Wednesday, 26 September, 2018

Timehop’s database breached compromising data of 21 million users

Timehop’s database breached compromising data of 21 million users Credit Timehop
Priscilla Morrison | 09 July, 2018, 20:42

However, Timehop claims that the tokens were deauthorized and made invalid within a "short time window" and can not be used to gain access to users' social media profiles.

These "keys" allow Timehop to read and show people's social media posts, but not their private messages.

"Tokens" provided by social media profiles to Timehop for gaining access to posts and images were also taken.

The company said names, email addresses, and some phone numbers for the 21 million users were lifted. We have deactivated these keys so they can no longer be used by anyone - so you'll have to re-authenticate to our App.

The big problem doesn't affect United Kingdom users, but will be making our USA cousins sweat - phone numbers were leaked.

Twitter had no comment on the breach. We did this in an abundance of caution, to reset all the keys.

"However, it is important that we tell you that there was a short time window during which it was theoretically possible for unauthorized users to access those posts - again, we have no evidence that this actually happened", the company noted.

More news: Chelsea and Fulham games moved for TV

Secure your phone. Avoiding public Wifi and installing a screen lock are simple steps that can hinder hackers. Installing anti-malware can also be beneficial.

If you have T-Mobile as your provider, call 611 from your T-Mobile device or 1-800-937-8997 and ask the customer care representative to assist with limiting portability of your phone number. Turn those notifications on to stay informed about credit card activity linked to your account. We immediately conducted a user audit and permissions inventory; changed all passwords and keys; added multifactor authentication to all accounts in all cloud-based services (not just in our Cloud Computing Provider); revoked inappropriate permissions; increased alarming and monitoring; and performed various other technical tasks related to authentication and access management and more pervasive encryption throughout our environment.

TimeHop has now invalidated all API tokens and produced one of the most comprehensive security bulletins we've ever seen with a wealth of information including what the implications are under GDPR - or more specifically, that it's not entirely clear.

"These tokens could allow a malicious actor to view without permission some of your social media posts", they write, noting that this largely means access to posts a user posts on their own walls. Surprisingly, the account the attacker initially used to access the servers was not secured with two-factor authentication (i.e. when you need to authorize a login in a second way, typically with a code or app on your phone).

In an official statement, Timehop says it was able to stop the attack but not before the above data was stolen.

The New York-based startup discovered the attack at 2:04am US Eastern Time (7:04am BST) on July 4.

Recommended

Queen, Prince Philip to skip christening Prince Louis Queen, Prince Philip to skip christening Prince Louis When Prince Louis is baptised on Monday at the Chapel Royal, the Duke and Duchess of Cambridge are expected to keep to convention. Prince Harry , now the Duke of Sussex, was christened in St George's Chapel, Windsor Castle, where he was married in May .

Wearing neck ties can reduce brain function Wearing neck ties can reduce brain function The researchers said that the findings suggest an association between the wearing tight necktie regularly and eye problem. It impairs brain function, increases the intraocular pressure and promotes the emergence of deadly diseases.

Sagan wins stage 2 as Gaviria crashes in lead out Sagan wins stage 2 as Gaviria crashes in lead out But Froome eventually climbed back up the standings to win the Giro - his third straight Grand Tour title. Astana climber Luis Leon Sanchez later called it quits after he fell and bloodied his left arm.

Eric Dier gives fan his shirt after England reaches semi-finals Eric Dier gives fan his shirt after England reaches semi-finals An ambulance vehicle has been badly damaged amid wild celebrations in London after England's World Cup quarter-final victory.

Ariana Grande defends Justin Bieber's fast engagement and her own speedy romance Ariana Grande defends Justin Bieber's fast engagement and her own speedy romance Biebs' mother also tweeted some excitement on the day of the alleged engagement. "Let's all pray for his will to be done". Grande later replied: "You do realize we are human beings who love and have lives.right.?" The tweet was quickly deleted.

Boris Johnson quits to add to pressure on May over Brexit Boris Johnson quits to add to pressure on May over Brexit When the Conservatives returned to power in 2010, he spent his time on the backbenches campaigning on civil liberties issues. Jacob Rees-Mogg, a leading Brexit hardliner, told Sky News: "This is very important".

Eden Hazard lavishes praise on Kylian Mbappe Eden Hazard lavishes praise on Kylian Mbappe The star quantities for the Red Devils though, will be their fluid front trio of Eden Hazard , Kevin De Bruyne and Romelu Lukaku . On Tuesday, it will be Henry versus France and Henry versus Deschamps, his former teammate for both France and Juventus .

Tour de France 2018: Chris Froome jeered at pre-race event Tour de France 2018: Chris Froome jeered at pre-race event Froome's reception when arriving for the launch of the race earlier this week was frosty to say the least as he was jeered and booed whilst on stage for an interview .

Jean Michael Seri in London to seal Premier League transfer Jean Michael Seri in London to seal Premier League transfer Chelsea and Arsenal are reportedly still in contact with OGC Nice star Jean Seri, with the pair having been strongly linked with the player in recent weeks.

Watch Drake Make Surprise Headline Performance At Wireless Festival! Watch Drake Make Surprise Headline Performance At Wireless Festival! Fans were asking all sort of questions after seeing a video of Khaled on social media just hours before in an infinity pool on holiday in Mexico.

CDC recalls Del Monte vegetable trays CDC recalls Del Monte vegetable trays Cyclospora cayetanensis , the CDC noted, is a "single-celled parasite that causes an intestinal infection called cyclosporiasis". Other common symptoms include loss of appetite, weight loss, stomach cramps/pain, bloating, increased gas, nausea, and fatigue.

Sacha Baron Cohen Gets Dick Cheney to Sign a ‘Waterboarding Kit’ One of the videos Showtime posted blatantly says, "We'd like to tell you about a new comedy that's coming, but we can't". That's because the latter is slated to premiere next Sunday, July 15th. 'That's a first.

England fans celebrate Sweden win, but some take it too far I think I May have got this slightly wrong.my favourite word to describe an imbecile or imbecilic outlook is buffoon. England fans have been superb since day one and they're going to have to be louder than ever for the Croatia game.

Travis Pastrana recreates Evel Knievel jump in Las Vegas Travis Pastrana recreates Evel Knievel jump in Las Vegas Knievel came up short on his attempt at jumping the fountain, hitting the knuckle just before the landing ramp and losing control. It was a stunt his famous predecessor never got to attempt but nearly certainly would have applauded.

Priyanka confirms Shonali Bose’s film, reveals title, mystery continues over hero Priyanka confirms Shonali Bose’s film, reveals title, mystery continues over hero In a picture PeeCee shared on her Insta story, we see the name of the film on its 29th draft written as The Sky Is Pink . Bollywood actor and Global icon Priyanka Chopra is back in India to kickstart a Hindi film after a hiatus of 2 years.