Last year, 2 independent security researchers Indrajeet Bhuyan and Sourav Kar made the world’s smallest code (2kb in size) which could crash WhatsappMobile app affecting around 500 million users worldwide.
This year, Indrajeet Bhuyan has reported the same flaw working in both, Whatsappmobile app and Whatsapp Web client.
Details about the new Whatsapp crash
On the Web client, Whatsapp allows upto 65500-6600 characters.But after typing about 4200-4400 smiley’s, the browser starts to lag. But since the limit is not yet reached, Whatsapp allows us to go on inserting more characters. Whatsapp web crashes while we type and send. In whatsapp mobile app, when it receives the message and overflows the buffer crashes.
In iPhone, it fails to crash but it freezes the app for few seconds
According to stats, there are more than 1billion Whatsapp users on Android. The new exploit keeps these 1 billion users on a risk.
How to recover if you’re attacked?
Technically, there’s only one way to recover your whatsapp. The method will erase your whatsapp chat with the attacker but your Whatsapp will work normally! Just go on to the Chats section, Press and Hold the chat with attacker and delete your conversation.
Indrajeet Bhuyan is the same guy who reported Whatsapp web client bugs – WhatsApp Photo Privacy bug and WhatsApp Web Photo Sync Bug that in some way exposes its users’ privacy.