According to the latest update from WhatsApp's parent company Facebook, a newly disclosed vulnerability was recently discovered where hackers could access infected device simply by sending a malicious video file.
A bug discovered by a security researcher last month allowed attackers to use malicious GIF files to possibly access user content.
Enterprise Client versions prior to 2.25.3 and Windows Phone versions of WhatsApp including 2.18.368 and below are also impacted.
On Sunday, reports claimed that hackers exploited WhasApp's vulnerability to deploy the malware to user's device to steal their sensitive data.
The description of the new "buffer overflow vulnerability" is similar to the one received by CERT from WhatsApp during the Pegasus snooping case where an Israel-based spyware maker NSO Group was under the spotlight. The company has issued an advisory stating about a vulnerability that can trigger various kinds of attacks on Android and iOS devices. The victim will receive an MP4 media file which is maliciously crafted on WhatsApp from an unknown sender and this is where the "hacking" starts.
The vulnerability affects WhatsApp on all major platforms including Android, iOS and Windows.
As per the reports, WhatsApp's buffer overflow vulnerability could be exploited by a remote attacker.
When we achieved out for a response, a spokesperson for the organization mentioned, "WhatsApp is frequently working to strengthen the stability of our assistance". Right now to ensure the security of your data, the Android and iOS users can update WhatsApp from Google Play Store or App Store. We make public records on possible problems we have actually fixed constant with industry finest techniques.
India's nodal agency for responding to cyber security threats/incidents has a warning for WhatsApp users.
The whole issue is taking a political turn as the Indian government denied either purchasing or planning to purchase the infamous software in question. If exploited, the bug could result in the remote execution of code and was patched in WhatsApp version 2.19.244.
Updating to the latest version of WhatsApp, regardless of the edition that you are now running, should be enough to keep your device protected.