Facebook-owned messaging giant WhatsApp has confirmed a vulnerability that allowed hackers to install spyware on smartphones.
While WhatsApp began life as a simple messaging app, it has expanded into all manner of communications — including voice calls, which it has . According to a , malicious code developed by Israeli cyber intelligence firm could be delivered to users’ handsets using an exploit in the voice-call feature on WhatsApp. The code could be deployed regardless of whether the recipient answered the call.
Facebook issued late last night with more details on the vulnerability, saying:
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of SRTCP packets sent to a target phone number.
Tel Aviv-based NSO has long