WhatsApp Confirms Vulnerability

WhatsApp vulnerability allowed hackers to snoop on users’ calls and messages via spyware

WhatsApp, which is owned by Facebook, lately revealed vulnerability in its app that permitted attackers to install malicious spyware that could have been used to monitor phone calls produced over the app without the understanding of customers.

The vulnerability, first reported by The Financial Times, has named behind the spyware Israel’s cyber surveillance business, NSO Group selling to safety firms and governments to combat terrorism.

The spyware, according to WhatsApp, permitted attackers to use a single WhatsApp call to inject the surveillance software on both iPhones and Android devices. In other words, even though users did not respond to their WhatsApp call, the code created by NSO could be transferred. In addition, in many cases the call often disappeared from the WhatsApp call logs, leaving no room for user suspicion. In addition, once the spyware is installed, it can switch on the camera and microphone of the target phone as well as scan emails and messages and retrieve place information from the user.

When asked about the study of the Financial Times, NSO said in a declaration that its technology “is licensed for the sole purpose of fighting crime and terror to approved government agencies. The business does not run the scheme and, following a strict process of licensing and vetting, intelligence and law enforcement determine how to use the technology to promote their public safety tasks.

The firm also said it is not using the hacking tools themselves. “We explore any credible claims of misuse and take action if needed, including the shutdown of the scheme. Under no conditions would NSO be engaged in running or identifying its technology’s objectives, which are operated exclusively by intelligence and law enforcement agencies.

WhatsApp solved the problem after learning about the vulnerability and released a patch to clients on Monday urging their users to update the app.

“WhatsApp promotes individuals to upgrade to the recent version of our app and maintain their mobile operating system up-to-date in order to safeguard against future targeted exploits aimed at compromising data stored on mobile devices,” a spokesman said in a declaration. “Together with industry partners, we are constantly working to provide the recent safety improvements to assist safeguard our customers.”

Before version 2.19.134 and WhatsApp Business for Android before version 2.19.44, the vulnerability appears to impact Android. WhatsApp before version 2.19.51 and WhatsApp Business before version 2.19.51 appear to have been impacted in the case of iOS phones.

LEAVE A REPLY

Please enter your comment!
Please enter your name here