Encryption Flaw Found in Popular Mobile App – WhatsApp IM client

A researcher has found a serious and exploitable flaw in a popular mobile app for instant messaging. Though the app uses RC4 encryption which today isn’t well regarded and might be a concern in its own right, this flaw is about implementation.

You can read about it here. http://www.net-security.org/secworld.php?id=15745

Its not unusual for researchers to find such flaws – and the fact that such research exists is good news as the issues are made public and can be addressed. However this one creates risk for end users as its a) a very popular app so affects a lot of users and b) the flaw permits any old message conversations to be compromised if exploited. So old data is at risk as well as new until there is an app update to fix it.

If you’re serious about securing messages to and from your smartphones, you might want to take a look at Voltage SecureMail Cloud. It has native apps for leading smartphones and can send secure email messages to anyone, anywhere with a couple of clicks – essentially to anywhere email can be received – cloud, mobile, enterprise. It uses powerful IEEE 1363.3 Standard Identity-Based Encryption, making it practically transparent to users. Easy, secure, and great for on-the-go business interactions without the hassle of key management and complexity. Millions of people use Voltage SecureMail across the world every day.

You can try it here if you like for free : http://www.voltage.com/vsn/index.htm

Leave a Reply

Your email address will not be published. Required fields are marked *