YIBADA

Developer Hacks Kardashian Website, Exposes Email Addresses & User Numbers

| Sep 18, 2015 12:53 AM EDT

"Keeping Up with the Kardashians," one of the most famous shows of E!, will soon land in Taiwan, as E! Taiwan is set to be unveiled on July 1.

The newly launched Kardashian website apparently had an unsecured API. As a result, a developer named Alaxic Smith came across the portal's open javascript file that provided him access to its API. The 19-year-old shared his experience in the blogging site Medium.

The API error allowed Smith to log into the website using his own user name and password which directed him to a web page with the names and emails of Kylie Jenner's app users, reports Techcrunch.

Smith got the full data base of names and emails of subscribers to the Kardashian apps. He also altered the data, destroyed users data, images and other contents, reports The Verge.

Based on the data, Kylie Jenner has long stolen the lead from stepsister Kim Kardashian.  Kylie, who owns the URL thekyliejenner.com has 663,270 users, while Kim (kimkardashianwest.com) has only 80,679 users. Khloe Kardashian (khloewithak.com) has more users than Kim at 96,635, while stepsister Kendall Jenner (kendallj.com) has the least with 50,756.

The mobile apps of the website, now dominating the App Store, was launched to help the sisters connect with their fans

The Verge notes that the API error on the Kardashian website is a usual security error. Although Smith apparently failed to hack and get payment data, scammers and identity thieves who could also hack into the portal could use the information to commit fraud.

However, Whalerock Industries, which developed the Kardashian website and apps, points out that only Smith hacked it and the firm addressed the problem immediately. Even Smith cooperated eventually with Whalerock and took down his post to prevent more developers from exploiting the bug that he discovered.

Related News

Most Popular

EDITOR'S PICK