Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Since there's no version information available, I think it's safe to assume they haven't been doing it on iOS for several years.


It's not clear to me if you're right, but I would rephrase the issue this way:

If there's a vulnerability in Whatsapp, the injected code should only affect Whatsapp.

Otherwise, it's (also) a vulnerability in iOS.


That might be enough for what they are doing. At least it will allow them to spy on whatsapp messages and parts of the system that Whatsapp can access (contacts etc)


Ofcourse the whole point of Whatsapp is secure communications and I guess the exploit makes that pointless.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: