An Australian security team last week published two new Snapchat exploits, claiming that hackers can easily get their hands on users' personal data and create hoards of dummy accounts.
Gibson Security published Snapchat's API and the pair of exploits on Christmas Day, opening up the popular startup's disappearing message app to anyone who wants to stalk the app's 8 million users.
Well today, it appears that someone has used that exploit to collect 4.6 million usernames, and their associated phone numbers, and publish them on a website.
The website SnapchatDB.info allows anyone to simply grab either as a SQL dump or a CSV text file information that the creators claim was acquired through "the recently patched Snapchat exploit". The last two digits of each number were hidden by the group.
The site later appeared to have been taken down, but, while accessible, explained that the material had been published to "raise awareness" of the issue.
"This information was acquired through the recently patched Snapchat exploit and is being shared with the public to raise awareness on the issue. The company was too reluctant at patching the exploit until they knew it was too late and companies that we trust with our information should be more careful when dealing with it," it said.
"For now, we have censored the last two digits of the phone numbers in order to minimise spam and abuse."
Shivaank Rana
iGyaan's Carlos Santana! Shivaank loves Apple products! He stays up to date with the latest happenings of the tech world and gets his hands dirty with the latest Gadgets! Follow Him on Google Plus : Google+
Put the internet to work for you.
No comments:
Post a Comment