Hackers may be able to access private WhatsApp conversations

whatsapp
WhatsApp
Private conversations beware! Despite end-to-end encryption now being commonplace in WhatApp conversations, German cryptographers have discovered a minor flaw in WhatsApp’s security that could lead to private conversations being gatecrashed by uninvited hackers, bypassing the usual chat admin invitations.

In their paper, More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema, presented to other enthusiasts at the Real World Crypto Symposium in Zurich, Switzerland, the team warned that WhatsApp has no security measures to stop invitations being spoofed from their own servers, leaving a hole that could leave millions of conversations at risk of being snooped on.

But it’s not all bad news. Essentially, the hacker would need to be in control of WhatsApp’s main chat servers — a fairly tall order — and only then would they be able to bypass the group’s administrator and insert users into any conversation. However, anyone who did manage to achieve this would then have near limitless power within the chat, being able to selectively block message visibility from accounts, and even block users from participating in the chat.

However, Facebook-owned WhatsApp doesn’t seem to be too worried about the potential hole in its security. A WhatsApp spokesperson (speaking to Wired) admitted that the flaw was real, but pointed out that there was no way that the added user could be hidden and receive messages from the group. WhatsApp has built-in security measures that stop hidden users from being able to participate in group chats, and anyone who wanted to snoop on a particular chat would find their cover quickly blown when the client announced their arrival to everyone in the chat, making it an inefficient way to spy on users. What’s more, disabling the flaw would likely break the “Group Invite Link” feature that many group chats enjoy — implying that the security issue likely stems from this particular feature.

However, Matthew Green of Johns Hopkins University called WhatsApp’s response “dumb,, likening it to leaving a bank’s vault open and relying on a single security camera to deter criminals. If any really sensitive information was stored in that group chat, then the hacker would have access to it, making WhatsApp’s lauded encryption useless.

WhatsApp has been in the news multiple times for reasons of security. After making all messages sent on its platform fully encrypted in 2016, the chat company has faced criticism from U.K. lawmakers, while action taken by Brazil was of a more serious nature.

Mobile

Hey Google, why did you kill off Allo, your best messaging app in years?

Allo, Google's messaging app, has shut down. I convinced my closest friends and family to switch to the app two-and-a-half years ago when it debuted, and we've been using it since. With its death, I'm feeling pain and sadness.
Social Media

Facebook Messenger adds quoted replies to better organize group chats

Facebook is rolling out a feature that should help make group chats a whole lot more organized. The feature allows you to reply to specific messages within a group chat, so others will be able to tell what you're replying to.
Smart Home

Our favorite coffee makers make flavorful cups of joe from the comforts of home

Whether you're looking for a simple coffee maker to get you through the morning or a high-end brewer that will impress your taste buds and your friends, you'll find some of the best coffee makers around on this list.
Social Media

Facebook explains its worst outage as 3 million users head to Telegram

Facebook, if you didn't already know it, suffered a bit of an issue on Wednesday, March 13. An issue that took down not only its social networking site, but also Instagram, WhatsApp, and Messenger. On Thursday it offered an explanation.
Photography

Looking to keep prying eyes at bay? Here's how to hide photos on your iPhone

People take tons of photos using their smartphones, but not all are meant to be shared or seen. Luckily, hiding photos on your iOS device is easy, whether you want to use built-in utilities or apps with added security.
Wearables

Fitbit Versa Lite tips and tricks to get started with your new smartwatch

Got your hands on a Fitbit Versa Lite? The smartwatch may be the pared down version of the more expensive Fitbit Versa, but there's still plenty for you to tweak in the settings. Here are our Fitbit Versa Lite tips and tricks.
Product Review

The new iPad Mini certainly isn’t a beauty, but it performs like a beast

Apple’s new iPad Mini has beastly performance, fluid iOS 12 software, and good battery life. It also looks like it came straight out of 2015, because the design hasn’t been changed. Here are our impressions of Apple’s new 7.9-inch…
Smart Home

Postmates now offers a way to get free delivery on meal orders

Postmates is offering customers the chance to order meals with free delivery. But you'll have to be cool with the idea of waiting a little longer, as the delivery driver will be carrying other meals for different customers.
News

Browse safely and securely with Opera’s unlimited VPN on Android

Opera has added a new VPN to its Android browser, offering an easy way to keep your privacy and data locked up solid, and with no limits on usage or cost, you can keep it on all the time.
Mobile

Need a quick battery boost? Try one of our favorite portable chargers

Battery life still tops the polls when it comes to smartphone concerns. If it’s bugging you, then maybe it’s time to snag yourself a portable charger. Here are our picks for the best portable chargers.
Mobile

You can now listen to Google Podcasts on your desktop without the app

The Google Podcasts app is no longer entirely necessary to listen to the podcasts it offers. With a simple tweak of the sharing URL, you can listen to a Google Podcasts podcast on your desktop or laptop without the app.
Mobile

The Samsung Galaxy S10 5G might be a few short weeks away from launch

Samsung has announced a whopping four new Galaxy S10 devices, from the low-cost S10e to the triple-camera S10 and S10 Plus. But it's the Galaxy S10 5G that steals the show as it's among the first 5G-ready smartphones to hit the market.
Computing

T-Mobile goes after big cable companies, pilots wireless home internet service

In a shot at big cable companies, T-Mobile is launching a new pilot program to bring an unlimited wireless LTE home internet service to up to 50,000 homes across the United States by the end of 2019.
Mobile

Type away on the best iPad keyboard cases, from the Mini to the Pro

Whether you're looking to replace your laptop with a tablet or merely want to increase your typing speed, a physical iPad keyboard is the perfect companion to the iPad. Check out our top picks for every available iPad model.