Threat Actors Allegedly Selling WhatsApp Crash Exploit on Hacking Forums

In Cybersecurity News - Original News Source is cybersecuritynews.com by Blog Writer

Threat Actors WhatsApp Crash Exploit Claim on Hacking Forums (Source: Darkweb Informer)

A recent discovery on underground hacking forums has raised alarms about a new exploit targeting the popular messaging application, WhatsApp.

Threat intelligence platforms have identified a threat actor allegedly offering a script designed to crash the application across multiple operating systems.

This development highlights the ongoing efforts of malicious actors to identify and exploit vulnerabilities in widely used communication platforms.

The threat actor is asking for a relatively low price of $30 for this exploit, making it accessible to a wide range of potential buyers, including those with limited technical skills.

According to information shared by threat intelligence source Dark Web Informer, a malicious script is currently being advertised for sale on a dark web hacking forum.

The advertisement claims that the script can cause significant disruptions to the normal functioning of WhatsApp on various devices.

Cross-Platform Disruption Claims

The exploit reportedly targets both major mobile operating systems. The seller alleges that the script can cause the WhatsApp application to crash entirely on Android devices.

For iOS users, the exploit is claimed to not only cause the application to crash but also specifically freeze group chats, rendering that feature unusable.

This cross-platform capability increases the exploit’s potential impact, as it can affect a larger portion of WhatsApp’s massive user base.

Beyond simply crashing the application, the advertisement lists several other disruptive features included in the $30 package.

The script allegedly includes capabilities for call and video call bombing, which involves overwhelming a target user with a rapid succession of incoming calls, rendering their device virtually unusable during the attack.

Additionally, the exploit is said to feature pair spam capabilities. However, the exact mechanism of this specific function was not fully detailed in the advertisement.

The exploit requires minimal operational setup, significantly lowering the barrier for potential attackers, according to a post on X by threat intelligence source Dark Web Informer.

The seller claims that the script can be executed via Termux, a terminal emulator and Linux environment app for Android.

This means the attack can be launched directly from a mobile device without the need for a Virtual Private Server or complex infrastructure.

The attacker only needs a virtual phone number to run the script, adding a layer of anonymity to the disruptive activity.

While the exact technical details of the vulnerability being exploited remain unclear, the availability of such a tool on the dark web is a concerning development.

Users are advised to ensure their WhatsApp applications are always updated to the latest version, as developers frequently release patches to address newly discovered security flaws and improve application stability.

Security teams will continue to monitor these forums to analyze emerging threats and provide timely warnings to the user community.

Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.