IT Security is very challenging and only vigilance and\npreventive measure can protect your systems<\/p>\n\n\n\n
Facebook just reported this week\nabout an Israeli security firm called NSO development of a spyware which they\nsell to governments around the world to hack into communication devices. This\nspyware was used to hack into the Whatsapp calling function to call the target\nphone and install the surveillance app. NSO client use buffer overflow\nvulnerabilities in the Whatsapp Voice over Internet Protocol (VoIP) stacks to\nenforce remote code execution via series of Secured Real-time Transport\nProtocol (SRTCP) packets sent to a target phone number.<\/p>\n\n\n\n
This attack occurred because it is\nmost likely that there is no code signing technology deployed in Whatsapp and\nits encryption and digital signature could not keep the spyware out. The fact\nthat there was code injection using this vulnerability shows deeper flaw in the\ndevelopment of the app core or root of trust and its code signing and input\nvalidation capabilities. If the Whatsapp code is not signed, how come any data\ninjection is not stopped by impute validation system?<\/p>\n\n\n\n
Hence specific details are not\nprovided (it is standard IT security policy though), it is also possible the\nNSO spyware attack utilized the Dynamic Link Library (DLL) injection, which\ncompromises system memory and manipulating it into running the spyware as an\nauthentic command. It does not seem that Whatsapp has a detective control or\ndeterrent control or preventive control systems to prevent this kind of\nattacks.<\/p>\n\n\n\n
With the money they spent in\npurchasing the app, you will think they will invest in thorough security sweep\nof the app to ensure this kind of flaws are prevented. Anyway, without boring\nyou with IT technical terms, it goes to the unconscionable conducts of big tech\nwhich undermines to ethical and professional standard of the whitehat hackers\nand computer programmers.<\/p>\n\n\n\n
We have heard how Boeing offered\nsecurity features of something as big and critical system like aircraft as an\noptional feature and we have people showing sympathy for them. It is all about\ndollar and no emphasis on the security and privacy of consumers in protecting\nhuman life.<\/p>\n\n\n\n
Anyway, I am mentioning this because\nit is a lie that this problem was recently found in Whatsapp. I suffered same\nattack since over two years now, warned people, mentioned about the\nsurveillance on my devices on Facebook and Twitter posts, and this problem is\nnot just on Whatsapp alone. Other communication networks like AT & T and T\n– Mobile has been compromised and so was Viber app, different communication\nsystems like calling card technologies, conference calls and internet calls. <\/p>\n\n\n\n
These Tech companies should start\ntaking the ethics of this very important future industry for the world (IT)\nvery serious and take the fiduciary duty of care to include consumers just as\nthey take their shareholders’. Like NSO responded, it is all about money. No\nmore privacy, after all, the consumers do not care about their own privacy.\nThey share everything in social media. So, there is no motivation for the\nindustry to spend more money providing security feature that the people do not\ncare about having.<\/p>\n\n\n\n
I have been telling people that many\nof these apps are not safe, that there is spyware hidden in my phones by people\nsurveilling me, I have changed phones and each time, they find their way into\nnew phones using the same or other vulnerabilities. The congress has been\nsilent and provides no oversight over the irresponsibility of these tech people\nand blackhat hackers. Every cybersecurity specialist should be ashamed of this\nkind of embarrassment and cover ups. It makes us look bad!<\/p>\n\n\n\n
Ebelechukwu P. Elochukwu<\/p>\n","protected":false},"excerpt":{"rendered":"
IT Security is very challenging and only vigilance and preventive measure can protect your systems Facebook just reported this week about an Israeli security firm called NSO development of a spyware which they sell to governments around the world to hack into communication devices. This spyware was used to hack into the Whatsapp calling function … Continue reading “IT Security is very challenging and only vigilance and preventive measure can protect your systems”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/posts\/156"}],"collection":[{"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=156"}],"version-history":[{"count":1,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/posts\/156\/revisions"}],"predecessor-version":[{"id":157,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=\/wp\/v2\/posts\/156\/revisions\/157"}],"wp:attachment":[{"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=156"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=156"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/usqualities.com\/Blogs\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=156"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}