WhatsApp allows the exploit to be harmless to have made that made it possible to see the status of other users to change. The vulnerability itself is within 24 hours fixed. WhatsApp already knew since september of the problem.
Already in september, it was WhatsApp of the vulnerability on the informed, but only after Tweakers.net Friday on a web site wrote that the problem of abuse made, took over WhatsApp, the effort to solve the problem. Across The Verge has WhatsApp indicated that the tool, WhatsAppStatus.net, no longer works. The next 24 hours the problem should be with better patches be permanently resolved. The bug itself is not fixed: only the specific exploit does not work anymore.
The vulnerability is in the xmpp implementation of WhatsApp. When updating the status that is displayed in the contact list, no authentication applied, which makes of each user, the status could be changed. This week, a hacker is an exploit and implemented it in a site, where massive use was made of them.
Probably went to a Dutch hacker: the site was by the Dutch LeaseWeb hosted, and the sample telephone number that the tool was shown, did the Dutch extension ‘+31’. The identity of the hacker is unknown.
Previously discovered a reader of Tweakers.net that WhatsApp messages are unencrypted save. Shortly before, made an error in sms verification from WhatsApp it is possible to send messages for others to read.
Update, 14:34: The vulnerability seems now with the other tools to abuse.
