Guess what? There is a good and bad news for WhatsApp users. The bad news is that WhatsApp got hacked again.
Recently a buffer overflow vulnerability was discovered in WhatsApp VOIP stack. In a buffer overflow vulnerability, too much data is put in a fixed length buffer. This data is more than what the buffer is capable of handling. This vulnerability was named as ‘CVE-2019–3568’ and allows remote code execution through series of SRTCP packets sent to a target mobile number. The attackers can easily take over the application and can alter anything in order to hide the method of infection.
A spyware is automatically installed on an android or iPhone device through the audio call feature. Simply by placing a WhatsApp call to the victim, attackers can steal data regardless the call gets connected or not. There is no requirement to further interact with the user. Since the installed spyware erases the incoming call information from device logs.
The bug is reportedly patched in WhatsApp versions v2.19.134 (Android), v2.18.348 (Windows Phone), v2.19.51 (iOS) as well as v2.18.15 (Tizen).
As per the speculations, this spyware is suspected to be Pegasus. Considered to be one of the world’s most dangerous spyware programs, it came into light in the year 2016, when, in a failed attempt at installing in the iPhone of the U.A.E. human right activist Ahmed Mansoor. Later, the same spyware was suspected to be linked with the death of Washington Post reporter Jamal Khashoggi.
Once installed, it launches a jailbreak that allows the spyware to trace the location of your phone, read text messages, track calls, collecting passwords as well as collect information from different applications.
The good news is that the problem has been fixed.
Facebook engineers have worked on patching this vulnerability and have released the updated versions in Android (v2.19.44) and iOS (v2.19.51). WhatsApp has advised its users to update it to the latest version. Application penetration testing helps in analysing the security of the application. Cyber security companies like Kratikal provide such managed security services that are critical in ensuring that there are no vulnerabilities present in the application.
