Chtrbox risponde a SuspectFile riguardo la presunta violazione di profili Instagram
Secondo Chtrbox nessun database Instagram è stato violato. I dati presenti all’interno di un database secondario era a disposizione solo del loro Team. Inoltre i dati degli “Influencer” erano pubblici, quindi non sensibili.
Negli scorsi giorni avevo avuto modo di raccontare quello che per la maggior parte degli organi d’informazione di settore sembrava potesse essere l’ennesimo data breach ai danni di un database Instagram; la notizia era stata poi ripresa e riportata in pochissimo tempo da decine di testate online.
Per Chtrbox nessun database Instagram violato. Inoltre per la Start Up indiana nel database non erano presenti milioni di dati sensibili di Influencer, bensì poche migliaia di dati catalogati all’interno di un database secondario usato solo dal loro Team. Infine, tutti i dati erano già pubblici o addirittura, in alcuni casi, forniti dagli stessi Influencer.
Dopo aver pubblicato l’articolo, ho scritto una email al Team Chtrbox chiedendo di commentare la notizia data inizialmente da TechCrunch. Quella che segue è la email di risposta alle mie domande. La Start Up con sede a Mumbai chiarisce alcune inesattezze apparse su diverse testate online.
Dear Marco,
Thank you for reaching out to us, and apologies for the delay in reverting. As you may understand, as a small startup, it’s been an overwhelming few days for us. Additionally, we had to internally evaluate the situation before commenting.
In reference to the alleged data leak, we would like to state the following points:
1. Over the last three years of operations, we have never evaluated public data of anything over 350,000 social media influencers, not the 49 million reported in many instances. Claims that there was a leak of millions of influencers’ data are completely false.
2. The database in question was non-sensitive publicly available data, or in some cases self-reported data by Chtrbox users. The numbers are in early thousands, and not millions.
3. It was a secondary database, collated by us, containing public data that our internal team refers to discover influencers. The said database did not include private details, passwords, authorisation information, or sensitive data.
4. Robust data and information security standards are being implemented with data experts to further bullet-proof our processes to safeguard the integrity of both Chtrbox technologies and our stakeholders
5. To further confirm there was no breach on Instagram. A spokesperson from Instagram has stated “We take any allegation of data misuse seriously. Following an initial investigation into the claims made in this story, we found that no private emails or phone numbers of Instagram users were accessed. Chtrbox’s database had publicly available information from many sources, one of which was Instagram.”
6. We have always strived to respect our users’ privacy, and analyze influencer public data with the goal to make our influencer marketing campaigns data-driven and intelligent. We aim to help create value for digital creators and brands to enable them to grow.
Thank you
Best,