Vulnerability on WhatsApp and Telegram exposed by CheckPoint

The Security firm, Checkpoint, published new research about vulnerability on 2 messages apps. WhatsApp and Telegram had vulnerability that allowed to hackers, to take control over the user account with the easiest way.

The vulnerability is related to their Web service, cause they fully synced with the user device. The attacker use this exploit he can take over any account on any browser. The attacker can do what ever he wants with your photos and conversations in private or group chats.

How the exploit works ?

The attacker send image to the victim and the victim that using one of those apps, will probably open the image. The image contains the malware code and from that moment the attacker can do what ever he wants with your account. The code actually take over the local storage of both apps.

What can WhatsApp and Telegram do against ?

Not much, Because that both platforms are encrypted End to end, so they can’t see that someone send malware image to other user. Unless someone is warning them.

On the 7th March, both companies fixed that exploit after Checkpoint alert them, but who knows how many has been hacked.

The attackers will probably find another way to hack those apps. So if you want to be protected from unknown users who send you malware images, Chose BBM.

Read Checkpoint post.

 

Roy Shpitalnik

lived the life of a BlackBerry since 2009 so I was first exposed to 8900. With Israeli cellular world history, training and knowledge for more on BlackBerry, I decided to join the community. When the Media bash BlackBerry on regular basis i decided to Join BerryIL.COM. The true must be published. Contact me on Twitter : @SimpleBerryRoy

  • kingRidiculous

    I’ve been away from Android for a while. Can malware run on an un-rooted Android phone?

    • Roy shpitalnik

      This malware is not about the phone OS, it’s about the account of Telegram and WhatsApp. It can happen even if you use BB10.. The malware don’t effect the phone, only the account.

    • And there are various types of malware. The scariest type will root, or need a rooted phone. Most ransomware does not require root, instead it just requires the user give permission to certain aspects of the phone.

  • Rajashekar Sanga

    When I had asked my friends to use bbm they never understand the need of security and continue with their vulnerable apps., poor fellows.

  • Prem_Watsapp

    BBM. #1 choice… :-D

Top