WhatsApp fixed a lethal security flaw that would crash the app
Imagine the app that is your communication lifeline unexpectedly and repeatedly dying. The research arm of Check Point Security announced Tuesday that it found a WhatsApp vulnerability that could have caused frustrating and potentially disastrous functionality for users. The firm alerted WhatsApp to the problem in August, and it is now fixed. Using group chat, Check Point was able to create an exploit that would repeatedly crash the app. WhatsApp wouldn't work again until the app was uninstalled, reinstalled, and the offending group chat was deleted. Here's a video demo of how it works. To most users, the bug might sound like just a frustrating experience. But the researchers pointed out to Fast Companythat for users like activists or dissidents, it could be especially harmful: The bug has the potential to interrupt communication, and would require deletion of chat logs, multimedia, and contacts in group chats. That scenario is a real possibility, considering WhatsApp is a favored communication tool, especially internationally, since it has end-to-end encryption. WhatsApp recently made changes to group chats to make them more secure and less susceptible to being a channel for spreading false and dangerous information. Before April of this year, anyone could add you to a group chat. Now, if you enable the setting, anyone can "invite" you to join a chat — but you have to accept or deny the invitation. Still, if you don't have your privacy specifically set to disallow group adding, anyone can simply add you to a group; groups can contain up to 256 people. WhatsApp has been the target of vulnerability exploits before. This spring, attackers started manipulating WhatsApp to totally take control over users' phones using Pegasus spyware. And in 2018, Check Point discovered that it could manipulate the sender names and text of forwarded messages, which enabled the spread of fake news. Facebook-owned WhatsApp has been taking action itself to combat fake news on WhatsApp by restricting the forwarding functionality. Despite fixes meant to make WhatsApp a tool for non-malicious communication, the work of these researchers show that the "secure" messaging platform is far from airtight.
- 最近发表
-
- Pakistan to host South Africa before ICC Women’s T20 World Cup
- Busy Philipps talks Marvel movies and essential travel tips
- “联姻”高校 优质高效建移民安居房
- “不到雅安避暑,这个夏天莫法过”
- Korea's economy to stop growing without drastic labor change: FKI
- Seoul mulls various options following possible NK nuke test
- Shia LaBeouf's anti
- “不到雅安避暑,这个夏天莫法过”
- Yoon, US Senate's armed service committee chief discuss alliance, N.K. threats
- 广东省农科院动科所专家团队赴清远开展灾后技术指导
- 随机阅读
-
- New image shows the North Star is changing. And it has spots.
- Officer and pup partner enforce the law and look good doing it
- Qatar on the offensive over rights storm
- Japan stun Germany in FIFA World Cup 2022
- Military prosecutors indict intel official over leaking 'black agent' info
- Nelly Korda regains number one ranking
- Stephen King has some golden Thanksgiving advice for avoiding political arguments
- All you Valentine's Day haters are wrong. There, I've said it.
- Understanding Relational vs. Non
- Victims of Japanese sexual enslavement to receive a compensation fund starting next week
- USS Ronald Reagan may have precipitated N. Korean 'tantrum': Seventh Fleet Commander
- Facebook gave Tinder and other dating apps special access to user data
- What Ever Happened to Flickr?
- No alcohol sales permitted at Qatar's stadium – source
- 知道吗?流浪狗也想有个家
- Busy Philipps talks Marvel movies and essential travel tips
- The Techies Who Lunch
- 13 gifts for people with acid reflux
- 市区 社会实践 给留守儿童带点快乐
- Stephen King has some golden Thanksgiving advice for avoiding political arguments
- 搜索
-
- 友情链接
-