Hackers Teach Snapchat a Lesson in Security: Millions of Usernames and Partial Phone Numbers Published
Picture and video-sharing startup Snapchat has just been made a public example of how not to handle a potential security issue.
About a month ago, a group of white-hat hackers called Gibson Security (white-hat meaning they do not exploit security flaws, only find them) privately contacted Snapchat to warn the company about two security weaknesses that could be easily exploited to gain access to users’ real names, usernames and phone numbers, through Snapchat’s Android and iOS API.
Rather than taking immediate action, Snapchat reportedly ignored the warning. Finally, after receiving no response from the company and seeing little improvement in security, Gibson Security published its findings publicly on Christmas Eve.