Snapchat, a Smartphone application that lets users share snapshots with friends is catching fire among teenagers. It was first hacked in December when 4.6 million Snapchat users were exposed in a database breach.
Later, the denial-of-service attack and CAPTCHA Security bypass were discovered by other researchers within last two-three weeks. Snapchat has no Vulnerability Reward Program, but still many penetration testers are working hard and free of cost to make the application more secure by disclosing flaws.
Interestingly, this is not the end of vulnerabilities, Mohamed Ramadan, a security researcher from Egypt, has spotted a new vulnerability on Snapchat that allows an attacker to brute-force login credentials of the users.
he said in a blog post.This vulnerability allows anyone who knows your SnapChat email to brute force your accounts password without any protection from snapchat side, there is no lockout. Limited tries or even Captcha.
He found this security flaw late in 2013, reported it to Snapchat's Security Team and they took 2 Months to fix the flaw.