Your new post is loading...
Shortly after Facebook announced buying WhatsApp, many users raised privacy concerns. Soon enough, security experts revealed identifying a number of vulnerabilities, which they catalogued as being exactly the kind “the NSA would love.”
The security issues have been identified by Praetorian. The company’s new mobile application security testing platform Project Neptune has been put to the test.
A total of four SSL-related security holes have been identified. First, researchers found that SSL pinning is not enforced.
This allows an attacker to launch a man-in-the-middle (MitM) attack between the mobile application and the backend web services and capture user credentials and other sensitive information.
