WhatsApp user? Beware! Your messages can be accessed, even edited by hackers
If you are on WhatsApp, which most people are, you need to be more careful than ever before. Cyber security researchers at Check Point Research have spotted a flaw that allows hackers to edit users' messages, essentially putting words in their mouths. This can lead to horrific consequences for innocent WhatsApp users.
If you are on WhatsApp, which most people are, you need to be more careful than ever before. Cyber security researchers at Check Point Research have spotted a flaw that allows hackers to edit users' messages, essentially putting words in their mouths. This can lead to horrific consequences for innocent WhatsApp users. The researchers demonstrated how this flaw could be exploited at the Black Hat cybersecurity conference in Las Vegas this week. In blog post, researchers said that this flaw "could allow threat actors to intercept and manipulate messages sent in both private and group conversations, giving attackers immense power to create and spread misinformation from what appear to be trusted sources."
The Check Point Research has observed three possible methods of attack exploiting this vulnerability. It said that all these methods involve social engineering to fool the users. These ways include -
1. Using the ‘quote’ feature in a group conversation to change the identity of the sender, even if that person is not a member of the group.
2. Alter the text of someone else’s reply, essentially putting words in their mouth.
Watch Zee Business TV LIVE Streaming Online -
3. Send a private message to another group participant that is disguised as a public message for all, so when the targeted individual responds, it’s visible to everyone in the conversation.
The researchers claim that the tool could be used to incriminate a person or close a fraudulent deal. The research firm said that it had informed WhatsApp about the vulnerability at the end of 2018, but the company has failed to address the issue. "We believe these vulnerabilities to be of the utmost importance and require attention," the researchers said in a blog post .
"By decrypting the WhatsApp communication, we were able to see all the parameters that are actually sent between the mobile version of WhatsApp and the Web version. This allowed us to then be able to manipulate them and start looking for security issues. This resulted in us being able to carry out a variety of attack types," the firm added.
As long as the flaw remains and is addressed, your conversations remain vulnerable.