A cyber-security firm in an interesting revelation has discovered a flaw in WhatsApp that allows scammers to alter the content or change the identity of the sender of a previously delivered message. Hackers can create a hacked version of the WhatsApp and change the “quote” to give an impression that someone sent a message they did not actually send. WhatsApp acknowledged that anyone can manipulate the Quote feature, but the company didn't agree on as a flaw. According to the research firm, the vulnerability so far allows for three possible attacks; Changing a reply from someone, Quoting a message in a reply to a group conversation to make it appears as if it came from a person who is not even part of the group, and finally, Sending a message to a member of a group that pretends to be a group message but is in fact only sent to this member, but the member’s response will be sent to the entire group. However, WhatsApp said that the system was working as intended since the trade-off to prevent such a deception by verifying every message on the platform would create an enormous privacy risk or bog down the service. it also ensured that it worked to ...
Thursday 9 August 2018
Security firm finds flaw in WhatsApp that lets hackers alter messages
A cyber-security firm in an interesting revelation has discovered a flaw in WhatsApp that allows scammers to alter the content or change the identity of the sender of a previously delivered message. Hackers can create a hacked version of the WhatsApp and change the “quote” to give an impression that someone sent a message they did not actually send. WhatsApp acknowledged that anyone can manipulate the Quote feature, but the company didn't agree on as a flaw. According to the research firm, the vulnerability so far allows for three possible attacks; Changing a reply from someone, Quoting a message in a reply to a group conversation to make it appears as if it came from a person who is not even part of the group, and finally, Sending a message to a member of a group that pretends to be a group message but is in fact only sent to this member, but the member’s response will be sent to the entire group. However, WhatsApp said that the system was working as intended since the trade-off to prevent such a deception by verifying every message on the platform would create an enormous privacy risk or bog down the service. it also ensured that it worked to ...
