Just In
Don't Miss
- News Andhra Pradesh Elections: Congress Releases List Of 38 Candidates
- Automobiles Upcoming Mahindra XUV3XO: New Interior Features Showcased
- Finance Gold Price India: 22K/10 Grams Gold Falls By Rs 500, 24K/100 Grams Yellow Metal Dips By Rs 5000
- Movies Pushpa 2 First Single Release Date: Allu Arjun, Rashmika Mandanna's Sequel's First Lyric Video To be Out On...
- Lifestyle Kalki 2898 AD: Amitabh Bachchan As Ashwatthama Aces The Mystical Look In The Teaser, Pics!
- Sports T20 World Cup 2024: 10 Players Certain of Getting Place In India Squad For Upcoming ICC Event
- Education AP SSC Results 2024 Declared On April 22, Check Details Here
- Travel Journey From Delhi To Ooty: Top Transport Options And Attractions
WhatsApp security loophole can add uninvited members to your groups
WhatsApp is adding numerous features to its platform to enhance the user experience. In the meantime, a team of cryptographers from Germany claims to have uncovered flaws in the security of WhatsApp. It is said that this flaw can comprise of the end-to-end encryption of the messaging platform.
The newly published paper claims that anyone who has control of the WhatsApp services including the employees of the company can covertly add the members to any WhatsApp group. Usually, only admins can add the new members to private groups. But the researchers have found that anyone having control of the server can break the authentication process that grants them the privilege that is needed to add new members to the private groups.
Once a new member who is uninvited has been added to the group, the confidentiality of the group will be broken as the member can access all the new messages and read them, claims one of the researchers.
According to the researchers, the breach can manipulate the messages from the admin that would alert the members of the group that someone new has been added. A report by Wired has confirmed these findings with a WhatsApp spokesperson. WhatsApp has also acknowledged this server security issue but the spokesperson has pushed the idea that the attackers can cache, block or prevent the alert stating new members have been added.
It is common for existing members to be alerted when new members are added to the WhatsApp group. The application has been designed in such a way that the group messages cannot be sent to any hidden user. Given that the security and privacy of the users is a priority for WhatsApp, they collect very little information and all the messages are end-to-end encrypted.
Even the researchers who have come up with this security loophole agree to the fact that the level of sophistication needed to compromise the servers of WhatsApp makes such attacks on WhatsApp groups unlikely. However, this is a security hole that cannot be excused, claims the report. End-to-end encryption offered by WhatsApp should be applicable on the server level to prevent such issues.
-
99,999
-
1,29,999
-
69,999
-
41,999
-
64,999
-
99,999
-
29,999
-
63,999
-
39,999
-
1,56,900
-
79,900
-
1,39,900
-
1,29,900
-
65,900
-
1,56,900
-
1,30,990
-
76,990
-
16,499
-
30,700
-
12,999
-
18,800
-
62,425
-
1,15,909
-
93,635
-
75,804
-
9,999
-
11,999
-
3,999
-
2,500
-
3,599