Printed from http://www.electronista.com

Researcher: Snapchat API exploits enable user data collection

updated 09:18 pm EST, Thu December 26, 2013

Ephemeral message service sender's privacy potentially in danger

An unpatched code flaw in Snapchat's API is allowing rogue coders to generate a script to associate actual phone numbers with Snapchat user names, display names, and account privacy settings. This information, combined with other data breaches can be sold, as well as pose a significant amount of data on a Snapchat user that has been identified in such a matter.

Snapchat is a service which allows users to exchange videos or messages that Snapchat deletes after ten seconds after they are opened. The exploit doesn't change this fact, but does give API script users implementing the undocumented hooks more access to personal information about the senders. Gibson Security claims that the hooks are easily removable from the API, and can be deleted with little effect to the rest of the API.

Researchers at Gibson Security published the undocumented hooks in the Snapchat API, after being ignored by Snapchat since August. Gibson Security told ZDnet in an email that a coded script harvesting user data could "automatically build profiles about users, which could be sold for a lot of money."



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Brother HL-L8250CDN Color Laser Printer

When it comes to selecting a printer, it's not exactly something most people put a lot of thought into. Printers are often touted as f ...

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

Epson PowerLite Home Cinema 3500 projector

Trying to find the perfect projector for a home theater can be tricky, as there are bountiful options on the market from a large numbe ...

Advertisement

toggle

Most Commented

 
toggle

Popular News