Lawyer involved in suits against Israel's most notorious cyber-arms dealer targeted by its weapons, delivered through a terrifying Whatsapp vulnerability

doctorow · May 14, 2019, 5:43pm

Originally published at: https://boingboing.net/2019/05/14/pegasus-over-whatsapp.html

…

KathyPartdeux · May 14, 2019, 5:53pm

Funny how active “retired spies” are. And how these groups are always unaffiliated with any government agencies. The denials sound quite plausible.

Papasan · May 14, 2019, 6:01pm

WhatsApp is yet another festering boil on Facefuckingbook reputation. Oh, remember it’s free to use too…

karl_jones · May 14, 2019, 6:11pm

Now, NSO has been caught deploying its “Pegasus” malware via a new and frightening defect in Facebook’s Whatsapp messenger. Facebook’s description of the bug is that it is “A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of SRTCP packets sent to a target phone number.” Practically speaking, that means that someone who initiates a Whatsapp call to your Iphone or Android device can seize control of the device, even if you don’t answer the call.

Is that a bug, or a feature?

Asking for a hostile foreign power.

Lexicat · May 14, 2019, 6:28pm

Whisper Systems’ Signal.

Keith_McClary · May 14, 2019, 6:48pm

This would include all these “cybersecurity experts” that we believe unconditionally. But you don’t mean Skripal, right? He was just spending his golden years puttering in his English country garden.

Garymon · May 14, 2019, 7:53pm

Because they watched or read Polar and know retiring doesn’t bode well.

anotherone · May 14, 2019, 7:58pm

There you go. FTFY

Dire · May 15, 2019, 12:04pm

A teenage coder exploits a vulnerability and circumvents security measures and collects data = charges under one or many of these :

Section 1 of the Criminal Law Act 1977
Sections 1 - 3ZA of the Computer Misuse Act 1990
Section 1 of the Regulation of Investigatory Powers Act 2000
Sections 44 - 46 of the Serious Crime Act 2007
Money laundering offences under the Proceeds of Crime Act 2002
Section 55 of the Data Protection Act

$1b corporation does same, for profit =

Manqueman · May 17, 2019, 7:28pm

Apropos WhatsApp: Imagine what kind of competitor it could become for Facebook if it remained independent. Or, more relevantly, whether the security would be as scrappy as it is now because security is so important to Facebook.

doctorow · May 19, 2019, 5:43pm

This topic was automatically closed after 5 days. New replies are no longer allowed.

Topic		Replies	Views
Facebook accuses Israel's NSO Group of exploiting U.S. servers to infect 100s of devices via WhatsApp boing	4	752	April 29, 2020
New privacy hires at WhatsApp: Nate Cardozo (EFF), Robyn Greene (Open Technology Institute) boing	8	898	February 4, 2019
Smurfs vs. phones: GCHQ's secret smartphone malware that can take pics and listen in even when your phone is off boing	20	2839	October 10, 2015
Pegasus / NSO general topics	40	2191	October 27, 2024
As FBI war on crypto intensifies, Facebook, Google and WhatsApp intensify encryption boing	7	1478	March 20, 2016

Lawyer involved in suits against Israel's most notorious cyber-arms dealer targeted by its weapons, delivered through a terrifying Whatsapp vulnerability

Related topics