WhatsApp `fixes` bug that let hackers break into video calls

Angelica Greene
October 12, 2018

WhatApp has successfully fixed a bug for its mobile apps on Android and iOS platforms that could have provided the hackers, potential to crash the whole app during an online call.

Google Project Zero researcher Natalie Silvanovich stated in a bug report that heap corruption in the WhatsApp app could occur when an attacker sends a malformed RTP packet to a victim.

Another researcher at the same facility, Tavis Ormandy claims that the malware is so powerful that by just receiving the call from the attacker - the user's complete WhatsApp account can be compromised. "It affects both the Android and iPhone clients". The Real-time Transport Protocol or RTP is used for video calls done via a smartphone. The bug made them vulnerable to a number of hacks which risked both Android and iOS WhatsApp users.

Memory corruption bug was found in WhatsApp's "non-WebRTC" video conferencing implementation. The vulnerability was discovered at the end of August 2018 and was fixed by Facebook in early October. You can grab the latest version of WhatsApp for iOS here and for Android here.

One of the reasons why WhatsApp is widely loved is because the company consistently updates the software with cool new features.

Photos and videos show mass destruction from 'Monstrous' Michael in Florida
State officials said 285 people in Mexico Beach had refused to leave ahead of the hurricane despite a mandatory evacuation order. The 11-year-old girl died after the strong winds swept up a metal carport and blew it into her home, hitting her on the head.

"More Important Things" On Her Mind Than Husband’s Sex Life
Melania Trump flatly denied Rudy Giuliani's claims about her support for President Donald Trump in the Stormy Daniels affair. Trump lawyer Michael Cohen paid Daniels $130,000 shortly before the 2016 election to remain silent about the alleged tryst.

Stardew Valley Launching on Mobile This Month
The iOS version is the full game, Barone assures fans, and it plays nearly identically to its PC and console counterparts. The game will launch on iOS via the App Store on October 24 for $7.99, with the Android version coming at a later date.

WhatsApp web is not affected by this vulnerability as it relies on WebRTC instead of RTC. He says, "it's a big deal".

Facebook has reportedly fixed a serious vulnerability that could have allowed hackers to hijack user accounts via a flaw with the video calling facility. We routinely engage with security researchers from around the world to ensure WhatsApp remains safe and reliable. "We promptly issued a fix to the latest version of WhatsApp to resolve this issue", Ann Yeh, a spokesperson for WhatsApp, recently told Reuters in an email.

"That being said, WhatsApp has already patched the vulnerability, so users should be sure to update the app to prevent it from happening".

It's thought that left unchecked it could be turned into a weapon was a more damaging payload endangering numerous 1.2bn worldwide users of the app.

Experts found in WhatsApp messenger new and risky vulnerability. After that, the hackers get a chance to attack.

Other reports by GizPress

Discuss This Article