MacNN | Snapchat apologizes for API security flaw, issues app update
Mac News Network View: Standard | Headlines | Categorized | Slim
Mac News Network
Mac News iPod News Reviews Forums
 

Desktop Headlines
Snapchat apologizes for API security flaw, issues app update
Thursday, January 9, 2014 @ 2:08pm

Snapchat has apologized for a server intrusion that led to the leaking of usernames and phone numbers of approximately of 4.6 million users. At the same time, the service has updated its Android and iOS apps to allow users to opt out of linking their phone number from their user name, as well as requiring new users to verify their phone number before using the Find Friends function of the app.



Though the service has previously acknowledged the intrusion, as well as vulnerability warnings posted by a security group on Christmas Eve, this is the first time Snapchat has apologized over the security lapse. "Our team continues to make improvements to the Snapchat service to prevent future attempts to abuse our API," states the company blog, continuing "We are sorry for any problems this issue may have caused you and we really appreciate your patience and support."

The hack, performed by a group using the website SnapchatDB.info, allowed programmers to use Snapchat's API to find out a considerable amount of data, such as linking phone numbers with user names, display names, and account privacy settings. The group published the combinations of usernames and phone numbers, censoring the last few digits of each in order to minimize spam to affected users. "Our motivation behind the release was to raise the public awareness around the issue, and also put public pressure on Snapchat to get this exploit fixed," said the group responsible for the hack, advising that tech startups must make security and privacy a primary goal.

Comments on this Article
Print Friendly Version
Email to a Friend
Add MacNN to Your RSS Feeds
Buy from the Apple Store


Related Stories:

Today's MacNN Stories:
  • Google petitions FCC for NM desert testing of broadcast-capable drones - 4:39 PM EST
  • Home Depot transaction security reportedly ramshackle since 2008 - 3:08 PM EST
  • Former NBA star arrested for $14,000 theft through Apple EasyPay - 2:41 PM EST
  • New Oculus Rift 'Crescent Bay' headset shown, 'massive leap' over DK2 - 2:25 PM EST
  • Apple, HP slam patent troll with $3.6 million each in attorney fees - 12:37 PM EST
  • Briefly: Modbook Pro X Last Call campaign, Twitter for iPhone update - 11:48 AM EST
  • Monkey Parking fires up service in southern CA, meets resistance - 11:14 AM EST
  • Sony Video Unlimited service migrates to OS X, Windows through browser - 10:52 AM EST
  • Microsoft: 15GB free OneDrive bonus to mobile with 'camera backup' - 10:20 AM EST
  • Apple raises prices on out-of-warranty iPhone 6 repairs - 1:53 AM EST

    Today's iPodNN Stories:
  • Oculus Rift DK1 source code, schematics released as open source - 1:45 PM EST
  • Google to reinvest in YouTube content, expand promotional efforts - 5:39 PM EST
  • Vodafone plans takeover of 140 Phones 4U stores, save 900 jobs - 3:33 PM EST
  • Nokia.com visitors in United Kingdom redirected to Microsoft site - 11:05 AM EST
  • Sony reveals SmartEyeglass headset prototype, releases SDK - 5:53 AM EST
  • No comments posted on this story yet. Please post yours.
    Your Comments
    In order to post comments, you must be a registered member of the MacNN Forums and logged in. Please login with your MacNN Forums username and password.

    MacNN Forums Login:

    MacNN Forums Password:

    Not a member of the MacNN forums? Register now for free.