Cybersecurity firm Check Point Software Technologies found three potential bugs in Facebook's WhatsApp messaging app, which could let attackers doctor messages in both public and private dialogues.
One bug exploits WhatsApp's "quote" feature in group conversations to alter the appearance of the sender's identity, and another allows the modification of someone else's reply, Check Point said. The third — which has been patched — would let someone send a private message to another group participant, in the guise of a public message to all participants.
"The scenario described here is merely the mobile equivalent of altering replies in an email thread to make it look like something a person didn't write," a Facebook spokesperson said. Check Point's Oded Vanunu said the flaws could have profound implications, as about 1.5 billion people currently use WhatsApp, which is employed for personal conversations, business communications, and political messaging.
View Full Article
Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA