WhatsApp discovers spyware attack via voice calling

| | San Francisco
  • 0

WhatsApp discovers spyware attack via voice calling

Tuesday, 14 May 2019 | IANS | San Francisco

WhatsApp discovers spyware attack via voice calling

WhatsApp has urged its 1.5 billion users to upgrade the app after the Facebook-owned platform discovered a vulnerability that allowed a spyware to be installed on users' phones via the app's phone call function.

The spyware was allegedly developed by the Israeli cyber intelligence company NSO Group, reports the Financial Times.

The vulnerability leveraged a bug in WhatsApp's audio call feature, facilitating the installation of spyware on the device being called whether the call was answered or not.

WhatsApp said it has fixed the vulnerability that was discovered last month.

"WhatsApp encourages people to upgrade to the latest version of our app, as well as keep their mobile operating system up to date, to protect against potential targeted exploits designed to compromise information stored on mobile devices, the company said in a statement.

The Israel-based NSO Group works for the government, looking to infect targets of investigations and gain access to various aspects of their devices.

"The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems," the WhatsApp statement read, without mentioning the NSO Group.

NSO Group told the Financial Times: "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies".

"NSO would not or could not use its technology in its own right to target any person or organization," the company added.

NSO limits sales of its spyware called Pegasus to state intelligence agencies and others. The software has the ability to collect intimate data from a target device.

According to WhatsApp, it suspects a relatively small number of users were targeted.

"This is, as you can imagine, an extremely severe security hole, and it is difficult to fix the window during which it was open, or how many people were affected by it," reports TechCrunch.

State Editions

Admission for UG courses begins in city colleges

22 May 2019 | Divya Modi | Ranchi

BJP trying to lure Cong MLAs, says Nath

22 May 2019 | Staff Reporter | Bhopal

Matching VVPAT slips would delay results: CEO

22 May 2019 | Staff Reporter | Bhopal

BSP suspends Ramveer Upadhyay

22 May 2019 | PNS | Lucknow

12 killed in mishaps

22 May 2019 | PNS | Lucknow

Sunday Edition

Globe Trotting

19 May 2019 | Agencies | Sunday Pioneer

Left, TMC urge EC to ensure free, fair polling

19 May 2019 | PNS | Sunday Pioneer

Didi’s nephew sends defemation notice to PM

19 May 2019 | Saugar Sengupta | Sunday Pioneer

MoD rejects Vice Admiral Bimal Verma's petition

19 May 2019 | PNS | Sunday Pioneer