WhatsApp vulnerability allowed attackers to inject spyware: Report

WhatsApp has discovered that attackers have used a vulnerability in its app to inject commercial spyware into phones, according to a report on Tuesday (May 14).
May 14, 2019 | 10:27

WhatsApp vulnerability allowed attackers to inject spyware: Report

The WhatsApp messaging application is seen on a phone screen Aug 3, 2017. (Photo: Reuters/Thomas White)

The Facebook-owned messaging app found out in early May that attackers could remotely install surveillance software on both iPhones and Android phones, according to a Financial Times report.

The code, which FT said was developed by Israeli company NSO Group, was sent through the app's voice call function to users' phones.

This could be transmitted even if the targets did not pick up the calls, and the calls could also disappear from call logs, said FT citing an un-named spyware technology dealer.

A Facebook security advisory detailed the vulnerability with this description: "A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of SRTCP packets sent to a target phone number."

The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp for iOS prior to v2.19.51, WhatsApp Business for iOS prior to v2.19.51, WhatsApp for Windows Phone prior to v2.18.348, and WhatsApp for Tizen prior to v2.18.15, according to the advisory.

According to FT, WhatsApp began rolling out a fix to its servers on Friday with a patch for customers rolled out on Monday.

“This attack has all the hallmarks of a private company known to work with governments to deliver spyware that reportedly takes over the functions of mobile phone operating systems,” WhatsApp was quoted as saying.

When asked about the WhatsApp attacks by FT, NSO said it was investigating the issue.

“Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies,” the company was quoted as saying.

NSO is best known as a supplier of mobile surveillance tools to governments and law enforcement agencies.

It was in the spotlight in 2017 amid allegations that the Mexican government had used its Pegasus mobile spyware to target private citizens./.

VNF/CNA

Chia sẻ
Email Print

Trending

save the children 35 year journey with vietnamese children

Save the Children: 35-year Journey with Vietnamese children

best vietnam travel tips and suggestions

Best Vietnam travel tips and suggestions

vietnamese cuisines and dishes you must try

Vietnamese cuisines and dishes you must try

Most read

Recommended

Japanese PM Sanae Takaichi and Indian PM Narendra Modi agree to deepen Japan-India cooperation World

Japanese PM Sanae Takaichi and Indian PM Narendra Modi agree to deepen Japan-India cooperation

Japanese Prime Minister Sanae Takaichi and her Indian counterpart, Narendra Modi, agreed Sunday to deepen their countries' cooperation in a wide range of areas including security as well as the economy and investment.
November 27, 2025 | 14:21
Australia, Canada, India Enhance Cooperation in Technology World

Australia, Canada, India Enhance Cooperation in Technology

At the G20 summit in Johannesburg this November, Australia, Canada, and India formalized a landmark trilateral partnership centered on technology, innovation, and critical minerals that signals a new chapter in international cooperation.
November 25, 2025 | 16:48
PM Modi underscores "shared commitment to global progress and prosperity" at G20 Leaders' Summit in Johannesburg World

PM Modi underscores "shared commitment to global progress and prosperity" at G20 Leaders' Summit in Johannesburg

Prime Minister Narendra Modi took part in the G20 Leaders' Summit in Johannesburg, where India reiterated its active engagement in global affairs and its "shared commitment to global progress and prosperity" with other world leaders.
November 24, 2025 | 22:06
Bridges beyond borders: India’s supports Nepal’s growth, tourism, and cricket dream World

Bridges beyond borders: India’s supports Nepal’s growth, tourism, and cricket dream

Kathmandu: In the heart of the Himalayas, Nepal and India share not just a border but an unbreakable bond of culture, faith, and friendship.
November 22, 2025 | 16:30

Popular article

Russia 'Actively Preparing' For Putin's India Visit: Kremlin World

Russia 'Actively Preparing' For Putin's India Visit: Kremlin

Russia is preparing for President Putin’s India visit by year-end, likely featuring key agreements.
November 13, 2025 | 07:00
Are US-India ties set for a rebound after Trump’s trade talk optimism? World

Are US-India ties set for a rebound after Trump’s trade talk optimism?

A potential visit by US President Donald Trumpto India could provide the impetus to conclude trade talks between New Delhi and Washington, analysts say.
November 12, 2025 | 14:36
PM Modi to visit Bhutan on Nov 11-12, inaugurate hydropower project and join Global Peace Festival World

PM Modi to visit Bhutan on Nov 11-12, inaugurate hydropower project and join Global Peace Festival

Prime Minister Narendra Modi will pay a state visit to Bhutan from November 11-12. The visit aims to strengthen the special ties of friendship and cooperation between the two countries and continues the tradition of regular bilateral high-level exchanges, an official statement by the Ministry of External Affairs said.
November 10, 2025 | 10:40
India steps up Buddhist heritage outreach as sacred relics draw massive crowds in Russia World

India steps up Buddhist heritage outreach as sacred relics draw massive crowds in Russia

India is ramping up efforts to preserve and promote its Buddhist heritage as global interest in Buddhist culture and pilgrimage tourism surges. The latest showcase of this spiritual and cultural diplomacy is taking place in Russia, where India’s Sacred Relics of Lord Buddha are on public exposition—drawing unprecedented devotion.
October 29, 2025 | 22:10
Phiên bản di động