Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×
Security Communications Software

WeChat IM Application Could Disclose Your Password To Attackers 49

New submitter soulflyz writes "Security researchers found some security issues in WeChat, a popular instant messaging application developed by the Chinese company Tencet. By exploiting these vulnerabilities, any other application installed on the user's phone can force WeChat to send the user's password hash (in plain MD5 format) to an external web server, controlled by the attacker. Android versions of WeChat up to 4.5.1 are confirmed to be vulnerable, but similar issues could interest also other versions of the application. According to recent statistics, WeChat should have about 300 million registered users."
This discussion has been archived. No new comments can be posted.

WeChat IM Application Could Disclose Your Password To Attackers

Comments Filter:
  • by Anonymous Coward on Tuesday September 17, 2013 @10:11PM (#44880169)

    I've been using wechat for over a year on two phones and had no idea that I had a password.

  • witches (Score:0, Funny)

    by Anonymous Coward on Tuesday September 17, 2013 @10:15PM (#44880191)

    God damn, it's the fucken middle ages. nothing but crazy ass fears of fraud and cons and hacker and trojens and so much ignorance and fears and crazy crazy tin-foil hat

    my husband turned into a frog cause I haven't seen him

    everybody is a basket case. they misclick and think their computer is hijacked by the FSB. Crazy-ass thinking. Chilll. Who's creating all this hysteria? The trusted companies who are refuge stand to benefit. The fucken CIA is evil fuckers.

Nothing makes a person more productive than the last minute.