Evan Spiegel, Snapchat (Photo credit: jdlasica) |
The new year may have just begun , but for developers Snapchat he failed already marked by the highest security in the history of the mobile application.
An anonymous group of hackers together and threw a database of phone numbers 4.6 million Snapchat users with their user snapchatdb.info just scored on a website name.
Although the last two digits of telephone numbers fled censored " for the moment " " in order to minimize spam and abuse" the group said he should not hesitate to contact them and ask the uncensored version the database that agree to resolve " in certain circumstances. "
In addition, see the pirates show to match the Facebook and Twitter accounts to find the necessary phone numbers on their own , saying that "people tend to use the same user name around the internet . "
They explain the massive flight of the desire to " educate the public about the issue , " claims that Snapchat does little or nothing to solve the to use the application knew the owner was there.
"The company was reluctant to patch the exploit until they knew it was too late, and the companies that we should trust our information to be more careful in dealing with him, " the statement snapchatdb.info States.
"Our motivation behind the publication is to raise awareness around the issue was, and at the same time , public pressure on Snapchat exploit this fixed . Understandably technology startups have limited resources , but security and privacy should not be a secondary objective. safety issues as well as the user experience, " the group told TechCrunch.com .
Hackers claim to have published the data , " the vast majority of users Snapchat . " Performs However, in the detail view of prefixes available many (but not all) of the United States and Canada some of the primary . While the actual number of users Snapchat is inaccurate media reports, the number 8 million users in June and Google Play App Store lists the application of the term from 10 to 50 million installations.
However, some users of the application have already recognized the discharge was not a joke, and took social media to report, find their user names and numbers list . AOL owned TechCrunch.com also confirmed the hack was real, that at least one of the editors of personal information available.
Perhaps even more embarrassing for Snapchat that the potential vulnerability was ( reported GibsonSec ) already last summer by an Australian group Gibson security. Months after the first publication of the group Snapchat vulnerabilities had been ignored by application developers , GibsonSec opted for a detailed list of exploits with examples of how a person with a basic knowledge of programming languages could publish abuse .
After the December release GibsonSec years , came to Snapchat a statement that " theoretically , if someone is able to load a large number of phone numbers, as each number in an area code or a number in the United States , they could create a database results and user matching phone numbers this way names. "Said the developer , however, they " set up various safeguards harder to do , to do "and " recently added additional measures against - and continue to improve the fight against spam and abuse " .
At the time of writing the Declaration of December 27 is the last page on the official blog of the application, and Snapchat not yet officially commented on the wound.
This is not the first time that the late Snapchat users have transferred their private information or pictures on the application. As the developer of the application appears first as a way to send pictures through a medium "deleted" , promising that the images are up to 10 seconds of viewing deleted both the application and servers by the receiver, a U.S. study last April said it was not designed, in fact, delete files .
After Utah based Decipher Forensics , not really remove Snapchat images received, but hidden from view of the extension and makes it readable. Can after having been shown excerpts from the equipment and time for parents , lawyers and law enforcement images to pass.
Another study says that the photos unread on the application server for 30 days before being deleted.
Snapchat is particularly popular among young people, and has been widely reported to be used for " sexting " or the exchange of explicit photos with a degree of nudity.
The app was developed and owned by two students at Stanford University. Since its first publication in 2011, the two titles would decline an offer 3 billion dollars Facebook and offers 4 billion to buy Google Snapchat done.
0 commentaires:
Post a Comment