Forgot your password?
typodupeerror
Security Communications Software

WeChat IM Application Could Disclose Your Password To Attackers 49

Posted by Soulskill
from the conveniently-facilitates-account-sharing dept.
New submitter soulflyz writes "Security researchers found some security issues in WeChat, a popular instant messaging application developed by the Chinese company Tencet. By exploiting these vulnerabilities, any other application installed on the user's phone can force WeChat to send the user's password hash (in plain MD5 format) to an external web server, controlled by the attacker. Android versions of WeChat up to 4.5.1 are confirmed to be vulnerable, but similar issues could interest also other versions of the application. According to recent statistics, WeChat should have about 300 million registered users."
This discussion has been archived. No new comments can be posted.

WeChat IM Application Could Disclose Your Password To Attackers

Comments Filter:
  • by Anonymous Coward on Tuesday September 17, 2013 @10:11PM (#44880169)

    I've been using wechat for over a year on two phones and had no idea that I had a password.

  • witches (Score:0, Funny)

    by Anonymous Coward on Tuesday September 17, 2013 @10:15PM (#44880191)

    God damn, it's the fucken middle ages. nothing but crazy ass fears of fraud and cons and hacker and trojens and so much ignorance and fears and crazy crazy tin-foil hat

    my husband turned into a frog cause I haven't seen him

    everybody is a basket case. they misclick and think their computer is hijacked by the FSB. Crazy-ass thinking. Chilll. Who's creating all this hysteria? The trusted companies who are refuge stand to benefit. The fucken CIA is evil fuckers.

We can predict everything, except the future.

Working...