Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore three critical vulnerabilities discovered in WhatsApp across iOS, Android, and MacOS platforms in this 54-minute conference talk from Recon 2025. Dive deep into security flaws affecting both end-to-end encrypted messaging and calling features, including a URL validation vulnerability on iOS, an XMPP parsing bug that leads to native vulnerabilities in PJSIP across all platforms, and a logic issue enabling unauthorized video streams during group voice chats on Android. Learn about WhatsApp's underlying architecture, cross-platform compilation challenges, and native XMPP signaling mechanisms while gaining insights into effective reverse engineering strategies and practical bug-hunting methodologies for complex mobile applications. Discover how security researchers identify and exploit vulnerabilities in one of the world's most widely-used messaging platforms through detailed technical analysis and real-world examples.
