WhatsApp Is Using IMEI Numbers As Passwords

WhatsApp Is Using IMEI Numbers As Passwords 102

Posted by Soulskill on Saturday September 08, 2012 @06:58PM from the security-through-handwavery dept.

mpol writes "In the past, WhatsApp has been criticized over their insecure use of XMPP. Recently, new versions of their app have incorporated encryption. It seems the trouble isn't over yet for WhatsApp and its users. Sam Granger writes on his blog that WhatsApp is using IMEI numbers as passwords. This is at least the case with the Android app, but other platforms are probably using similar methods. Since someone's IMEI number is easily readable, this isn't really secret information that should be used for authentication."

WhatsApp Is Using IMEI Numbers As Passwords

Search 102 Comments Log In/Create an Account

Comments Filter:

Re:Seriously? (Score:3, Informative)

by MrHanky ( 141717 ) writes: on Saturday September 08, 2012 @07:29PM (#41276719) Homepage Journal

Meh. It's a proprietary extension to a free protocol, with lock-in included. Fuck them.

Re:Seriously? (Score:5, Informative)

by kylegordon ( 159137 ) writes: on Saturday September 08, 2012 @07:58PM (#41276859) Homepage

There's no need for responsible disclosure when it's been around for months on Github.
Just check https://github.com/venomous0x/WhatsAPI/blob/63639eafc9a08fd308df72458f1381ec8899940d/README.md [github.com] and you'll see.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

WhatsApp Is Using IMEI Numbers As Passwords 102

WhatsApp Is Using IMEI Numbers As Passwords More Login

WhatsApp Is Using IMEI Numbers As Passwords

Re:Seriously? (Score:3, Informative)

Re:Seriously? (Score:5, Informative)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot