The details of more than 4.5 million Snapchat users have been posted online.
A website called SnapchatDB released the usernames and phone numbers of 4.6 million Snapchat users, according to ZDNet. Although the site has since been taken down but has been saved and shared across the web.
The hack comes a matter of days after security firm, Gibson Security, warned of the popular chat app's vulnerabilities. The SnapchatDB hackers confirmed that they used the exploit detailed by Gibson Security, according to TechCrunch.
"Our motivation behind the release was to raise the public awareness around the issue, and also put public pressure on Snapchat to get this exploit fixed. It is understandable that tech startups have limited resources but security and privacy should not be a secondary goal. Security matters as much as user experience does." said SnapchatDB.
"We know nothing about SnapchatDB, but it was a matter of time till something like that happened," said Gibson Security on Twitter.
SnapchatDB said it would reveal full phone numbers to interested parties, suggesting the affected users' details will be sold to spam and phishing operations.
The app allows users to send a photo to another but only lets that person view it for a short time before it is deleted.
Snapchat reportedly knew about the potential security hole for four months, but ignored and passed off as only theoretical. A few lines of code could have avoided the major leak.
"Theoretically, if someone were able to upload a huge set of phone numbers, like every number in an area code, or every possible number in the U.S., they could create a database of the results and match usernames to phone numbers that way. Over the past year we’ve implemented various safeguards to make it more difficult to do. We recently added additional counter-measures and continue to make improvements to combat spam and abuse." said Snapchat in a blog post prior to the leak.