SnapChat just got phished – employee information leaked

ByCraig Haley

You don’t have to be a technophobe to fall for Internet scams. It really can happen to any of us, as those in the SnapChat offices found out recently.

Staff from the popular instant message app – famed for its disappearing messages – were tricked by a spear-phishing campaign that resulted in sensitive payroll information about current and former employees being leaked to cyber-criminals.

Spear-phishing, for the uninitiated, is a phishing scam (pretending to be a trusted entity you’re not to obtain sensitive information from a victim) designed to fool a specific target, unlike generic phishing scams that are typically sent out en-masse to a large number of people with the idea that a small number of targets may “bite”.

In this case, the scam was specifically designed to fool staff at SnapChat since the email sent by the scammers appeared to come from SnapChat CEO Evan Spiegel asking for employee payroll information.

SnapChat said…

Unfortunately, the phishing email wasn’t recognized for what it was – a scam – and payroll information about some current and former employees was disclosed externally.”

SnapChat haven’t released what information exactly was compromised, but it could be social security numbers, salary, personal information like names and addresses and even banking details.


Sponsored Content. Continued below...




Affected employees have been notified and offered free identity theft protection and monitoring for the next two years. Though this could potentially cause quite the headache for them if scammers use that information to commit identity fraud.

Phishing scams designed to target specific companies are common, and as such it is imperative that such businesses that may be targeted have strict and rigorous procedures in place to ensure that such scams cannot be successful, and an integral part of that is staff training. Businesses have an inherent disadvantage as criminals can easily access public data about them and design their scam emails accordingly to make them appear more believable.

So it goes to show that not even trending software companies are immune to relatively primitive email scams. We imagine the criminals could hardly believe their luck when they found out that their scheme worked.

Keep up-to-date with all our latest articles. Follow us on Facebook, Instagram and Twitter.

Continued below...


Thanks for reading! But before you go… as part of our latest series of articles on how to earn a little extra cash using the Internet (without getting scammed) we have been looking into how you can earn gift vouchers (like Amazon vouchers) using reward-per-action websites such as SwagBucks. If you are interested we even have our own sign-up code to get you started. Want to learn more? We discuss it here. (Or you can just sign-up here and use code Nonsense70SB when registering.)

Become a Facebook Supporter. For 0.99p (~$1.30) a month you can become a Facebook fan, meaning you get an optional Supporter Badge when you comment on our Facebook posts, as well as discounts on our merchandise. You can subscribe here (cancel anytime.)