Hackers could sneak in on Messenger, Signal and Duo users
Share onA number of the most widely used communication services in the world had holes that allowed hackers to sneak-listen to the victim's surroundings before possibly approving the call.
The biggest instant messaging apps had serious security flaws related to audio
The bugs were present in Signal, Google Duo, Facebook Messenger, JioChat, and Mocha - all apps have been fixed to close the hole.
Before the error, which was revealed on January 29, 2019, was corrected, it was possible to extract sound from the targets without having to start coding them:
Someone is probably going to examine group talk security now
Neither Telegram nor Viber contained the same error when they were investigated by Google Project Zero security researcher Natalie Silvanovich. Silvanovich says he has not investigated group talks.
The thing was that the sound was transmitted without the approval of the victim for the hack: that is, the soundtrack was added to the link before the victim agreed to the call. It was in this way that they were able to extract sound from the surroundings of the PC or mobile phone the hackers wanted to eavesdrop on.