We collect cookies to analyze our website traffic and performance; we never collect any personal data.Cookies Policy
Accept
Michigan Post
Search
  • Home
  • Trending
  • Michigan
  • World
  • Politics
  • Top Story
  • Business
    • Business
    • Economics
    • Real Estate
    • Startups
    • Autos
    • Crypto & Web 3
  • Tech
  • Lifestyle
    • Lifestyle
    • Food
    • Beauty
    • Art & Books
  • Health
  • Sports
  • Entertainment
  • Education
Reading: WhatsApp privateness bug nonetheless not fastened says crypto startup that discovered it
Share
Font ResizerAa
Michigan PostMichigan Post
Search
  • Home
  • Trending
  • Michigan
  • World
  • Politics
  • Top Story
  • Business
    • Business
    • Economics
    • Real Estate
    • Startups
    • Autos
    • Crypto & Web 3
  • Tech
  • Lifestyle
    • Lifestyle
    • Food
    • Beauty
    • Art & Books
  • Health
  • Sports
  • Entertainment
  • Education
© 2024 | The Michigan Post | All Rights Reserved.
Michigan Post > Blog > Crypto & Web 3 > WhatsApp privateness bug nonetheless not fastened says crypto startup that discovered it
Crypto & Web 3

WhatsApp privateness bug nonetheless not fastened says crypto startup that discovered it

By Editorial Board Published December 10, 2024 3 Min Read
Share
WhatsApp privateness bug nonetheless not fastened says crypto startup that discovered it

A problem with WhatsApp’s disappearing media function has lastly been fastened, months after it was first found by crypto pockets startup Zengo’s technical staff.

The View As soon as function was launched by WhatsApp to guard its customers’ privateness by permitting them to ship photos and movies that will robotically be wiped as soon as seen.

Nonetheless, in August, Zengo’s staff found that the function could possibly be “trivially bypassed” when utilizing the platform’s net app. The staff says it disclosed the problem to WhatsApp however when it grew to become clear that the problem had already been “exploited in the wild,” it made its findings public “to protect the privacy of WhatsApp’s users.”

WhatsApp responded with a fast patch however this reportedly nonetheless allowed the supposedly deleted photographs to be seen. Now, the messaging platform says, it’s rolled out a extra complete software program replace.

Zengo detailed its discovery of the issue in a prolonged weblog put up in September.

“As we continue to develop the world’s pioneering MPC crypto wallet, the Zengo X Research Team is looking into its closest-living relative, the Instant Messaging (IM) apps domain,” wrote Zengo Co-Founder Tal Be’ery. “As a result of such research, we were able to identify and report important privacy issues in the past.”

He added, “After we seemed into the implementation particulars we had been very stunned to seek out that though ‘View Once’ is supposed to be restricted to platforms through which the app can management its displayed content material and forestall different processes from abusing it, it’s not enforced by WhatsApp’s API server.

“In consequence, a shopper on any platform can obtain the message and make the ‘View Once’ promise void.

Be’ery then described how his staff constructed its personal unofficial WhatsApp shopper based mostly on an open-source implementation of WhatsApp’s net shopper and knowledgeable Meta.

Zengo says repair is best however nonetheless not good

In one other weblog put up from Monday, Be’ery defined how regardless that the repair is “a great improvement with respect to the original starting point,” it’s not good.

“This fix indeed solves the core issue: Recipient’s devices that should not display a View Once message do not get it,” he writes.

“As a result, a trivial exploitation with a modified WhatsApp Web client cannot work.”

Nonetheless, he provides, “The repair nonetheless permits different sender’s units that ought to not show a View As soon as message to get it. This will pose an pointless threat because it will increase the assault floor for no cause, since these messages aren’t displayed on such units.

“For example, a View Once message might be forensically extracted from these devices by attackers.”

TAGGED:bugCryptofixedPrivacyStartupWhatsApp
Share This Article
Facebook Twitter Email Copy Link Print

HOT NEWS

UK ‘dedicated’ to recognising Palestine as state, says minister – however refuses to present timeline

UK ‘dedicated’ to recognising Palestine as state, says minister – however refuses to present timeline

Politics
July 27, 2025
Conservatives vow to ban physician strikes – as Kemi Badenoch hits out at ‘militant’ union

Conservatives vow to ban physician strikes – as Kemi Badenoch hits out at ‘militant’ union

The Conservatives would ban strikes for docs, Kemi Badenoch has mentioned.The Tory chief mentioned she…

July 27, 2025
Firefighters sort out blazes as wildfires escape in Greece, Turkey and Albania

Firefighters sort out blazes as wildfires escape in Greece, Turkey and Albania

Firefighters are battling blazes which have damaged out throughout a number of nations in southeast…

July 27, 2025
Thailand and Cambodia conform to peace talks after Trump intervention – however shelling continues

Thailand and Cambodia conform to peace talks after Trump intervention – however shelling continues

Thai and Cambodian leaders will meet in Malaysia for talks to finish the cross-border combating…

July 27, 2025
Frankie Muniz newest actor-turned-driver out to show he can compete in high-level racing

Frankie Muniz newest actor-turned-driver out to show he can compete in high-level racing

Frankie Muniz will be the solely actor who has been nominated for an Emmy award…

July 27, 2025

YOU MAY ALSO LIKE

Are bitcoin treasuries mirroring the 1929 funding belief collapse?

Because the bitcoin (BTC) treasury firm bubble of spring 2025 deflates into summer season doldrums, historians of public trusts are…

Crypto & Web 3
July 25, 2025

How XRP misplaced its first 32,569 ledgers — and why it issues

Ripple founders and early insiders launched the XRP Ledger in June 2012 and misplaced all of its knowledge by New…

Crypto & Web 3
July 25, 2025

WOO X continues to freeze withdrawals as hack particulars emerge

The Taiwan-based crypto trade WOO X nonetheless hasn’t lifted its momentary withdrawal ban after $14 million in crypto was stolen…

Crypto & Web 3
July 25, 2025

Crypto change WOO X suspends withdrawals, customers hacked for $14M

Taiwan-based crypto change WOO X has briefly frozen withdrawals after $14 million price of crypto was stolen from 9 customers…

Crypto & Web 3
July 24, 2025

Welcome to Michigan Post, an esteemed publication of the Enspirers News Group. As a beacon of excellence in journalism, Michigan Post is committed to delivering unfiltered and comprehensive news coverage on World News, Politics, Business, Tech, and beyond.

Company

  • About Us
  • Newsroom Policies & Standards
  • Diversity & Inclusion
  • Careers
  • Media & Community Relations
  • Accessibility Statement

Contact Us

  • Contact Us
  • Contact Customer Care
  • Advertise
  • Licensing & Syndication
  • Request a Correction
  • Contact the Newsroom
  • Send a News Tip
  • Report a Vulnerability

Term of Use

  • Digital Products Terms of Sale
  • Terms of Service
  • Privacy Policy
  • Cookie Settings
  • Submissions & Discussion Policy
  • RSS Terms of Service
  • Ad Choices

© 2024 | The Michigan Post | All Rights Reserved

Welcome Back!

Sign in to your account

Lost your password?