SEVERE WX : Severe Thunderstorm Warning - Flood Advisory View Alerts

WhatsApp reveals major security flaw that could let hackers access phones

WhatsApp has revealed a vulnerability in its system that could have allowed hackers access to its users' phones, with a London-based human rights lawyer poss...

Posted: May 14, 2019 8:01 AM

WhatsApp has revealed a vulnerability in its system that could have allowed hackers access to its users' phones, with a London-based human rights lawyer possibly among the targets.

The encrypted messaging service, owned by Facebook, said Monday that it had discovered and fixed the vulnerability the attackers had sought to exploit. The hackers could implant malicious code on a victim's phone by placing a voice call to the victim on WhatsApp.

"The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems," a WhatsApp spokesperson said in a statement.

While WhatsApp did not name the private company, a source familiar with the investigation into the attack said that company is NSO Group, an Israeli cyber company that has developed a powerful piece of malware designed to spy on its victims.

In a statement provided to CNN on Monday, NSO said, "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies."

NSO said its technology was licensed to government agencies "for the sole purpose of fighting crime and terror," adding that those agencies determine how the technology is used without any involvement from the company.

The Financial Times first reported details of the vulnerability.

Human rights activists targeted?

Among those believed to have been targeted via WhatsApp is a London-based human rights lawyer.

On Sunday, the lawyer received two calls that John Scott-Railton, a senior researcher at the University of Toronto's Citizen Lab believes were part of the attack. Citizen Lab is an academic security research group that investigates digital threats to civil society groups and online freedom of expression.

The apparent attempt to breach the lawyer's phone was not successful, Scott-Railton said, as WhatsApp had patched the vulnerability by Sunday.

WhatsApp had reached out to Citizen Lab and a number of other groups that work with human rights defenders before publicly acknowledging the attack.

The collaboration between WhatsApp and Citizen Lab helped identify the attempted attack on the London-based lawyer. The lawyer does not want to be named, Scott-Railton told CNN.

Responding specifically to the apparent targeting of the lawyer, NSO Group said in a statement, "NSO would not or could not use its technology in its own right to target any person or organization, including this individual."

Amnesty International filed a petition at the district court of Tel Aviv on Tuesday demanding Israel withdraw NSO's export license, Amnesty's lawyer told CNN Business.

The group claims that NSO software "threatens the rights to privacy and to freedom of opinion and expression, in breach of Israel's obligations under international human rights law."

It said one of its researchers had been targeted via a WhatsApp message containing NSO's spying software in 2018 while working on a campaign to release six women's rights activists detained in Saudi Arabia.

How to update your WhatsApp

WhatsApp said while it has fixed the vulnerability the attackers were exploiting, it is also encouraging users to update to the latest version of the WhatsApp app "out of an abundance of caution." The company said it has also contacted US law enforcement.

Ireland's Data Protection Commission, which supervises Facebook's activities in Europe, said it had been informed of the vulnerability on Monday, adding it was unclear at this stage whether any EU user data had been affected.

Still, it too urged users to ensure the update WhatsApp on their devices.

Here's how:

On an iPhone

-- Open the App Store and select updates.

-- Select "WhatsApp" and Update.

On an Android device

-- Open the Play Store and tap on the 3 lines in the upper left corner.

-- Select "My apps & games" from the menu.

-- Select "WhatsApp" and select Update.

Huntsville
Overcast
69° wxIcon
Hi: 83° Lo: 69°
Feels Like: 69°
Florence
Broken Clouds
77° wxIcon
Hi: 89° Lo: 70°
Feels Like: 79°
Fayetteville
Overcast
66° wxIcon
Hi: 85° Lo: 68°
Feels Like: 66°
Decatur
Overcast
68° wxIcon
Hi: 84° Lo: 68°
Feels Like: 68°
Scottsboro
Broken Clouds
70° wxIcon
Hi: 84° Lo: 69°
Feels Like: 70°
WAAY Radar
WAAY WAAY-TV Cam
WAAY Temperatures

Alabama Coronavirus Cases

Confirmed Cases: 49892

Reported Deaths: 1077
CountyConfirmedDeaths
Jefferson6433170
Mobile4753139
Montgomery4430112
Tuscaloosa263253
Madison21199
Marshall192611
Shelby164225
Lee157237
Morgan12695
Baldwin120711
Walker106131
Elmore102920
Dallas9969
Etowah95114
DeKalb9417
Franklin93216
Autauga67614
Russell6750
Chambers67427
Unassigned65328
Butler65129
Tallapoosa62869
Limestone6223
Houston5857
Cullman5716
Lauderdale5686
St. Clair5133
Colbert4956
Calhoun4905
Lowndes48122
Escambia4808
Pike4725
Coffee4244
Jackson4182
Covington41412
Barbour3942
Dale3911
Talladega3897
Bullock37710
Marengo35211
Hale34823
Chilton3232
Clarke3126
Wilcox3038
Blount2961
Winston2965
Sumter29113
Marion27514
Pickens2696
Randolph2589
Monroe2553
Perry2362
Conecuh2308
Bibb2211
Macon2159
Choctaw21212
Greene1959
Henry1533
Washington1418
Crenshaw1273
Lawrence1250
Cherokee1237
Geneva960
Lamar871
Clay852
Fayette821
Coosa651
Cleburne421
Out of AL00

Tennessee Coronavirus Cases

Confirmed Cases: 61006

Reported Deaths: 738
CountyConfirmedDeaths
Shelby13423223
Davidson13162143
Rutherford352539
Hamilton330538
Sumner189756
Williamson170816
Knox15919
Trousdale15085
Out of TN138410
Wilson114817
Putnam10117
Bradley9594
Robertson92413
Sevier9153
Unassigned9102
Montgomery7327
Lake6970
Tipton6967
Bledsoe6291
Bedford6239
Macon5977
Hamblen4724
Maury4543
Hardeman4114
Fayette3685
Madison3522
Blount3403
Loudon3322
Rhea3150
Dyer2913
McMinn27619
Cheatham2693
Washington2610
Dickson2580
Lawrence2326
Cumberland2134
Sullivan2104
Anderson1952
Jefferson1821
Lauderdale1804
Gibson1771
Monroe1556
Greene1512
Smith1502
Coffee1410
Cocke1360
Hardin1257
Warren1230
Obion1192
Haywood1183
Franklin1163
Marshall1152
Wayne1150
Carter1031
Giles1031
Hickman1030
McNairy1011
Marion944
Hawkins862
Lincoln860
DeKalb850
White853
Roane810
Overton721
Henderson710
Weakley701
Campbell691
Claiborne680
Grundy652
Chester630
Unicoi590
Grainger560
Polk550
Carroll521
Crockett523
Henry510
Cannon490
Sequatchie490
Jackson470
Johnson460
Humphreys392
Meigs380
Perry370
Morgan311
Decatur270
Fentress260
Scott260
Stewart260
Union250
Moore210
Clay200
Houston200
Benton151
Hancock110
Lewis110
Van Buren90
Pickett70

 

 

Community Events