WhatsApp faces a new problem. A flaw in its method of two-factor authentication makes it easy to suspend an account.
Perhaps one of them will be the correction of the verification system, which has a severe problem: the ability to suspend your account by knowing only your phone number.
A simple method
The attacker can do this by installing WhatsApp on a new device and entering your phone number when registering.
The process will go no further, at this point WhatsApp does indeed send a verification SMS to the contact number, i.e. to your SIM card. WhatsApp’s two-factor authentication system kicks in.
Problem, if the person repeats the operation several times, the identification is blocked for 12 hours. She can then contact WhatsApp support by email and request the suspension of the account, citing a phone theft. Suspicion will be heightened by wrong connection attempts.
For security reasons, WhatsApp will therefore suspend the account, without closing it, and without ever asking for your opinion.
No account access
While this method allows malicious actions against WhatsApp accounts, you can still rest assured knowing that this is not an account access method. We’re not talking about hacking here, or gaining access to your WhatsApp account information.
Obviously, using this method violates the terms of service of WhatsApp. Hopefully the firm will react quickly to find a solution and correct the problem.