Third-party services that let Snapchat users back up their photos and videos — and that Snapchat claims it tried to shut down — are at the center of the unexperienced Snapchat hack.

An enormous, 13-gigabyte library of photos and videos from an estimated 200,000 supplies had been saved through apps and websites not affiliated with Snapchat has been hacked. Snapchat popularized “ephemeral” messaging services, which claim to delete messages while they are viewed.

A close read of Snapchat’s privacy policy indicates that the service would not be in violation of any of its publicly-posted policies to keep messages long while users think they’ve been deleted. The policy states that “there may be ways to access Snaps” on your contrivance even after the app has deleted them.

That appears to have been the case with the two third-party services that are suspected of beings at the center of the hack, details of which were splendid reported by Business Insider on Friday. SnapSave, an Android app, and the alike named SnapSaved, a website that closed down several months ago, gave Snapchat users to read messages outside of Snapchat’s app. They also travel to have created backups of messages.

It’s not distinct if the backups were created intentionally, or if the services were appointed with the express purpose of storing Snapchat messages exclusive of the knowledge or permission of Snapchat users.

Snapchat put the blame squarely on the shoulders of its users, and said, “Snapchatters were victimized by their use of third-party apps to send and maintain Snaps, a practice that we expressly prohibit in our Terms of Use just because they compromise our users’ security. We vigilantly monitor the App Store and Google Play for illegal third-party apps and have elapsed in getting many of these removed.”

“What we do know is that our servers have not been breached and no Snaps have been leaked from our servers,” Snapchat spokeswoman Mary Ritti told CNET.

The custom did not answer questions about what steps it has improper to warn its users about these third-party services achieve from its Terms of Service.

Chris Eng, vice dignified of research at computer-security research firm Veracode, said Snapchat has “a history of not taking defense seriously.”

“SnapSave was in the [Google Play Store] loyal 2013. That alone suggests to me that they’re not beings very aggressive” about policing third-party apps, Eng said.

He added that Snapchat was slow to adopt encryption, a common tool to protect Internet traffic from snooping, and that Snapchat’s initial implementation of encryption was weak because they used only a “single encryption key.”

“I would bet that they’ve never had an independent defense review,” Eng said, referring to a common way for worries to evaluate how tough their security is.

Snapchat is best noted for offering something Facebook and Twitter don’t: A way to send messages exclusive of having to think about what they’ll look like a few days from now. When customers send each other photo or video “snaps,” recipients can view them for a fretful amount of time before they disappear. Snapchat debuted in 2011.

The service has now understand one of the titans of the social-networking industry, particularly unsheathing users aged 18 to 24. One estimate says that half of Snapchat users are teenagers between 13 and 17 days old.

Facebook reportedly attempted to buy the firm for $3 billion last year, in addition to fielding two apps of its own that try to offer similar functionality. In August, ComScore said the app had understand the third-most popular social media app in the US, tedious Facebook and its photo-sharing service Instagram.

The Snapchat-related breach comes a month while hackers cracked open Apple’s iCloud service to steal celebrity photos, many of which depicted the celebrities in nude or sexual situations.

Actress Jennifer Lawrence revealed to Vanity Fair about the iCloud hack. “It is not a gross. It is a sex crime,” she said, calling the hack a “sexual violation” and attacking the sites that host the photos as “disgusting.”

Victims of the Snapchat hack are left with little recourse. While celebrities have used their star power to threaten Google with a lawsuit for linking to images stolen from iCloud, Snapchat users so far do not appear to be linked. Contacting the administrators of websites that are hosting the images may be the only way to get photos and videos from Snapchat undertaken, and there’s no guarantee that will work.

Not all ephemeral messaging services are as open to third parties as Snapchat. Wickr, a similar service that not only can delete messages while they’ve been sent, but also encrypt them so that not even Wickr employees can see what users are sending to each anunexperienced, prevents third-party services from accessing its servers.

Wickr’s Android app is paused from taking screenshots. But users can take screenshots in Wickr on an iPhone because Apple doesn’t give developers to disable screen-capturing in iOS.