A New Vulnerability In WhatsApp Allowed Hackers To Hijack Your Phone

Saanvi Araav - Oct 05, 2019


A New Vulnerability In WhatsApp Allowed Hackers To Hijack Your Phone

Recently, researchers have discovered a significant vulnerability in WhatApps that could allow hackers to get access to our phones, thus steal our data.

Recently, a group of security researchers has discovered a significant vulnerability in the WhatApps app. This vulnerability could allow hackers to get access to our phones, thus steal our data. They accomplished that by sending out malicious GIF. This issue is a double-free vulnerability. It means that particular memory corruption could open the app to the hacker or crash the app, which in turn compromises the device security.

How does it work?

From the technical details, we learned that the attacker would send a particular WhatsApp message to the user with a modified GIF. Then when the user opens the photo gallery of their WhatsApp, that bug will get out. And there are likely some certain Android versions where users face the highest risks of being affected by this bug.

whatsapp-vulnerability-hijack-phone-1
WhatsApp has officially patched this vulnerability with the version 2.19.244

According to Awakened (a developer), the exploit only works on devices with version 2.19.230 of WhatsApp or older. The platform has officially patched this vulnerability with the version 2.19.244.

He also added that the exploit functions on Android 9.0 and 8.1; however, it does not work with Android versions 8.0 and lower. The developer added:

Capture

According to WhatsApp, there were no reasons to think that this vulnerability has impacted anyone. Moreover, the company has resolved this issue with a patch.

A spokesperson of WhatsApp said that this issue has been reported and resolved last month.

whatsapp-vulnerability-hijack-phone-2
The company has resolved this issue with a patch

Lots of problems with WhatsApp recently

WhatsApp has faced numerous security headaches before. Back in October last year, a researcher released information about another vulnerability of the app. With that vulnerability, hackers could seize an account's control by video call. Recently, there was a bug in the app that hackers exploited to spread their Pegasus malware.

Comments

Sort by Newest | Popular

Next Story

Read more

This Shockingly Realistic Deepfake Video Features Elon Musk And Jeff Bezos In An Episode Of Star Trek

Features- Feb 24, 2020

This Shockingly Realistic Deepfake Video Features Elon Musk And Jeff Bezos In An Episode Of Star Trek

A deepfake video with the background of an episode a Star Trek original series has the appearance of two unexpected guests – Elon Musk and Jeff Bezos

Apple Is Seriously Considering A Holeless iPhone

ICT News- Feb 24, 2020

Apple Is Seriously Considering A Holeless iPhone

A recently surfaced patent shows that Apple is considering a phone design with a glass body and a wraparound display, and no buttons nor ports

Math Explains Why Indian Food Tastes So Good

Features- Feb 23, 2020

Math Explains Why Indian Food Tastes So Good

The secret behind Indian food, what makes it so unique and so good, has recently been revealed by mathematicians

Tesla Autopilot Cars Fooled Into Speeding With Just A Piece Of Tape

Features- Feb 24, 2020

Tesla Autopilot Cars Fooled Into Speeding With Just A Piece Of Tape

A group of researchers has managed to trick the Autopilots mode on a Tesla Model S and Model to break the speed limit. And the trick appeared too easy.

OnePlus 8 Pro Live Photo Shows Back Panel With Quad Rear Cameras

Mobile- Feb 24, 2020

OnePlus 8 Pro Live Photo Shows Back Panel With Quad Rear Cameras

Sadly, the Onelus 8 Pro live photo doesn't show the front of the phone, which has been reported to feature a punch-hole display.

The Weirdest Technologies Being Tested By The Military

Features- Feb 22, 2020

The Weirdest Technologies Being Tested By The Military

Advancements in technology help soldiers fight and defend more effectively, and below are the newest, weirdest techs being tested by the military.