Have you ever thought about losing your Whatsapp account permanently? A simple system failure allows the attacker to take users down even from a distance and without any contact with the victim. The information is from Tech Tudo.
Read Also
- 9 conditions for submitting a complaint against government agencies to “NBK” Jul 2, 2021
- Baita in flames in the province of Belluno: the video Aug 20, 2021
- VHS, Netflix and streaming: what relationship can they have? May 29, 2021
- Xiaomi boasts fast charging at 200 W and wireless charging at 120 W achieving incredibly short charging times May 31, 2021
- “Shipwreck”, “massacre”, “malaise” … “Tous Inconnus” on TF1 has been full of viewers and critics Nov 16, 2022
- Dogs rarely travel sitting in a bullet train car in Japan May 22, 2022
- Richard Carapaz maintains the top in the Giro d’Italia, Buitrago wins the 17th. stage May 25, 2022
For this to happen, the hacker simply needs to have the user’s mobile number and inform the application that the account has been stolen. After carrying out some processes, he is able, in a digital way, to have the account deleted.
The vulnerability was reported last Saturday (10), by cybersecurity researchers Luis Márquez Carpintero and Ernesto Canales Pereña. For them, the first serious vulnerability of the app is the possibility to log in with any phone number, even if the user is not the owner of the line.
Because of these and other security breaches, a person may not be able to re-establish their account after it has been stolen. Even with another device, the phone number would not work in the application and it would be necessary to create a new account, this time with a different number.
WhatsApp sent a note to Tech Tudo, in which it reports that the practical practice addressed by the two researchers violates the terms of use of the application. In addition, the note also points out that the registration of the email requested during the activation of the two-step verification is essential for the real owner of the account to be identified by the company before the block.
Despite the note, the app did not disclose whether it intends to make changes to remedy the security breach.
.
