A flaw in the servers of WhatsApp allows you to add new members to the groups
The Ruhr University Bochum in Germany discovered a flaw in the system WhatsApp: anyone who has control of the server of the app, including the employees of the company, can add new members to any group.
This flaw allows anyone who has access to the servers of WhatsApp to take full control on any group. To insert a new group still leaves a trace, because all the other members read the relevant notification, but the attacker still has the ability to hide certain messages and stores them in the cache. Anyone who has access to the server of WhatsApp can then overcome all the security systems and add new members in the groups. It is also possible to manipulate the messages in order to avoid that the other members of the group aware of the new additions.
WhatsApp has confirmed the presence of this flaw and has assured that he will work to correct it as soon as possible. Facebook, however, is to know that a possible attacker could not cache the chat of the group is or prevent other users to see the warning of the addition of new members
Of course, researchers agree on the fact that the level of server security makes it difficult to exploit this bug, but this is not an excuse for any kind of security flaw.
Link to the original article: A flaw in the servers of WhatsApp allows you to add new members to the groups