WhatsApp discovers spyware attack via voice calling

| | San Francisco
  • 0

WhatsApp discovers spyware attack via voice calling

Tuesday, 14 May 2019 | IANS | San Francisco

WhatsApp discovers spyware attack via voice calling

WhatsApp has urged its 1.5 billion users to upgrade the app after the Facebook-owned platform discovered a vulnerability that allowed a spyware to be installed on users' phones via the app's phone call function.

The spyware was allegedly developed by the Israeli cyber intelligence company NSO Group, reports the Financial Times.

The vulnerability leveraged a bug in WhatsApp's audio call feature, facilitating the installation of spyware on the device being called whether the call was answered or not.

WhatsApp said it has fixed the vulnerability that was discovered last month.

"WhatsApp encourages people to upgrade to the latest version of our app, as well as keep their mobile operating system up to date, to protect against potential targeted exploits designed to compromise information stored on mobile devices, the company said in a statement.

The Israel-based NSO Group works for the government, looking to infect targets of investigations and gain access to various aspects of their devices.

"The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems," the WhatsApp statement read, without mentioning the NSO Group.

NSO Group told the Financial Times: "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies".

"NSO would not or could not use its technology in its own right to target any person or organization," the company added.

NSO limits sales of its spyware called Pegasus to state intelligence agencies and others. The software has the ability to collect intimate data from a target device.

According to WhatsApp, it suspects a relatively small number of users were targeted.

"This is, as you can imagine, an extremely severe security hole, and it is difficult to fix the window during which it was open, or how many people were affected by it," reports TechCrunch.

State Editions

14 more die; State Covid toll now 1,671

25 November 2020 | PNS | Bhubaneswar

Judicial probes on into Puri, B’mitrapur custody cases

25 November 2020 | PNS | Bhubaneswar

34 new +ve in BBSR

25 November 2020 | PNS | Bhubaneswar

Jagannath Temple may reopen in Dec 3rd week

25 November 2020 | PNS | Bhubaneswar

Nayagarh couple attempts self-immolation before House

25 November 2020 | PNS | Bhubaneswar

No laxity in Covid norms till vaccine arrives : CM

25 November 2020 | Staff Reporter | Bhopal

Sunday Edition

The new crisis point Children’s mental health

22 November 2020 | Kaartik Gupta | Agenda

Accounting for Karma

22 November 2020 | Sant Rajinder Singh | Agenda

Find your peace post a fight

22 November 2020 | Dr Anju Sharma | Agenda

Ten questions to ask self

22 November 2020 | Ajit Kumar Bishnoi | Agenda

Astroturf | Know what you are worth

22 November 2020 | Bharat Bhushan Padmadeo | Agenda

Making world greener

22 November 2020 | Shalini Saksena | Sunday Pioneer