A new WhatsApp vulnerability is reportedly allowing attackers to remotely suspend your using your phone number. As per a Forbes report by security researchers Luis Márquez Carpintero and Ernesto Canales Pereña, the new vulnerability appears to have existed on the instant messaging app for a long time. Further, it allows attackers to restrict you from activating your account again, even if you have Two-Factor Authentication.
The report also suggests that the vulnerability exists due to two fundamental weaknesses. The first weakness allows attackers to enter your phone number on a WhatsApp installation on their phones. The attacker can then use your phone number to begin signing in to your account.
While the attacker will still not obtain the six-digit security code that is sent to your account as an SMS, he/she can still enter the wrong security code repeatedly, leading your account to lock new installations for 12 hours.
Meanwhile, the attacker will be able to use…