A security consultant who works for Telefonica has turned up a bug in how Snapchat handles authentication tokens, which enables a denial-of-service attack against users' phones. It's a simple enough problem, as Jaime Sánchez explains here: the tokens should expire, but don't. As a result, one token can be re-used on many …
Got to respect the man's sense of humor
Some of his payloads came from "strict_daddy4u", "whoknew69", and "commonname69".
Of course, those are probably typical snapchat usernames now that I think about it...
SO the same Snapchat whos security fix was an 'option' ?
Apparently the last problem with Snapchat gave us a option button to 'turn off the hole'.
So, a massive can of worms is Snapchat. It almost sounds like "grow the user base at any cost".
Old man yells at cloud
I believe this is where the Internet Geezer Squad (TM) piles on with comments such as "I don't even know what Snapchat is," "only loosers (sic) use social media," and "Ha, my trusty Nokia 6810 is unaffected!"
- Infosec geniuses hack a Canon PRINTER and install DOOM
- Boffins say they've got Lithium batteries the wrong way around
- Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
- In a spin: Samsung accuses LG exec of washing machine SABOTAGE
- Game Theory Half a BILLION in the making: Bungie's Destiny reviewed