Update
Read: SnapchatDB.info taken down, Snapchat hackers interviewed
Original Story
Just days after Australia-based Gibson Security disclosed two hacks in Snapchat that could allow hackers to gain access to personal data of its users, hackers have managed to get their hands onto basic information of 4.6 million Snapchat users and have leaked it online partially censored.
The database dump is available on SnapchatDB and allows anyone to grab it as a SQL dump or CSV text file. The hackers have claimed that they managed to siphon off the data through a recently patched exploit and that they have leaked the details to raise awareness on the issue.
“This information was acquired through the recently patched Snapchat exploit and is being shared with the public to raise awareness on the issue”, reads a statement on SnapchatDB.
The hackers have censored the last two digits of users’ phone numbers, which they claim has been done “in order to minimize spam and abuse.” They have kept the door open for anyone wanting to gain access the uncensored database; however, access needs to be requested and “under certain circumstances,” they “we may agree to release it.”
Gibson Security has denied any involvement in this hack or leak. “We know nothing about SnapchatDB, but it was a matter of time til something like that happened. Also the exploit works still with minor fixes” tweeted the company.
Looking up the domain name on Who.is reveals that the domain was registered on December 31. The registrant name is protected, but the registrant country name seems to be Panama.
Will Smidlein, founder of Code Pilot, along with Robbie Trencheny has released a script that automatically checks if the leak contains a specific username.
Good roundup – also have a look at my recent interview with the Snapchat hackers: http://ste.ve.tt/1g0PDCL