Snapchat Finally Confirms Leak Of 4.6M Usernames & Numbers

As we entered a New Year popular photo sharing app Snapchat brought in 2014 on the wrong foot. Hackers published a huge database containing over 4 million user names and phone numbers of the popular application.

The company has been silent on the matter for the past two days but they finally released a statement yesterday.

A security group first published a report about potential Find Friends abuse in August 2013. Shortly thereafter, we implemented practices like rate limiting aimed at addressing these concerns. On Christmas Eve, that same group publicly documented our API, making it easier for individuals to abuse our service and violate our Terms of Use.

We acknowledged in a blog post last Friday that it was possible for an attacker to use the functionality of Find Friends to upload a large number of random phone numbers and match them with Snapchat usernames. On New Years Eve, an attacker released a database of partially redacted phone numbers and usernames. No other information, including Snaps, was leaked or accessed in these attacks.

Indirectly it appears as Snapchat is not taking responsibility for the leak. Due to Gibson Security’s public reports the publicized security holes lead to the hackers infiltrating the network.

The hackers said the leak only happened to send a message to Snapchat.“Our motivation behind the release was to raise the public awareness around the issue, and also put public pressure on Snapchat to get this exploit fixed,” the hackers told The Verge . “Security matters as much as user experience does.”

Well they heard their message loud and clear now but are pointing the finger.


Got something to say? Go for it!