WhatsApp fixes 'zero-click' bug used to hack Apple users with spyware | TechCrunch
techcrunch.com
A spyware vendor was behind a recent campaign that abused a vulnerability in WhatsApp to deliver an exploit capable of hacking into iPhones and Macs.
  • PullPantsUnsworn@lemmy.mlEnglish
    9·
    14 hours ago

    The number of times WhatsApp crashes in GrapheneOS is so high. GrapheneOS exposes all memory corruption bugs due to it’s hardened memory allocator and memory tagging features.

    No wonder WhatsApp is exploited just like that. I sometimes think if these bugs were built purposefully.

    • Truscape@lemmy.blahaj.zoneEnglish
      6·
      13 hours ago

      With a Meta service it’s better to presume the worst than to give them the benefit of the doubt.

      …Although I also have crashing issues with Voyager on GrapheneOS, so it could just genuinely be programming errors.

    • embed_me@programming.devEnglish
      2·
      11 hours ago

      In India, they’re running literal ads on billboards and TV saying WhatsApp can’t read your messages

      • tal@lemmy.todayEnglish
        11·
        11 hours ago

        If I recall correctly, at least for non-group chats they do use end-to-end encryption. That being said, obviously there are some practical limitations on the impact if you think that WhatsApp would actively try to be malicious, since they’re also providing the client software and could hypothetically backdoor that.

        kagis

        According to this, they do use end-to-end encryption for group chats too.

        Maybe I’m recalling some other service or a default setting or something. Some service had non-e2e-encrypted-group messages for at least some period of time.