Advertisement
Top
image credit: Pixabay

WhatsApp flaw used to install spyware by simply calling the target

May 14, 2019

Via: Help Net Security
Category:

A security vulnerability in the popular Facebook-owned end-to-end encrypted messaging app WhatsApp allowed attackers to install spyware on smartphones without any user interaction, Financial Times has reported.

The exploitation of the flaw could be triggered by making a WhatsApp call to the target device and manipulating the data packets sent to it when the call is started.

Targets do not have to take the call in order for the exploit to work, and the attackers, once they gain access, can later even delete the call from the app’s call log, erasing all overt evidence of the attack.

Read More on Help Net Security

RELATED PUBLICATIONS

Chinese-Linked LightSpy iOS Spyware Targets South Asian iPhone Users
Keyloggers, spyware, and stealers dominate SMB malware detections
API sprawl: navigating the web of connectivity and security challenges

Latest Publications

The importance of the Vulnerability Operations Centre for cybersecurity
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes
FIN7 targeted a large U.S. carmaker with phishing attacks
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!