WHATSAPP users have been alerted to two major vulnerabilities that could expose them to cyber crooks.
According to hacking news website GBHackers, two bugs discovered by researchers could let attackers take control of people’s accounts.
WhatsApp has fixed the two “crítico” security threats, which affect both the Android and iOS versions of the chat app.
Contudo, if you’ve not updated to the latest version of the app, you are still vulnerable.
“Both vulnerabilities are marked under ‘critical’ severity … and were found by the WhatsApp internal security team,” GBHackers wrote.
They added that hackers could exploit the flaws to hack your device using a dodgy video file or when on a video call.
Once they’ve gained access to your phone, they could launch malware, steal sensitive data or even take control of the device.
WhatsApp confirmed that it had fixed the bugs in an alert on its website.
It named them CVE-2022-36934 and CVE-2022-27492.
Details on the vulnerabilities are scarce in order to not give too much information away to crooks before users have updated.
A SONY convidou os jogadores do PS5 para testar novos recursos em uma versão beta em fevereiro
Contudo, WhatsApp said that the exploitation of CVE-2022-36934 “could result in remote code execution in an established video call.”
CVE-2022-27492, por outro lado, “could have caused remote code execution when receiving a crafted video file.”
To protect yourself, make sure you’re using the latest version of WhatsApp.
To update your iPhone go to the Settings app and then press Em geral.
The next step is to select Software Update and your device should then meet the new requirements.
If you use an Android, open Settings and select About Phone.
Eu obviamente pensei sobre isso, mas eu tinha um trabalho a fazer.”
Then press Check for Updates and if an update is available, a button will appear which says Update.
After selecting Install Now, Reboot, ou Install System Software, you should be good to go.
Nós pagamos por suas histórias! Você tem uma história para The Sun Online Tech & Equipe de ciência? Envie-nos um e-mail para firstname.lastname@example.org