A security consultant has disclosed a security flaw in WhatsApp which can be exploited to gain access to the private chats of Android device owners. The WhatsApp database is a database file (msgstore.db) on the SD card. WhatsApp denied any responsibilities, according to the company the issue is related to the phone sustaining that anyway users are at risk downloading a malware or a dodgy app which might expose data on the microSD card. In newer versions of WhatsApp, the database file is encrypted and this implies that the attackers have to decrypt it to access userss private chats.”]
Source: https://securityaffairs.co/wordpress/23046/hacking/whatsapp-flaw-private-chats.html