WhatsApp: anyone can suspend your account with your phone number

WhatsApp faces a new problem. A flaw in its method of two-factor authentication makes it easy to suspend an account.

The application WhatsApp continues to be talked about. The service has seen hard times, and an exodus to Signal , but promises many improvements for the months to come .

Perhaps one of them will be the correction of the verification system, which has a severe problem: the ability to suspend your account by knowing only your phone number.

A simple method

The attacker can do this by installing WhatsApp on a new device and entering your phone number when registering.

The process will go no further, at this point WhatsApp does indeed send a verification SMS to the contact number, i.e. to your SIM card. WhatsApp’s two-factor authentication system kicks in.

Problem, if the person repeats the operation several times, the identification is blocked for 12 hours. She can then contact WhatsApp support by email and request the suspension of the account, citing a phone theft. Suspicion will be heightened by wrong connection attempts.

For security reasons, WhatsApp will therefore suspend the account, without closing it, and without ever asking for your opinion.

No account access

While this method allows malicious actions against WhatsApp accounts, you can still rest assured knowing that this is not an account access method. We’re not talking about hacking here, or gaining access to your WhatsApp account information.

Obviously, using this method violates the terms of service of WhatsApp. Hopefully the firm will react quickly to find a solution and correct the problem.

Leave a Comment