Have you ever thought about losing your Whatsapp account permanently? A simple system failure allows the attacker to take users down even from a distance and without any contact with the victim. The information is from Tech Tudo.
Read Also
- The FAS said there were no violations in the pricing of PCR tests Jul 19, 2021
- Vettel: “We are going too fast in Eau Rouge” | FormulaPassion.it Aug 31, 2021
- Android Auto will no longer be available on cell phones, this is the new way of driving May 31, 2022
- HPE: this is the hybrid cloud that is closest to the user Jul 26, 2021
- Electric Cars: Know the Advantages and Disadvantages Aug 26, 2021
- New Mercedes Citan, the van is renewed and opens the doors to the electric Sep 5, 2021
- Trail: Baptiste Chassagne dreams of winning the SaintéLyon, his “heart race” Nov 24, 2022
For this to happen, the hacker simply needs to have the user’s mobile number and inform the application that the account has been stolen. After carrying out some processes, he is able, in a digital way, to have the account deleted.
The vulnerability was reported last Saturday (10), by cybersecurity researchers Luis Márquez Carpintero and Ernesto Canales Pereña. For them, the first serious vulnerability of the app is the possibility to log in with any phone number, even if the user is not the owner of the line.
Because of these and other security breaches, a person may not be able to re-establish their account after it has been stolen. Even with another device, the phone number would not work in the application and it would be necessary to create a new account, this time with a different number.
WhatsApp sent a note to Tech Tudo, in which it reports that the practical practice addressed by the two researchers violates the terms of use of the application. In addition, the note also points out that the registration of the email requested during the activation of the two-step verification is essential for the real owner of the account to be identified by the company before the block.
Despite the note, the app did not disclose whether it intends to make changes to remedy the security breach.
.
