In-Brief: Telegram Vulnerability, Malware in Nuclear Plant, Anti-Tor Malware and Hotpatching Exploit

Clickjacking Vulnerability in Telegram Web Client
The official Telegram web-client that allows its users to access messenger account over desktop’s web browser is vulnerable to clickjacking web application vulnerability.

Egyptian security researcher Mohamed A. Baset told The Hacker News about a flaw in Telegram that could allow an attacker to change sensitive information of a Telegram user,

Telegram — Secret Messaging app — Shuts Down 78 ISIS Channels

The terrorist groups affiliated with the Islamic State have an extensive presence not only on social media accounts but also on the popular end-to-end encrypted messaging app Telegram through which they communicate with their followers and spread terror propaganda materials.
Telegram has always been terrorist's favorite, but ISIS had been using the app since October, when Telegram introduced an

Telegram Messenger Offers Large File Sharing up to 1.5GB while you Chat

In spite of all the things smartphones can do, messaging remains one of the most popular activities. Popular messaging apps like WhatsApp, Viber, WeChat support text messages, voice calls, photo & video sharing features, but there is no provision for sharing every file types on these amazing messengers.



But, some or the other day, we all got struck into an awkward situation where we have

Stiftung Warentest classifies WhatsApp as very critical

Stiftung Warentest has tested the data protection of WhatsApp and the other four alternatives of messenger service. The Swiss App Threema is the only one of the four messengers stood and fulfilled the requirements of the tester and stood alone. The independent consumer organization Stiftung Warentest has tested the Instant Messenger WhatsApp and four other alternative instant messengers.

The results give some unexpected results. Only the app Threema evaluate by the tester as non-critical where as WhatsApp itself is classified as very critical one in data protection, as well as the BlackBerry Messenger and Line also categorize as very critical and the same for the Telegram. According to Stiftung Warentest; they have checked the messenger in the Android and iOS versions of the Messenger, and they checked whether the apps encrypt user data and what information they transmit to whom.

“The assessment therefore refers exclusively to the Privacy Policy, writes the consumer organization. In other words, the usability of the Messenger has played no part in the tests. In addition to pure data transmission, the tester interested in the conditions of the actual app, transparency or openness source with respect to the transmission protocol and the availability and cost of apps. When the top rated app Threema welcome the tester that the Android version completely renounce the transmission of user data. In addition, the apps for iOS and Android saved the address book entries only under a pseudonym.

However one complaint is there are that Threema is not open source software. Therefore, a complete analysis according to Stiftung Warentest has not been possible. However, the same applies for all other tested apps. Even in the partly open source Telegram was not possible a full review of the transfer. The fact that data regarding the telegram sent unencrypted, but was ruled out, writes the consumer organization. The Messenger WhatsApp was described by the critics as very critical, unsurprisingly. The app was noticed in recent months repeatedly by security flaws.

According to Stiftung Warentest the Android version itself sends unencrypted data that the user enters including interview content might be. The tester feared that by many of the user data of WhatsApp transfer to the servers of Facebook. From the terms of the app, it is apparent that "the users data can be passed on to the new owner, i.e. Facebook.

 Facebook had announced the purchase of WhatsApp last Thursday. The other two Messenger, Line, and BlackBerry Messenger, were mentioned as critical by the consumer organization with respect to the data protection. The Android app of line sends the serial number IMEI of the device unencrypted to third parties further criticized by the tester. Blackberry on the other hand could create accurate personality profiles even with the data of its users.