• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 22nd, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security

WhatsApp Flaw leaves User Location Vulnerable to Hackers and Spies.

April 21st, 2014 Waqas Security 0 comments
WhatsApp Flaw leaves User Location Vulnerable to Hackers and Spies.
Share on FacebookShare on Twitter

Researchers warn that the highly popular mobile application WhatsApp cannot be trusted blindly.

WhatsApp has been one of the most popular mobile applications when it comes to exchanging messages for free. However, a group of budding security researchers at the University of New Haven in Connecticut, USA allege that WhatsApp could not be trusted with the user’s data.

The application, used extensively on mobile phones and tablets, handles quite a lot of traffic, which also implies that it deals with numerous personally identifiable information (PII).whatsapp-share-location-how-to-whatsapp-flaw-leaves-user-location-vulnerable-to-hackers-and-spies

The security researchers have found that when you share your location through WhatsApp, its software “called out” to Google Maps …without using Secure HTTP, better known as HTTPS”.

This implies that cyber sniffers, who keep prying the network traffic, can exactly pinpoint your location once you share it with other WhatsApp users.

The researchers demonstrated the flaw in the application with the help of NetworkMiner, a network sniffing tool running on Windows, which easily intercepted their geological coordinates and pinpointed the location on the Google Maps.

Video demonstration of how it is done:

WhatsApp has been trapped into privacy blunders earlier as well. The most infamous ones being usage of non secret information to

construct secret encryption keys and re-use of the one-time key material for cryptographic technique.

Although the company CEO, Jan Koum, swears that ‘user’s privacy is coded into our DNA,’ the outcome rarely matches the talks.

The company has been censured by Canadian and Dutch authorities for violating its nation’s privacy rules.

WhatsApp was recently acquired by Facebook for a whopping USD 19 billion. The silver lining, however, of this whole episode is not that bad.

WhatsApp has responded positively to the flaw discovered by the New Haven researchers and have assured that it will be fixed in the next software release. Until then, stay safe without sharing your location!!!

Follow @HackRead

  • Tags
  • Android
  • APPS
  • iOS
  • Messaging
  • security
  • Vulnerability
  • WhatsApp
Facebook Twitter LinkedIn Pinterest
Previous article No Room for Privacy: Facebook Launches Friend-Spying Feature 'Nearby Friends'
Next article Android Trojan Virus: iBanking Malware 'Qadars' Targets Facebook Users via Webinjects
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
Shazam Vulnerability exposed location of Android, iOS users

Shazam Vulnerability exposed location of Android, iOS users

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Shazam Vulnerability exposed location of Android, iOS users
Security

Shazam Vulnerability exposed location of Android, iOS users

40
Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet
Security

Ongoing 'FreakOut' malware attack turns Linux devices into IRC botnet

78
Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping
Security

Signal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping

104

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us