17-01-2018, 09:41
<r><ALIGN align="center"><s>
</s>
Des chercheurs de l’université de la Ruhr Bochum (Allemagne), ont mis au jour une faille de sécurité dans les discussions de groupe de plusieurs messageries sécurisées, parmi lesquelles le géant WhatsApp.<br/>
<br/>
En exploitant ce défaut de conception, des pirates pourraient s’immiscer dans n’importe quelle discussion groupée sans le consentement de l’administrateur, révèle le site américain Wired. Signal et Threema, d’autres messageries sécurisées, sont aussi victimes de cette faille.<br/>
<br/>
Ils pourraient ainsi lire les messages envoyés consécutivement à son ajout puisque les clés de chiffrement lui seraient alors automatiquement transmises. Autrement dit, quiconque disposerait d’un accès au serveur de WhatsApp peut s’insérer dans un groupe de discussion.<br/>
<br/>
Mais la confidentialité et la sécurité font justement partie des arguments principaux de WhatsApp. Tout est, en principe, chiffré de bout en bout, même aux yeux des serveurs qui les acheminent : les messages ne sont lisibles que par ceux à qui ils sont destinés.<br/>
<br/>
L’entreprise a indiqué qu’elle ne comptait pas corriger ce défaut de conception, car la défaillance est, selon elle, très difficile à exploiter. « WhatsApp s’est penché attentivement sur l’étude », a déclaré sur Twitter Alex Stamos, responsable de la sécurité chez Facebook (propriétaire de WhatsApp).
<e>
</e></ALIGN></r>
Des chercheurs de l’université de la Ruhr Bochum (Allemagne), ont mis au jour une faille de sécurité dans les discussions de groupe de plusieurs messageries sécurisées, parmi lesquelles le géant WhatsApp.<br/>
<br/>
En exploitant ce défaut de conception, des pirates pourraient s’immiscer dans n’importe quelle discussion groupée sans le consentement de l’administrateur, révèle le site américain Wired. Signal et Threema, d’autres messageries sécurisées, sont aussi victimes de cette faille.<br/>
<br/>
Ils pourraient ainsi lire les messages envoyés consécutivement à son ajout puisque les clés de chiffrement lui seraient alors automatiquement transmises. Autrement dit, quiconque disposerait d’un accès au serveur de WhatsApp peut s’insérer dans un groupe de discussion.<br/>
<br/>
Mais la confidentialité et la sécurité font justement partie des arguments principaux de WhatsApp. Tout est, en principe, chiffré de bout en bout, même aux yeux des serveurs qui les acheminent : les messages ne sont lisibles que par ceux à qui ils sont destinés.<br/>
<br/>
L’entreprise a indiqué qu’elle ne comptait pas corriger ce défaut de conception, car la défaillance est, selon elle, très difficile à exploiter. « WhatsApp s’est penché attentivement sur l’étude », a déclaré sur Twitter Alex Stamos, responsable de la sécurité chez Facebook (propriétaire de WhatsApp).
<e>
<t></t>
![[-]](https://www.tisi-fr.com/board/images/collapse.png)
