Timehop Data Breach Affects 21 Million Users

Popular social media service and app Timehop has acknowledged a recent “network intrusion” that led to a data breach which affects “some 21 million” of the app’s users. The breach included names, email addresses, and some phone numbers.

Timehop posted a notice of the breach on its own website on Sunday, noting the breach took place on July 4. The company notes that “no private/direct messages, financial data, or social media or photo content, or Timehop data including streaks were affected.”

“To reiterate: none of your ‘memories’ – the social media posts & photos that Timehop stores – were accessed,” the post says. Timehop users are now seeing the same security update upon opening the app.

For those who don’t use — or aren’t aware of — the app, Timehop is a service which can be connected with other popular social media platforms, including Facebook, Twitter, and Instagram, among others. The app shows users what they posted during the same day in previous years.

It’s a fun idea, but this is a nightmare scenario for Timehop and its users, as the service has to be given access to other social networks to get its data. So the biggest concern is that anyone who hacked into Timehop would suddenly have complete access to all its other connected social networks. But that doesn’t seem to be the case here.

All the “keys” which “let Timehop read and show you your social media posts (but not private messages) were also compromised,” the company notes. However,  Timehop users have been logged out of the app, and those compromised keys have been deactivated — users will have to log back into the app and reauthenticate to continue its use.

If you used a phone number for your login process, Timehop recommends that you “take additional precautions with your cellular provider.” Look into adding a PIN to your account.

After all of this, users may question if it’s really worth it to keep using Timehop. It’s a fun app, but it’s by no means necessary to social media users, and this may be the sort of scare that drives some people away for good.

Phil Dzikiy

Phil Dzikiy

Phil Dzikiy is the former editor in chief of Security Baron. Before, he has worked as a freelance writer and editor at websites like Wirecutter.com and iLounge.com along with publications like the Lockport Union Sun & Journal and the Greater Niagara Newspapers. With digital and print experience under his belt, Phil has a passion for all things technology including home security, cyber security, and the smart home. His bachelor's degree in Journalism from the University of Maryland College Park initially landed Phil his first job at the Beaver County Times, which has lead to over 15 years of experience as a journalist.

Trending News

Follow Us