- WhatsApp has patched a severe vulnerability that put users’ chats and other sensitive data at the risk of exposure.
- The vulnerability was disclosed by security firm Check Point Research in November last year.
- WhatsApp patched it three months later, and claims that there is evidence that it had been exploited.
Popular messaging service WhatsApp has patched a severe vulnerability in its app that could have allowed malicious third-parties to access sensitive user data, including your private messages.
The vulnerability was first
flagged by security firm Check Point Research, which alerted the Facebook-owned messaging service back in November last year. WhatsApp took three months to patch the security hole, with the roll out of WhatsApp v2.21.1.13 for Android.
WhatsApp claims that there is no evidence that the vulnerability was abused.
Transform talent with learning that worksCapability development is critical for businesses who want to push the envelope of innovation.Discover how business leaders are strategizing around building talent capabilities and empowering employee transformation.Know More What is this vulnerability and how could it expose WhatsApp messages?
The vulnerability, known as “Out-of-Bounds read-write vulnerability”, was discovered by Check Point Research.
“Once we discovered the security vulnerability, we quickly reported our findings to WhatsApp, who was cooperative and collaborative in issuing a fix,” said Oded Vanunu, Head of Products Vulnerabilities Research at Check Point.
“This report involves multiple steps a user would have needed to take and we have no reason to believe users would have been impacted by this bug. That said, even the most complex scenarios researchers identify can help increase security for users,” WhatsApp said in a statement.
Hackers could potentially exploit it by sending a malicious image file to you, and then asking you to send it back to them by applying an image filter in WhatsApp. This would trigger the vulnerability, allowing the hacker to exploit it and gain access to your WhatsApp messages and previously sent images and videos.
While the potential exposure itself is highly sensitive and concerning, it involves using a complex and elaborate set of steps to exploit the vulnerability.
How to prevent being exploited by these vulnerabilities
One of the best ways to avoid being exploited by hackers is to keep your apps and operating system up to date. Software updates usually consist of bug and security fixes, so it is important that you keep your devices and apps up to date.
Further, avoid interacting with strangers and people you don’t trust, especially when it involves sending attachments like documents, files, images or videos. These are some of the most common vectors used by hackers to exploit security vulnerabilities to gain access to your data.
SEE ALSO:
Here’s how to fix Wi-Fi connection issues in Windows laptop
It’s been crazy following updates on Twitter — here’s all that happened in a week
Apple hit with antitrust case in India alleging its 30% commission is unfair for customers and app developers
Next Story
Saudi Arabia wants China to help fund its struggling $500 billion Neom megaproject. Investors may not be too excited.
I spent $2,000 for 7 nights in a 179-square-foot room on one of the world's largest cruise ships. Take a look inside my cabin.
One of the world's only 5-star airlines seems to be considering asking business-class passengers to bring their own cutlery
Experts warn of rising temperatures in Bengaluru as Phase 2 of Lok Sabha elections draws near
Axis Bank posts net profit of ₹7,129 cr in March quarter
7 Best tourist places to visit in Rishikesh in 2024
From underdog to Bill Gates-sponsored superfood: Have millets finally managed to make a comeback?
7 Things to do on your next trip to Rishikesh
