-
Notifications
You must be signed in to change notification settings - Fork 0
Home
The Google Message Android Application is installed on most Android Smartphones.This application comprises a feature that enables us to access our messages on the web or the computer by scanning the QR Code. (https://messages.google.com/web)
But the hacker is exploiting this feature to get the OTP (One Time Password) from the user.
Suppose The Hacker Open the Google Message Web (https://messages.google.com/web) in his device and the hacker needs the victim's mobile phone only one time to scan the qr code from Message Android Application. If the hacker using Social Engineering somehow manages to scan the QR or make the victim scan the QR then the hacker will have access to Message application. And the Hacker will send the Password Reset OTP of Many Services (Ex. Facebook, Whatsapp, etc.) on the victim number and hacker receives on Google Message Web and the hacker enters the OTP and reset the password.