"Hey Siri" support and possibly wireless charging case alongside AirPower charging mat.
Snapchat Vulnerability Can Lead to iPhone Denial-of-Service Attacks
A vulnerability in the Snapchat app opens the iPhone up to denial-of-service attacks that can cause the device to freeze and crash, according to cyber security researcher Jamie Sanchez [Google Translation] (via The Los Angeles Times).
A weakness in the app’s system can allow a hacker to send thousands of messages to a Snapchat user in seconds, which can cause a crash that requires a hard reset to fix. Tokens generated by the app used to verify user identity can be reused by hackers to send a flood of messages.
By reusing old tokens, hackers can send massive amounts of messages using powerful computers. This method could be used by spammers to send messages in mass quantities to numerous users, or it could be used to launch a cyber attack on specific individuals, [Sanchez] said.Sanchez demonstrated the flaw for The Los Angeles Times, sending a reporter 1,000 messages within five seconds in a denial-of-service attack, which caused the reporter's iPhone to freeze until it restarted.
The security researcher declined to contact Snapchat with his findings as he believes the startup "has no respect for the cyber security research community" after ignoring previous app vulnerability reports.
Snapchat has faced multiple problems as its private messaging app has grown in popularity, including vulnerabilities that allowed users to bypass screenshot notifications and a recent security breach that compromised the user names and phone numbers of more than 4.6 million customers, which Snapchat was warned about ahead of time by a security group.
When asked about this particular vulnerability, Snapchat said it was unaware of the problem but interested in learning more.
[ 31 comments ]
Top Rated Comments
(View all)
65 months ago
snapchat is more trouble than what its worth. if you wanna sext just use iMessage
okay, let's do this
65 months ago
snapchat is more trouble than what its worth. if you wanna sext just use iMessage
65 months ago
If you use snapchat, I would suggest only allowing your friends/contacts to snap you.
65 months ago
After the earlier story that quoted Tim Cook saying spending 10 figures on a company is no problem, and now this snapchat story...
I wish it was April 1st, and the next post on MacRumors is that Apple has agreed to buy SnapChat for $1bil, just to see everyone lose their stuff in the comments.
I mean, Facebook bought Instagram for $1bil, so i could at least be a believable story for a few minutes. Just for the laughs. :p:)
FB already offer $3B for it and was spurned.
65 months ago
snapchat is more trouble than what its worth. if you wanna sext just use iMessage
okay, let's do this
Ooh, romance is in the air!
65 months ago
The fact that iOS enable an application to use all the memory/whatever in the phone is wrong in the first place (would it be Safari or Snapchat).
As for snapchat, it's useful to share quick pictures to everyone, make a "story" (a collection of many pictures, funny in parties!), send random stupid faces, doesn't require cell to be used (only wifi) thus is usable on ipods or with plans with low data, doesn't require to give your phone number, received/read notification, and is quicker to send than sms/mms across all devices.
Finally, while some cyber community groups are making viruses and all, some of them simply work on security to improve softwares.
As for snapchat, it's useful to share quick pictures to everyone, make a "story" (a collection of many pictures, funny in parties!), send random stupid faces, doesn't require cell to be used (only wifi) thus is usable on ipods or with plans with low data, doesn't require to give your phone number, received/read notification, and is quicker to send than sms/mms across all devices.
1. As if your going to have that many friends on there for them to be able to send 1,000 images all at once.
2. As if the average friend will have the know how to perform this and if their your friend why would they want too?
So in reality is doesn't really pose a threat, but if a tech expert wanted too they could exploit it though they would have little t gain from it.
Also aren't cyber community group just the same groups of people who create viruses and other malware who are then taken on by anti virus companies?
Finally, while some cyber community groups are making viruses and all, some of them simply work on security to improve softwares.
65 months ago
I have other apps that can crash as well. Don't really see the issue. I've been in a Game or Facebook and it's caused my phone to restart (display Apple Logo). Heck even Safari has done this.
Maybe I'm missing something, but doesn't really seem like a valid issue, just crappy programing.
Maybe I'm missing something, but doesn't really seem like a valid issue, just crappy programing.
65 months ago
A vulnerability in the Snapchat app ... can cause the device to freeze and crash
In other words, it's just like iOS 7. :D
65 months ago
I fail to understand the interest people have in Snapchat.
It's good when you have friends :)
[ Read All Comments ]
For those of you who like to rearrange the Home screen on your iPhone and iPad to organize your apps, you might be interested to know that there's a handy little hidden feature for moving...
Commonwealth Bank (CBA) today implemented support for Apple Pay, making it the second of Australia's "Big Four" banks to offer the payments service. CBA is the biggest retail bank in...
Netflix today launched a new Instagram integration that's designed to allow Instagram users to share their favorite movies and TV shows in Stories, reports Variety.
The feature can be used...
Twitter today announced that it has started rolling out a new, simplified interface on the web, which is available to some users starting today.
The updated interface features a two-column...
Alongside the release of iOS 12.1.3, the latest update to the iOS 12 operating system, Apple has released new 12.1.13 software that's designed for the HomePod.
The new HomePod software will...
Apple today released watchOS 5.1.3, the fourth update to the watchOS 5 operating system that runs on modern Apple Watch models. watchOS 5.1.3 comes more than a month after the release of watchOS...
Apple today released macOS Mojave 10.14.3, the third update to the macOS Mojave operating system that first launched in September. macOS 10.14.3 comes six weeks after the launch of macOS Mojave...
Apple today released tvOS 12.1.2, the fourth update to the tvOS 12 operating system designed for the fourth and fifth-generation Apple TV models. tvOS 12.1.2 comes more than a month after the launch...
