WhatsApp flaw ! Now hackers can edit your sent messages

Security hacks are on an increase. Malicious hackers are actively searching for flaws and vulnerabilities in tech platforms, significantly social media apps, that may enable them to realize management of users' personal profiles and use them to their advantage. At a time once cyber attacks area unit on an increase Facebook is however to mend 3 flaws in its social electronic messaging app, WhatsApp, which will enable hackers to edit users' sent messages.

During the annual Black Hat security conference that was control in city, us earlier on security researchers from associate Israeli cyber security firm Check purpose incontestable  however malicious hackers will use vulnerabilities in WhatsApp's platform to govern the contents of not solely the messages sent in a very personal chat however additionally in a very cluster chat.

In a web log post, Check purpose researchers Dikla Barda, Roman Zaikin and Oded Vanunu explained the 3 vulnerabilities plaguing the favored social electronic messaging platform. the primary vulnerability permits hackers to use the "'quote' feature in a very cluster language to alter the identity of the sender, even though that person isn't a member of the cluster." The second vulnerability, because the researchers explained, permits hackers to "alter the text of somebody else's reply, basically golf stroke words in their mouth."

The third flaw, permits the malicious hackers to "send non-public messages to a different cluster participants that's disguised as a public message for all." this implies that the you may feel that you simply have received a non-public message in a very cluster, however it'll be visible to all or any the individuals within the cluster.


Check purpose had initial au fait Facebook-owned WhatsApp regarding the 3 vulnerabilities in its platform last year. "Towards the top of 2018, Check purpose analysis notified WhatsApp regarding new vulnerabilities within the common electronic messaging application that may modify threat actors to intercept and manipulate messages sent in each non-public and cluster conversations, giving attackers the facility to make and unfold info from what seem to be sure sources," Check purpose wrote in a very web log adding that the corporate had fastened the third vulnerability "which enabled threat actors to send a non-public message to a different cluster participant disguised as a public message."

Responding to the claims created the cyber security firm, a Facebook advocate same that claims relating to vulnerabilities in WhatsApp were false.

"The state of affairs represented here is simply the mobile equivalent of sterilisation replies in associate email thread to create it appear as if one thing someone did not write. we want to be conscious that addressing considerations raised by these researchers might create WhatsApp less non-public -- like storing data regarding the origin of messages," a Facebook advocate told IANS.