When the world gets closer.

We help you see farther.

Sign up to our expressly international daily newsletter.

Enjoy unlimited access to quality journalism.

Limited time offer

Get your 30-day free trial!
Is someone about to hack your smartphone?
Is someone about to hack your smartphone?
Benedikt Fuest

For months, free smartphone instant messaging service WhatsApp has been topping the download charts. It is a favorite application for both iPhone and Android users. To the annoyance of cell phone providers, WhatsApp has become a kind of quasi replacement for the old fee-based SMS. According to WhatsApp developers, their servers handle over 10 billion messages per day.

However the service, which is run by small San Francisco start-up WhatsApp Inc., is neither as secure nor as failure-resistant as one would expect from a market leader. In his blog British web developer Sam Granger writes that any relatively ambitious hacker could get into WhatsApp accounts without a problem, either to intercept messages or send messages from their victim’s account.

This is because WhatsApp is set up to make the service friendly to new users who don’t have to provide their own combination of user name and password – they just use the existing info relating to their phone as login data. Telephone numbers are simply and clearly the basis for user names, and WhatsApp passwords -- at least on Android phones -- are clearly based on a phone’s IMEI serial number.

Granger discovered that to generate a password out of the IMEI number the app just changes the order of the digits – “your password is likely to be an inverse of your phones IMEI number with an MD5 cryptographic hash thrown on top of it.” What that means is that anybody who knows a phone’s IMEI number can figure out the password.

Many apps use IMEI numbers to identify phones, and any installed program can access that information and pass it on to an external database. In the event that what happened to iPhone this week (a hacker group released one million Apple UDIDs) happens to WhatsApp, and a database generated from the phone serial numbers were to be made public, WhatsApp user accounts would be compromised and become targets for spammers. Not that hackers have lost any time -- on gray market sites, databases of Android phone serial numbers and corresponding cell phone numbers are sold under the keyword WhatsApp.

WhatsApp has been criticized many times for its security loopholes. Until recently the app carried unencrypted messages through the net, and a simple program made it possible for them to be accessed from a Wi-Fi network. The app also stores message history unencrypted on the SD memory card of Android phones.

Another issue is that WhatsApp can be completely cut off from the mobile phone network. As this article goes to print, T-Mobile users cannot access WhatsApp after a T-Mobile update blocked the relevant network port. T-Mobile says this was accidental and service would be resumed as fast as possible.

You've reached your limit of free articles.

To read the full story, start your free trial today.

Get unlimited access. Cancel anytime.

Exclusive coverage from the world's top sources, in English for the first time.

Insights from the widest range of perspectives, languages and countries.

Ideas

Absolute Free Speech Is A Recipe For Violence: Notes From Paris For Monsieur Musk

Elon Musk bought Twitter in the name of absolute freedom. But numerous research shows that social media hate speech leads to actual violence. Musk and others running social networks need to strike a balance.

Absolute Free Speech Is A Recipe For Violence: Notes From Paris For Monsieur Musk

Freedom on social networks can result in insults and defamation

Jean-Marc Vittori

-Analysis-

PARIS — Elon Musk is the world's leading reckless driver. The ever unpredictable CEO of Tesla and SpaceX is now behind a very different wheel as the new head of Twitter.

He began by banning remote work before slightly backtracking and authorizing it for the company’s “significant contributors.” Now he’s opened the door to Donald Trump to return to Twitter, while at the same time vaunting a decrease in the number of hate-messages that appear on the social network…all while firing Twitter’s content moderation teams.

But this time, the world’s richest man will have to make choices. He’ll have to limit his otherwise unconditional love of free speech. “Freedom consists of being able to do everything that does not harm others,” proclaimed the French-born Declaration of the Rights of Man in 1789.

Yet freedom on social networks results not only in insults and defamation, but sometimes also in physical aggression.

Keep reading...Show less

You've reached your limit of free articles.

To read the full story, start your free trial today.

Get unlimited access. Cancel anytime.

Exclusive coverage from the world's top sources, in English for the first time.

Insights from the widest range of perspectives, languages and countries.

The latest