Skip to main content
  1. Home
  2. News

Hackers can fake WhatsApp messages that seem like they’re from you

Allison Matyus
By

A WhatsApp security vulnerability could allow someone to intercept or manipulate your personal messages to make it look like you said something you didn’t.

A 2018 report from Check Point Research found three vulnerabilities within the popular Facebook-owned app. Check Point found that an attacker could: 

Recommended Videos

“ 1. Use the ‘quote’ feature in a group conversation to change the identity of the sender, even if that person is not a member of the group.

2. Alter the text of someone else’s reply, essentially putting words in their mouth.

3. Send a private message to another group participant that is disguised as a public message for all, so when the targeted individual responds, it is visible to everyone in the conversation.”

Related

Check Point said that after alerting WhatsApp to the issues, the app fixed the third vulnerability, but the other potential problems that could lead to online scams and fake news still remain. 

WhatsApp is a messaging app that provides end-to-end encryption, free internet-based international calling, and cross-platform compatibility. Check Point says that because the app encrypts messages, videos, calls, photos and more, the vulnerabilities it found will persist.

WhatsApp says the issues that Check Point describes as “of the utmost importance and require attention” are not an actual vulnerability.  

“We carefully reviewed this issue a year ago, and it is false to suggest there is a vulnerability with the security we provide on WhatsApp,” a Facebook spokesperson told Forbes. “The scenario described here is merely the mobile equivalent of altering replies in an email thread to make it look like something a person didn’t write. We need to be mindful that addressing concerns raised by these researchers could make WhatsApp less private, such as storing information about the origin of messages.”

In May, another WhatsApp security flaw was found that enabled surveillance software to be placed on a user’s phone using the app’s call feature. WhatsApp fixed the vulnerability and advised users to update their app to the latest version.

Digital Trends reached out to WhatsApp to comment on the recent security vulnerabilities and to see if the remaining issues will be fixed, and this story will be updated upon a response. 

Editors' Recommendations

Topics
Allison Matyus
Allison Matyus
Former Digital Trends Contributor
Allison Matyus is a general news reporter at Digital Trends. She covers any and all tech news, including issues around social…
WhatsApp Buisness is beta testing a new shortcut for quick replies
Close up of WhatsApp icon as seen on a smartphone display. Credits: WhatsApp official.

WhatsApp has released several new updates to enhance the platform’s engagement rate. Now, the company has enabled a new shortcut for quick replies on the beta versions of both Android and iOS , though some users who have installed the latest update may still not see this option. This is because the option has been rolled out only to select beta testers, and others may need to wait for further updates to see this option enabled.
"Quick replies" was one of the earliest features introduced to the WhatsApp Business platform. It allows for reusing frequent messages via keyboard shortcuts, a little similar to how the G-board memory works when typing out similar messages or emails. To use quick replies, a user needs to type out "/" as suggested by "WABetaInfo", and then select the message to send from the list.
WhatsApp's several major updates in 2021 have made it the market leader in messenger downloads. NurPhoto/Getty Images
The reasons for adding this shortcut are currently unknown, but the real benefits will be experienced once the update is available to a wider audience. At the moment, the new shortcut option has been added to the chat share action menu that can be seen by both Android and iOS device users.
What's next?
Meanwhile, WhatsApp has plans for several updates for 2022, including an option for hiding the "last seen" view for specific contacts. The social media giant's basic messenger and business versions are currently at the number 2 and number 5 positions, respectively, in the "free communication apps" section in the Google Play Store, compared to Telegram, which is at number 3. However, the combination of 5.5 billion downloads from WhatsApp apps on Android makes it the clear market leader. 

Read more
Upcoming WhatsApp groups feature could be a potential lifesaver
A person using WhatsApp Messenger on his Android smartphone.

Over the years, WhatsApp has added several features that help WhatsApp group administrators moderate their groups better. Some of these include restricting the ability of nonmembers to send messages to the group and banning unruly members. Now, it seems the Facebook-owned messaging client is working on another feature that has been on the wish list of several group admins.

According to WABetaInfo, WhatsApp is likely to give group admins the power to delete messages sent by other group members. To understand why this is such a big deal, it is important to know WhatsApp's current restrictions with respect to group messages.

Read more
WhatsApp launches crypto-powered mobile payments in the U.S.
WhatsApp Messenger on an iPhone.

WhatsApp has launched a digital payments pilot in the U.S., allowing a limited number of people to send and receive money with the same ease they would a regular message. This payment feature is powered by the Meta-owned Novi digital wallet service, which uses Pax Dollars (USDP) to facilitate transfers, and they all go through instantly.

Meta launched Novi back in 2020, saying, "With Novi, sending money will be as easy as sending a message. You’ll be able to use Novi as a stand-alone app, as well as in Messenger and WhatsApp. There will be no hidden charges to add, send, receive or withdraw money, and your transfers will arrive instantly. All Novi customers will be verified using government-issued ID, and fraud protections will be built in throughout the app."

Read more