A Moroccan young man discovers a vulnerability in the WhatsApp application that allows reading phone numbers and private messages

القائمة الرئيسية

الصفحات


آخر الأخبار

A Moroccan young man discovers a vulnerability in the WhatsApp application that allows reading phone numbers and private messages

A Moroccan young man discovers a vulnerability in the WhatsApp application that allows reading phone numbers and private messages

A Moroccan young man discovers a vulnerability in the WhatsApp application that allows reading phone numbers and private messages

A Moroccan young man named "Ahmed Lexis" (19 years old) was able to discover a loophole in the famous WhatsApp chat application for the iOS system, which enables Apple phones and tablets to be used. This loophole enables reading WhatsApp messages and accessing the list of names and phone numbers even if the phone is password protected Secret. As transferring the WhatsApp application file to the Linux system on computers will enable anyone to access private messages and all names and numbers on the phone, even if the latter is protected by the user with a security code or password.
The WhatsApp application stores phone numbers and message data inside its files even if the user does not transfer this data from the phonebook to the WhatsApp directory, and here lies the vulnerability that allows when connecting the iPhone to a computer running the Linux system, then copying the WhatsApp application file installed on the phone to the desktop. The office is on the computer, and then it is possible to open the stored messages and also access all the phone numbers through this file.
After discovering this vulnerability, "Ahmed Lexis" contacted the WhatsApp protection team, who thanked him for the vulnerability he found and for the cooperation he provided, adding that Apple is also concerned with this vulnerability due to its iOS system being infected with this defect and it must make updates. security on its part as well.
And this young man had already discovered another vulnerability in the Twitter application on iOS devices as well, which was of great danger, as the Twitter application was storing code on iOS devices, and this code can be copied and placed on another phone and thus access the account from the second device without the need for a username and password.
Ahmed Lexis, who is currently pursuing his studies in the Department of Computer Science at Al Akhawayn University in Ifrane, Morocco, is a permanent member of the OWASP organization responsible for programming open source applications to protect websites and has helped some Moroccan universities protect their systems.

تعليقات