse our service.”
Additional reporting by agencies
Life & Style blogs
Charlie Charlie Challenge: everyone on the internet thinks it’s a marketing stunt, but it probably isn’t
Not brushing your teeth can lead to dementia and heart disease
Yves Saint Laurent ad banned for featuring 'unhealthily underweight' model
Insomnia could be cured with one simple therapy session, new study claims
What do the emojis on Snapchat mean?
Thousands of teenage girls enduring debilitating illnesses after routine school cancer vaccination
Migrants in Kos: Photos show real tragedy after Brits abroad complain of 'awkward' holidays
British tourists complain that impoverished boat migrants are making holidays 'awkward' in Kos
Michael Gove determined to scrap the Human Rights Act – even if Scotland retains it
Threat to scrap Human Rights Act could see UK follow Nazi example, warns UN official
Church of England 'one generation away from extinction' after dramatic loss of followers
- 1 California man brutally beat 82-year-old Sikh grandfather he mistook for 'one of those people'
- 2 Charles Kennedy 'had better judgement drunk than many sober politicians' says Ian Hislop
- 5 We have six months to save the world, says leading economist
iJobs Gadgets & Tech
Negotiable: Recruitment Genius: This is an exciting opportunity for someone wi...
£20000 - £23000 per annum: Recruitment Genius: This Managed IT Services Provid...
£20000 - £28000 per annum: Recruitment Genius: This specialist high tech compa...
£12000 - £16000 per annum: Recruitment Genius: New Full-time, Part-time and Fr...