Snapchat Worker Conned By Phishing Scam

Snapchat says it is embarrassed after an employee sent the pay details of 700 current and former staff to a hacker.

A Snapchat payroll employee sent sensitive information about 700 current and former employees after falling for a phishing scam.

They emailed tax form data including social security numbers, wages, stock-option gains and benefits after receiving an email from someone they thought was chief executive Evan Spiegel.

Fifteen minutes later, they realised the original request was not legitimate, and emailed Mr Spiegel who confirmed that the employee had been conned.

A message posted on Snapchat’s website said: “We’re a company that takes privacy and security seriously.

Spiegel arrives at the Time 100 gala celebrating the magazine's naming of the 100 most influential people in the world for the past year, in New York<img src=”×155.jpg” class=”image__item ” alt=”Spiegel arrives at the Time 100 gala celebrating the magazine's naming of the 100 most influential people in the world for the past year, in New York” />

Snapchat founder and chief executive Evan Spiegel

“So it’s with real remorse – and embarrassment – that one of our employees fell for a phishing scam and revealed some payroll information about our employees.

“The good news is that our servers were not breached, and our users’ data was totally unaffected by this.

“The bad news is that a number of our employees have now had their identity compromised. And for that, we’re just impossibly sorry.

“When something like this happens, all you can do is own up to your mistake, take care of the people affected, and learn from what went wrong.”

The FBI is now investigating, and those whose data has compromised have been notified.

Everyone affected is being offered free credit monitoring software and identity theft insurance.

Snapchat app on iPhone<img src=”×155.jpg” class=”image__item ” alt=”Snapchat app on iPhone” />

The app allows people to send and watch videos

A Snapchat spokesman said that user data was not compromised and the firm’s servers were not breached.

Phishing attacks – in which fake emails are used to encourage people to hand over sensitive data – are increasingly popular with hackers.

They can compromise systems that are well-protected by firewalls and other defences simply by relying on human error.

Snapchat says it plans to do more training sessions for staff to avoid it happening again.

More than 100 million people use the entertainment and photo-sharing app each day.

In 2013 a vulnerability exploited by hackers led to names and phone numbers of millions of users being compromised.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s