But if you have turned on backups, the easiest way to prevent this attack is doing a clean install of Whats App and turning off backup when prompted during the setup.
Bosschert published a proof of concept on his blog and explained the workings in detail.
Although there are a lot of technical details, the gist is that it takes basic app-development skills to create an app that could steal your Whats App messages.
This is possible because Whats App stores backed-up messages on your Android phone’s SD card and any app that gains permission to read your SD card could technically siphon off this backup without you knowing.
But we can simply decrypt this database using a simple python script.
Thought your Whats App messages cannot be accessed remotely?
Security consultant Bas Bosschert said that it was possible for others to access users’ private Whats App chats through downloaded Android apps.Bosschert insists his method works even on the latest Whats App update for Android which adds privacy settings.