- Hackers can steal and alter posts on Facebook
- Unethical hackers can also extract location data from Instagram
- Threat actors can gain administrative control over the mobile apps
Check Point Research on Thursday said it found the latest versions of some of the most famous apps in the world on Google’s Play Store, including Facebook and Instagram, to have vulnerabilities that were believed to have been patched earlier. The research shows that threat actors can still execute code on the latest versions of mobile applications on Play Store, despite the updates those mobile apps have pushed to people.
In short, threat actors can gain administrative control over the mobile applications studied by Check Point Research.
Theoretically, hackers can steal and alter posts on Facebook, extract location data from Instagram and read SMS messages in WeChat, said the research.
In a month-long study, Check Point Research cross-examined the latest versions of these high-profile mobile for three known remote control execution (RCE) vulnerabilities dating from 2014, 2015 and 2016.