WhatsApp’s Major Security Flaw Could Have Allowed Hackers Access Phones

Recently, WhatsApp divulged about vulnerability issue within their system that might have allowed hackers to access the phones of several users’. The Facebook owned messaging service stated that the susceptibility that allowed spyware to be injected into the users’ phone through the phone call function of the application. The possible target might be a London-based human rights lawyer.

On Monday, the encrypted messaging service stated that it had found and fixed the vulnerability the attackers had wanted to exploit. An expert told that the hackers could insert malicious code on a victim’s phone by placing a voice call to the victim on WhatsApp; victims might not have even required answering the call on their phone to be affected.

While WhatsApp didn’t mention about the private company; however, a source familiar with the probe into the attack stated that the powerful piece of spyware has been developed by the Israeli cyber intelligence company NSO Group. The malware has been designed to spy on its victims.

In a statement NSO stated that under no position would NSO be associated in the functioning or spotting of targets of its technology, which is absolutely managed by intelligence and law enforcement agencies.

NSO stated that its technology was licensed to government agencies for the lone purpose of combating crime and terror. Those agencies decide how the technology is used without any action from the company.

Among those believed to have been aimed via WhatsApp is a London-based human rights lawyer, who is offering advice on a case against NSO. NSO has refuted to target the lawyer.
On Sunday, the lawyer received two calls that John Scott-Railton, a senior researcher at the University of Toronto’s Citizen Lab thinks were part of the assault. The possible effort to violate the lawyer’s phone was not successful, as WhatsApp had patched the vulnerability.

Leave a Reply

Your email address will not be published. Required fields are marked *