WhatsApp Accounts Almost Completely Unprotected

By Nick H.
in Back Page News

 Share

Recommended Posts

Grand Master

Nick H. Supervisor

Posted
  • Supervisor
Posted
WhatsApp accounts almost completely unprotected

Tests performed by The H's associates at heise Security have found that popular texting alternative WhatsApp is easily hacked using freely available tools. Anyone using WhatsApp on a public Wi-Fi network risks having their data sniffed and their account used to send and receive messages. Once hacked, there is no way to restore account security ? attackers will be able to continue to use the hacked account at their discretion.

Over the last week the lack of security inherent in WhatsApp's authentication has gradually become clear. Researchers have discovered that the client uses an internally generated password to log on to the server; this password is generated on Android devices from the device's serial number (IMEI) and on iOS devices from the MAC address of the Wi-Fi interface. The problem with this is that the information is anything other than secret ? the IMEI can often be found on stickers inside of Android phones (usually under the battery) and can also be obtained using a shortcut key combination or by any app.

Source and more.

Considering the age of this article (14th September) I'm assuming this isn't news to anyone? I couldn't find a thread about it though, so figured I'd post to be sure.

Grand Master

+InsaneNutter MVC

Posted
  • MVC
Posted

Now read that myself, however i was aware Whatsapp is very insecure.

Another interesting article from May this year: WhatsAppSniffer Shames WhatsApp's Plaintext, Unprotected Chat Transfer Protocol, Shows Off Just How Much Can Be Sniffed.

It looks like that was finally patched in August: WhatsApp no longer sends plain text

WhatsApp appear to be threating legal action over people creating tools that exploit the service: http://www.h-online....rs-1716912.html ... why not just secure it then surly such tools will be useless?!

Veteran

The Dark Knight

Posted
Posted
WhatsApp appear to be threating legal action over people creating tools that exploit the service: http://www.h-online....rs-1716912.html ... why not just secure it then surly such tools will be useless?!

Because it is a lot easier to sue instead of improving your own stuff. :D

A certain other company is also famous for this. ;)

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • AI is indeed eliminating jobs, and Oracle just proved it

      By Jdoe25 · Posted

      I know an idiot at work who is "Director for innovation projects" and inevitably has been tasked with following up on this whole trend of "AI and its work applicability". He recently sent out a survey on the topic, for the workforce to disclose their usage and attitudes towards AI. The survey was badly, sloppily typed out, the questions and answers (when multiple choices) were loosely correlated and, all and all, it would already be miserable in the times of MS Office Autocorrect alone. Then, I had AI responding to it all (on the open-ended questions) with beautiful, to-the-point prose after I provided it with minor but proper guidance, taking me under 10 minutes. All this to say that I am sure that if AI comes to replace someone, it will still be me, and the other idiot will still stay.
    • mIRC 7.84 Final

      By Konstantine · Posted

      Man, the memories.
    • Microsoft fixes one of Excel Copilot's most frustrating limitations

      By Abercrombe · Posted

      Call me when you can say, "Find all duplicate rows with duplicate email addresses and move the duplicate rows to a new sheet", and Copilot can execute that and not give you VBScript to write to do it. If anyone thinks AI isn't in its infancy and the bubble is about to burst, try to do anything meaningful in Excel with Copilot and you will realize AI hasn't even made it to kindergarten in most use cases yet.
    • Microsoft releases major feature updates for stock Windows 11 apps

      By Neeo · Posted

      I have installed all their components from store.rg-adguard.net. I encountered an unusual issue with Microsoft Edge that I installed manually. When I disable “Shadows under windows” in the Windows performance settings, the menus in Edge display sharp corners instead of rounded ones. I don't think the problem is related to a debloated version of Windows, as I experienced the same issue on a standard Windows machine in the past.
    • AI is indeed eliminating jobs, and Oracle just proved it

      By +LightEco · Posted

      "AI has just arrived, how is it possible they're already losing jobs?” Huang said." Hey idiot. It's called these stupid companies spending too much on your AI ###### and having to layoff employees to cover the cost.

  • Recent Achievements

    • Dedicated
      HidekoYamamoto94 earned a badge
      Dedicated
    • One Month Later
      timbobit earned a badge
      One Month Later
    • One Month Later
      nates earned a badge
      One Month Later
    • Week One Done
      Almohandis earned a badge
      Week One Done
    • Rookie
      dorf went up a rank
      Rookie

  • Popular Contributors

    1. 1
      +primortal
      454
    2. 2
      +Edouard
      162
    3. 3
      PsYcHoKiLLa
      107
    4. 4
      Michael Scrip
      85
    5. 5
      Steven P.
      70
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!