Wanna Crash Friend's WHATSAPP ??.

          #Whatsapp is one of the most famous messaging application that has more than 600 million users using it and the application was bought by Facebook recently. There is also an information that Whatsapp has reduced the messaging service provided by the service provider i.e. Carrier. 

           Recently a new vulnerability has been identified on Whatsapp that causes the user to delete all the chat in his/ her conversation.

            Consider user X is not going good with user Y thus X wants to make Y exit from some group or wants to delete the entire chat that Y has. X can send a specially crafted message to Y that does the same. 

             The specially crafted message comprises of 2000 words
 ( 2 Kilobyte ) in a special character that causes the crash of the receiver's Whatsapp.

              This vulnerability is found to work on all existing versions of #Android and the vulnerability has not been tested on #IOS and this vulnerability has no effect on Windows 8.1. 

                Since it is already noted that around 600 million users are using Whatsapp around 500 million are vulnerable to this vulnerability.

             The Proof Of Concept ( POC ) is available for this attack online. Whatsapp is expected to release an update to fix this vulnerability. The vulnerability can cause

1. Deletion of entire chat conversation.
2. Exiting from the group due to the deletion of chat conversation.
3. Crashes the Whatsapp application if the chat is not deleted.

P.S : The post is to create awareness and not to be misused.

Easy Facebook Hacking

       Almost everyone above 13 years are using Facebook these days and it is becoming a social status of having many number of friends. One can hack the user profile by exploiting the mentality of having more number of people as friends whether we know them are not. The simple way used these these days to hack facebook is as follows.

      Consider alice to be the target for hacking. The attacker will first create number of fake accounts and give request to alice and will wait for approval. Once the requests are accepted then the attacker will try the facility meant for resetting the password when we forget our password. In the dialogue box the attacker will select his / her accounts as friends list for confirmation and the reset of password can be made with the help of the fake profiles.

      And one more important thing is that don't put photos in social networking sites especially ladies. You may think that
I am having my privacy setting for viewing my profile pic in full size only by me then why should i fear ??? There is a bug in Facebook and it is still exists that allows everyone to view your profile picture as full size even your privacy setting is meant only for you.

    I am not explaining how to exploit the bug because the posts are meant only to create awareness.

P.S : The post is only to create awareness and not to be misused.