A security hole related to the WhatsApp Web. The problem was seen by the company ISH Tecnologia in conjunction with L1 Engenharia. ISH Engenharia is a cybersecurity specialist and says the flaw could affect other versions of the messenger. Included in these versions are the desktop and the Windows Store app.
Read too: How do I know if I’m being spied on by WhatsApp?
According to the alert, criminals can access messages, photos and content shared through WhatsApp. Then, the attacker can impersonate the user in order to gain advantages or employ various scams.
The security specialist company offers a tip to WhatsApp Web users. It tells them to disconnect the application while they are not in front of the computer.
According to ISH Tecnologia, Facebook was notified of the app’s security breach. The fault, therefore, concerns invasions. The messenger has been encrypted end-to-end messages since 2016. The reason for this is precisely to prevent information theft.
WhatsApp changes
It should be noted that WhatsApp has been testing a new feature to avoid using it on cell phones. It would be possible to create more connections on different devices.
Soon, each device will have its own ID from beta testing.
According to the company, security will be maintained, since all identities will be in the same user. People will be able to know which devices they are sending messages to.
See also: Trick to stay ‘invisible’ on WhatsApp Web: Learn how
Other than that, there is the “Automatic Device Scan”. This feature makes the new system easier to use. New verifications will only be required in cases of new account registrations.
Although the new system is now available for testing, WhatsApp Web will remain active. The company said it will be possible to access other devices by scanning a QR Code.
According to the first information, each user will be able to connect to up to four devices. Now it’s time to wait for the updates to arrive for all users permanently.
It is not known whether these tests can influence the security of WhatsApp Web. In principle, the company has not yet commented on any report and guarantees the user’s security.
–