World Bulletin / News Desk
Cybersecurity researchers announced Wednesday a vulnerability in messaging service WhatsApp that allows hackers to breach accounts by sending an image with malicious software.
Telegram, another popular messaging service, also appears to be vulnerable to the hack. Users are attacked while using the services on a web browser.
The services boast end-to-end encryption in which only the devices of two parties communicating can decipher a message thread.
Cybersecurity firm Check Point Research said, however, that it has discovered a way to bypass the encryption by sending an image to a user. If opened, malicious software attached to the file can break into the account.
“This vulnerability, if exploited, would have allowed attackers to completely take over users’ accounts on any browser, and access victims’ personal and group conversations, photos, videos and other shared files, contact lists and more,” according to a statement by Check Point’s Eran Vaknin, Roman Zaikin and Dikla Barda. “This means that attackers could potentially download your photos and or post them online, send messages on your behalf, demand ransom and even take over your friends’ accounts.”
Check Point alerted WhatsApp and Telegram to the issue on March 7 and the companies created a fix for the exploit. There is no evidence hackers used the vulnerability to breach user accounts.
WhatsApp, which is owned by Facebook, has more than 1 billion users and is one of the most common messaging services. Telegram has in excess of 100 million users and the company says 15 billion messages are sent through the service every day.
“We build WhatsApp to keep people and their information secure,” a WhatsApp spokeswoman said in a statement. “When Check Point reported the issue, we addressed it within a day and released an update of WhatsApp for web.”
Company will no longer pull data from free Gmail inboxes to personalize ads
Kepler telescope reveals details of more than 200 newly-found planets in Milky Way
"Today, it is our pleasure to officially announce the newest member of our 737 family, the 737 MAX 10," Kevin McAllister, head of the company's commercial aviation division, told journalists as the Paris Air Show got under way.
The Twilight Express Mizukaze departed Osaka on its maiden trip with around 30 well-heeled passengers on a journey to the far reaches of Japan's main island.
Google has launched a website to help you find the Qibla – the direction of prayer.
Bilkent University students designed Arbo which can babysit and notify of gas leaks in the house
The refurbished Dragon cargo capsule soared into space aboard a Falcon 9 rocket at 5:07 pm (2107 GMT) from Cape Canaveral, Florida.
The deal enables GE's "Geneva" to communicate with the Google Assistant, so users can say: "Ok Google, ask Geneva Home to set the oven timer for 10 minutes."
The plane took off from the Siberian city of Irkutsk where the Irkut company is based, said Deputy Prime Minister Dmitry Rogozin, writing on Twitter.
A NASA statement described the planet as "a complex, gigantic, turbulent world" that is far different than scientists previously thought.
Scientists have completed initial study in Antarctica to establish Turkey's first base on the continent
According to documents released in March by Wikileaks, US intelligence can hack smartphones, computers and smart, web-connected TVs, to pilot them and eavesdrop.
"IOT home appliances, things that can be used in our everyday lives, our cars, lights, refrigerators, everything like this that is connected can be used and weaponised to spy on us or harm us."
The malware uses a hacking tool known as EternalBlue, which was published last month by an anonymous hacking group called Shadow Brokers, saying it had been obtained from the US National Security Agency.