Timehop discloses July 4 data breach affecting 21 million

Jul 9, 2018 · techcrunch.com

Timehop

Timehop has disclosed a security breach that has compromised the personal data (names and emails) of 21 million users (essentially its entire user base). Around a fifth of the affected users — or 4.7M — have also had a phone number that was attached to their account breached in the attack.

The startup, whose service plugs into users’ social media accounts to resurface posts and photos they may have forgotten about, says it discovered the attack while it was in progress, at 2:04 US Eastern Time on July 4, and was able to shut it down two hours, 19 minutes later — albeit, not before millions of people’s data had been breached.

According to its preliminary investigation of the incident, the attacker first accessed Timehop’s cloud environment in December — using compromised admin credentials, and apparently conducting reconnaissance for a few days that month, and again for another day in March and one in June, before going on to launch the attack on July 4, during a US holiday.

Read Complete Article

RT @iLondoncalling: London is a RetailTech leader and @metail are a great success story https://t.co/uSefIBuXkj

I’m standing up for Londoners by backing a public vote on the final Brexit deal. #peoplesvote https://t.co/0s4RamStKG

#TechX365: If the UK tech industry is so good at getting a #tech business to $1 billion, what's stopping it from gr… https://t.co/QmXv7kVeO2

How to protect against 10 common browser threats (free PDF) https://t.co/ULnNpfdqUo

VR, AR and the NHS: How virtual and augmented reality will change healthcare https://t.co/PKz7lVFvud @forthebest