Table of Contents

WhatsApp Messenger app has been found to be unsafe. The attacker can use your phone number to close your WhatsApp account sitting at a distance. This error found in the app by security researchers was going on for some time due to basic flaws. It is being told that many WhatsApp users are at this risk. Their account can be deactivated without their permission and then they will not be able to reactivate it. This insecurity will persist even if you have two-factor authentication (2FA) enabled on your account.

Security researchers Luis Marquez Carpintero and Ernesto Canalis Perena discovered this error. of Forbes Report In this, these researchers have said that this error is in the app due to two fundamental shortcomings. The first drawback allows the attacker to enter your phone number in his phone’s WhatsApp account. Yes, of course, this will not give the attacker control of your WhatsApp account until they obtain the 6 digit registration code received on your phone. Several unsuccessful attempts in this direction will block the attacker’s phone’s WhatsApp account from entering the code for 12 hours.

Attackers cannot repeat the process of sign in again and again with your phone number. He will contact WhatsApp support to deactivate your account from the app. For this they will need a new e-mail address and a simple mail stating that your phone has been stolen or lost. In response, WhatsApp will only ask you to confirm which the attacker can easily provide on his behalf.

After this your WhatsApp account will be closed and you will not be able to use it again. You cannot prevent this from happening even with two-step authentication. This is because the attacker has closed the account via email. Normally when the account becomes inactive you can reactivate it by phone number verification. Whereas in this case of account being hacked, the attacker has already stopped the verification process for 12 hours. This means that you will also not be able to receive a new registration code for the next 12 hours.

WhatsApp will behave on your phone the same way it is doing on the attacker’s phone, that is, your sign-in process will stop. After that you have only one option left. That option is to contact the messaging app via email to reactivate your account.

A WhatsApp spokesperson told Gadgets 360 that there is a way users can avoid this problem. For this, they have to register their email in their account through two-step verification.
“Registering an email with two-step verification helps our team to assist users in the event of future issues like these. The circumstances described by the researcher affect our Terms of Service. We advise users to do this. We encourage you to report any issues to our support team so that we can investigate them,” the spokesperson said.

However, WhatsApp did not give any details about what it is doing to prevent the ill-effects of this insecurity on people. It is not yet clear whether an attacker carried out this in an extended form. The news of this shortage has now reached the common man. In such a situation, there is a possibility that anyone can block another user from using WhatsApp – even if for a few hours.

WhatsApp has a huge userbase. It has more than 2 billion users worldwide. WhatsApp has 400 million users in India alone. At present, most of the users have not registered email address in their WhatsApp account. Hence the potential for app related insecurity is very wide.

Latest Tech News, Smartphone Reviews more popular Mobile For exclusive offers on Gadgets 360 Android Download the app and send us Google News Follow on.

Related news

Leave a Reply

Your email address will not be published.