**Man Tricks Hundreds of Women into Handing Over Snapchat Security Codes**
A disturbing trend has emerged in the world of online security, and this week's Weirdo Wednesday feature will leave you scratching your head. A 27-year-old man from Illinois, Kyle Svara, has admitted to hacking into women's Snapchat accounts across the US, using a clever tactic that allowed him to bypass two layers of security.
Between May 2020 and February 2021, Svara harvested account security codes from an astonishing 571 victims, with confirmed unauthorized access to at least 59 accounts. But here's the kicker: he didn't attempt to break Snapchat's robust encryption protocols. Instead, he used social engineering to trick women into handing over their security codes.
After gathering phone numbers and email addresses, Svara sent anonymous messages via a VoIP texting service, claiming the codes were needed to "verify" or "secure" the account. He even went so far as to pose as Snapchat support, convincing many victims to share both their six-digit security code and their secondary four-digit PIN – the latter used for Snapchat's My Eyes Only feature.
By using this tactic, Svara was able to bypass two layers of security without writing a single line of code. The result? He gained access to private material, including nude images. But that wasn't all – Svara also made money from his nefarious activities by marketing himself as a hacker-for-hire on platforms like Reddit.
His customers included at least one high-profile individual: Steve Waithe, a former track and field coach who worked at several universities, including Northeastern. Waithe paid Svara to target student athletes he was supposed to mentor. The scam even extended beyond the US, with Svara targeting women in his home area of Plainfield, Illinois, as well as Colby College in Maine.
Svara now faces charges including identity theft, wire fraud, computer fraud, and making false statements to law enforcement about child sex abuse material. His sentencing is scheduled for May 18.
**How to Protect Your Snapchat Account**
Unfortunately, Svara's case highlights the ongoing threat of social engineering attacks. To stay safe, never send someone your login details or secret codes, even if you think you know them. And don't just stop at passwords – consider using passkeys, which offer stronger protection than traditional multi-factor authentication.
Passkeys let you sign in without a password, but unlike multi-factor authentication, they are cryptographically tied to your device and can't be phished or forwarded like one-time codes. Snapchat supports them, so make sure to take advantage of this added layer of security.
**The Dark Side of Smart Tech**
But Svara's case isn't the only disturbing example of predators using technology to invade women's privacy. This week, CNN published stories about men who used AI-powered smart glasses to record private interactions with women without their consent. These "rizz" videos are then packaged and sold online as a way for the perpetrators to build followings and sell "coaching" services.
The implications of these cases are chilling – when combined with AI-powered services, the possibilities become even more sinister. And it's not just about the tech itself; it's also about how it's being used by those who would exploit others for their own gain.
**Protect Yourself**
At Malwarebytes, we're committed to helping you stay safe online. Our mobile protection products feature a tool called Scam Guard, which can detect scams and alert you to potential threats. If something looks dodgy, don't hesitate – check if it's a scam using Malwarebytes Scam Guard.
Submit a screenshot, paste suspicious content, or share a text or phone number, and we'll tell you if it's a scam or legit. Download Malwarebytes Mobile Security for iOS or Android today and stay one step ahead of the scammers.