A young Moroccan named "Ahmed Lakssais" (19 years old) managed to discover a vulnerability in the famous WhatsApp chat application for the iOS system, which runs Apple phones and tablets, this vulnerability enables reading WhatsApp messages and accessing the list of names and phone numbers even if the phone is protected by a password. Transferring the WhatsApp file to the Linux system on computers will enable anyone to access private messages and all the names and numbers on the phone, even if the phone is protected by a security code or password.

The WhatsApp application stores phone numbers and message data inside its files even if the user does not transfer this data from the phonebook to the WhatsApp directory, and here lies the loophole that allows when linking an iPhone to a Linux computer that then copies the WhatsApp application file installed on the phone to the desktop on the computer, and then the messages that have been stored can be opened and all phone numbers can be accessed through this file.

After discovering this vulnerability, "Ahmed Lexis" communicated with the protection team at WhatsApp, who thanked him for the vulnerability he found and for the cooperation he provided, adding that Apple is also interested in this vulnerability due to the infection of its iOS system with this defect and it must carry out security updates on its part as well.

This young man had previously discovered another vulnerability in the application of "Twitter" on iOS devices as well of an important risk, as the Twitter application was storing code on iOS devices, and this code can be copied and placed in another phone and thus enter the account from the second device without the need for a username and password.

Ahmed Lakssais, who is currently studying at the Computer Science Department at Al Akhawayn University in Ifrane, Morocco, is a permanent member of OWASP, which is responsible for programming open source applications to protect websites and has helped some Moroccan universities protect their systems.