WhatsApp compromised by major design flaw: Reports

WhatsApp compromised by major design flaw: Reports

LONDON – Messaging service WhatsApp has a major design flaw which may allow attackers to decrypt intercepted messengers, according to reports.


LONDON – Messaging service WhatsApp has a major design flaw which may allow attackers to decrypt intercepted messengers, according to reports. A Dutch developer claims to have discovered a hole in the popular app’s security because it uses the same key to encrypt outgoing and incoming messages, the Daily Telegraph reported.Mr Thijs Alkemade said the issue exists on Nokia Series 40 and Android devices and believes handsets running Apple’s iOS operating system are also likely to be affected.

“You should assume that anyone who is able to eavesdrop on your WhatsApp connection is capable of decrypting your messages, given enough effort,” he wrote in a blog post which explained his fears.

Mr Alkemade said he raised the issue because he believed it was in the public interest and would not be fixed in the near future.

WhatsApp rejected the claim that all conversations on the app were compromised but said it appreciated the concerns raised.

“WhatsApp takes security seriously and is continually thinking of ways to improve our product,” a spokesman told PC World.

“While we appreciate feedback, we’re concerned that the blogger’s story describes a scenario that is more theoretical in nature. Also stating that all conversations should be considered compromised is inaccurate.”

WhatsApp is an instant messaging service similar to BlackBerry’s BBM which allows people to send text messages and photos to groups of friends.

Launched in 2009, WhatsApp has more than 300 million users worldwide who share an average of 325 million photos each day. AGENCIES

About bambooinnovator
Kee Koon Boon (“KB”) is the co-founder and director of HERO Investment Management which provides specialized fund management and investment advisory services to the ARCHEA Asia HERO Innovators Fund (www.heroinnovator.com), the only Asian SMID-cap tech-focused fund in the industry. KB is an internationally featured investor rooted in the principles of value investing for over a decade as a fund manager and analyst in the Asian capital markets who started his career at a boutique hedge fund in Singapore where he was with the firm since 2002 and was also part of the core investment committee in significantly outperforming the index in the 10-year-plus-old flagship Asian fund. He was also the portfolio manager for Asia-Pacific equities at Korea’s largest mutual fund company. Prior to setting up the H.E.R.O. Innovators Fund, KB was the Chief Investment Officer & CEO of a Singapore Registered Fund Management Company (RFMC) where he is responsible for listed Asian equity investments. KB had taught accounting at the Singapore Management University (SMU) as a faculty member and also pioneered the 15-week course on Accounting Fraud in Asia as an official module at SMU. KB remains grateful and honored to be invited by Singapore’s financial regulator Monetary Authority of Singapore (MAS) to present to their top management team about implementing a world’s first fact-based forward-looking fraud detection framework to bring about benefits for the capital markets in Singapore and for the public and investment community. KB also served the community in sharing his insights in writing articles about value investing and corporate governance in the media that include Business Times, Straits Times, Jakarta Post, Manual of Ideas, Investopedia, TedXWallStreet. He had also presented in top investment, banking and finance conferences in America, Italy, Sydney, Cape Town, HK, China. He has trained CEOs, entrepreneurs, CFOs, management executives in business strategy & business model innovation in Singapore, HK and China.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: