15/May/2019
Confirmation from WhatsApp that a security flaw in the app let attackers install spyware on their targets’ smartphones has left many of its users wondering just how vulnerable the popular messaging app might be.
An estimated 1.5 billion people use WhatsApp, which offers end-to-end message encryption as one of its key features. And, while this feature means that messages are scrambled when they leave the senders device, and are decrypted via the recipient’s device, spyware can read them before they are encrypted – or after they are decrypted.
WhatsApp – which is owned by Facebook – has responded quickly to the issue and the service does offer users the option to back up chats to iCloud or Google Drive. But – as is usually the case – the onus is largely on users to remain vigilant.
Some simple security steps to take include:
• Install app and operating system security updates;
• Using a different password for every app or service;
• If possible, enable two-step authentication to stop attackers logging in to accounts;
• Be careful about any apps you download;
• Do not click links in emails or messages you are not expecting.
This BBC News article takes a look at this latest breach of a popular service and offers some useful advice.
