Timehop to Confirm 'Security Incident'

Personal data of 21 000 000 users of popular service is in the hands of attakers
09 July 2018   1338

Popular service Timehop, created in 2011, is a kind of "time machine" for users of social networks. It allows to find out what the user or his friends published a few years ago, collecting information from Facebook, Instagram, Twitter and even photos in Dropbox.

Last Sunday, the company reported that on July 4, 2018, Timehop ​​was attacked by unknown intruders, and as a result, data of 21 million people 'leaked'.

Representatives of the company report that they discovered a breach when the hackers were still active and managed to stop the leakage of information, but for many users it was too late. The unknown managed to steal email addresses, names and phone numbers of 21 million users.

In addition, there were compromised "keys that let Timehop read and show you your social media posts (but not private messages)." Developers assure that all keys are already deactivated and no longer work, and users need to re-authenticate in the application.

The official message emphasizes that these tokens do not allow anyone (including Timehop ​​itself) to access Facebook Messenger or personal messages on Twitter or Instagram. Access is granted only to ordinary records. Theoretically, during the incident there was a short period of time during which unauthorized users could access such records of the victims. However, there is no proof that this really happened yet.

Almost no technical details about the incident have yet been reported, as the company continues its internal audit and investigation, involving local and federal law enforcement agencies, as well as third-party cybercriminals.

Representatives of Timehop ​​recognize that the attackers managed to get into the system because of compromising credentials for one of the "cloud" accounts. The fact is that the account was not protected by multifactor authentication, and only now the company decided to attend to additional protection of authorization and access control.

GoDays 2020 in Berlin: HypeCodes Review

Check the latest insides from one of the biggest Golang developers' event in Europe
30 January 2020   121

GoDays is an event, designed to connect the Golang community. Large amount of different tech speeches and workshops last for 3 days. Go pros, newbies or just those who only interests in this language were able to share the skills, thoughts, experience and just had some fun!


HypeCodes is the Official Partner of the Event

According to the hosts, this event was the second for them, They were able to extend the number of workshops and the days of the event itself. In total, over 450 people visited the event from over 20 countries. The new locatio, – the old brewery Vollgutlager combined with the underground club Schwuz – turned out as a great and interesting place for the IT conference.

GoDays Berlin 2020
GoDays Berlin 2020

The event had just finished, so there's no official videos or reports yet. But we really liked it, it was great! Giant amount of interesting and sophisticated reports by skilled developers, a lot of great workshop, many new people!

GoDays Berlin 2020
GoDays Berlin 2020

On the first workshop day, these were the topics:

  • Build a REST-based microservice application with Echo
  • Go Serverless! Stop Worrying About Infrastructure and Ship More
  • Kubernetes - without containers - but with lots of Go
  • Delivering Modern Production-Ready Serverless Apps with AWS
  • Digital Scarcity & Gaming in Golang
GoDays Berlin 2020
GoDays Berlin 2020
GoDays Berlin 2020
GoDays Berlin 2020
GoDays Berlin 2020
GoDays Berlin 2020
 

And these are some of the talks:

  • I see what you did there! (Tracing in Go)
  • Making virtual machines cloud native with KubeVirt
  • Advanced debugging in golang
  • Translating Go to Other (Human) Languages, and Back Again
  • Building a multiplayer game server in Go and Webassembly
  • Introduction to Time-Series
  • The Internet of Gophers

And more and more and more!

So, we really liked the event and we're planning to visit it next time. Hope to see you there!

Learn more at the official website!