Weekly security review: hackers take jab at top services, NSA cracks iOS
Chaos Communications Congress 2014
Skype has once again found itself on the front lines of cybersecurity this week after the notorious Syrian Electronic Army hacked into its social media profiles and published a tweet discouraging people from using Microsoft-owned services. The instant messaging giant quickly regained control of the accounts and released a statement saying that no other systems have been compromised.
But while Skype subscribers have breathed a sigh of relief, Snapchat users are still scrambling to change their usernames after an anonymous hacker group managed to download the company’s full database of personal information by exploiting an API flaw discovered by Gibson Security. A total of 4.6 million Snapchat users were compromised, and their partial records have been uploaded to a website called Snapchat.db. The perpetrators claim that their goal was to raise public awareness of the vulnerability, which they say was left unpatched despite the fact that Snapchat had apparently known about it since August.
“Snapchat was reluctant to taking the necessary steps to secure user data. Once we started scraping on a large scale, they decided to implement minor obstacles, which were still far from enough. Even now the exploit persists. It is still possible to scrape this data on a large scale,” the hackers said.
Snapchat is not the only one with a privacy problem. In a recent keynote at the annual Chaos Communications Congress, security researcher Jacob Appelbaum revealed that iOS is vulnerable to government eavesdropping. He went as far as accusing Apple of being “complicit in the development of ‘DROPOUTJEEP,'” the software used by the spy agency’s elite TAO unit to intercept SMS messages, access local data stores, listen in on conversations and track targets’ physical location.
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
