• Log In
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Home
  • About
  • Structure
  • Gradebook

ITACS 5211: Introduction to Ethical Hacking

Wade Mackey

Just Answering A Video Call Could Compromise Your WhatsApp Account

October 10, 2018 by Ruby(Qianru) Yang 3 Comments

Interesting article that Google Project Zero security researcher Natalie Silvanovich found a critical vulnerability in WhatsApp messenger that could have allowed hackers to remotely take full control of your WhatsApp just by video calling you over the messaging app.
The vulnerability is a memory heap overflow issue which is triggered when a user receives a specially crafted malformed RTP packet via a video call request, which results in the corruption error and crashing the WhatsApp mobile app.
Since the vulnerability affect RTP (Real-time Transport Protocol) implementation of Whatsapp, the flaw affects Android and iOS apps, but not WhatsApp Web that relies on WebRTC for video calls.

 

https://thehackernews.com/2018/10/hack-whatsapp-account-chats.html

Filed Under: Week 06: Sniffers Tagged With:

Reader Interactions

Comments

  1. Haitao Huang says

    October 10, 2018 at 4:27 pm

    The vulnerability is a reminiscence heap overflow subject which is triggered when a person receives a specifically crafted malformed RTP packet by way of a video name request, which leads to the corruption error and crashing the WhatsApp cell app.

    Log in to Reply
    • Ruby(Qianru) Yang says

      October 10, 2018 at 5:44 pm

      True, social engineering awareness is so important for daily life.

      Log in to Reply
  2. Yingyan Wang says

    October 10, 2018 at 4:29 pm

    It is a good article to show how easy the social media app will impact users. Those popular app should pay attention to secure users’ account information and release appropriate patch in a timely manner.

    Log in to Reply

Leave a Reply Cancel reply

You must be logged in to post a comment.

Primary Sidebar

Weekly Discussions

  • Uncategorized (14)
  • Week 01: Overview (7)
  • Week 02: TCP/IP and Network Architecture (18)
  • Week 03: Reconnaisance (17)
  • Week 04: Vulnerability Scanning (19)
  • Week 05: System and User Enumeration (17)
  • Week 06: Sniffers (17)
  • Week 07: NetCat and HellCat (15)
  • Week 08: Social Engineering, Encoding and Encryption (21)
  • Week 09: Malware (14)
  • Week 10: Web Application Hacking (17)
  • Week 11: SQL Injection (15)
  • Week 12: Web Services (25)
  • Week 13: Evasion Techniques (8)
  • Week 14: Review of all topics (15)

Copyright © 2026 · Magazine Pro Theme on Genesis Framework · WordPress · Log in