Home  › Social › Social Media
snapchat-logo

Snapchat Promises App Update to Fix 'Find Friends' Hack

  |  January 6, 2014   |  Comments

In a blog post Friday, photo sharing app Snapchat promised to release an update to correct the loophole that allowed hackers to expose more than 4 million usernames and phone numbers last week.

snapchat-logoSelfie sharing app Snapchat will update its software in the wake of a hacking attack that exposed more than four million usernames and phone numbers.

The website was attacked last week, and breached through a vulnerability that had been discussed by a security company but dismissed by the firm.

Since that first dismissal and the announcement of the security breach the firm has taken the matter more seriously and is now in the process of updating its application to be more secure and less open to exploitation.

"We acknowledged in a blog post last Friday that it was possible for an attacker to use the functionality of Find Friends to upload a large number of random phone numbers and match them with Snapchat usernames. On New Years Eve, an attacker released a database of partially redacted phone numbers and usernames. No other information, including Snaps, was leaked or accessed in these attacks," it said.

"We will be releasing an updated version of the Snapchat application that will allow Snapchatters to opt out of appearing in Find Friends after they have verified their phone number. We're also improving rate limiting and other restrictions to address future attempts to abuse our service."

The firm does not seem to be particularly happy with Gibson Security, the outfit that blogged in detail about its vulnerabilities. In its blog it suggests that none of this would have happened without the disclosure.

"A security group first published a report about potential Find Friends abuse in August 2013. Shortly thereafter, we implemented practices like rate limiting aimed at addressing these concerns," it added.

"On Christmas Eve, that same group publicly documented our API, making it easier for individuals to abuse our service and violate our Terms of Use." 

Snapchat recently baffled analysts by turning down a $3 billion buyout offer from Facebook, banking on bigger offers to come. The big question is how ads will come into play as they move to capitalize on their userbase and generate revenue. 

This article was originally published on the Inquirer.

ClickZ Live Chicago Learn Digital Marketing Insights From Leading Brands!
ClickZ Live Chicago (Nov 3-6) will deliver over 50 sessions across 4 days and 10 individual tracks, including Data-Driven Marketing, Social, Mobile, Display, Search and Email. Check out the full agenda, or register and attend one of the best ClickZ events yet!

ABOUT THE AUTHOR

COMMENTSCommenting policy

comments powered by Disqus

Get ClickZ Social newsletters delivered right to your inbox. Subscribe today!

COMMENTS

UPCOMING EVENTS

UPCOMING TRAINING

Featured White Papers

Google My Business Listings Demystified

Google My Business Listings Demystified
To help brands control how they appear online, Google has developed a new offering: Google My Business Locations. This whitepaper helps marketers understand how to use this powerful new tool.

5 Ways to Personalize Beyond the Subject Line

5 Ways to Personalize Beyond the Subject Line
82 percent of shoppers say they would buy more items from a brand if the emails they sent were more personalized. This white paper offer five tactics that will personalize your email beyond the subject line and drive real business growth.

WEBINARS

Resources

Jobs