Some older versions of WhatsApp have a critical security vulnerability, so patch now

Crooks can run malicious code remotely on WhatsApp

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

WhatsApphas patched a major security vulnerability that allowed threat actors to run malicious code on target endpoints remotely.

As explained in its official security advisory, the flaw is an integer overflow vulnerability, discovered in WhatsApp forAndroidprior tov2.22.16.12, Business for Android prior to v2.22.16.12, iOS prior to v2.22.16.12, and Business for iOS prior to v2.22.16.12.

The vulnerability is now tracked as CVE-2022-36934 and carries a vulnerability score of 9.8, putting it in the “critical” territory.

Important updates

Important updates

As explained byThe Verge, the flaw allows threat actors to run malicious code on the target device, remotely, by sending a specially crafted video call. The malicious code could result in the device getting all kinds of malware installed, or having sensitive data andidentities stolen.

Users whose mobile apps don’t update automatically are advised to update manually as soon as possible.

As part of the same update, WhatsApp fixed another flaw, similar in its potential and method of execution. Tracked as CVE-2022-27492, it would allow threat actors to run malicious code by sending a specially crafted video file. Unlike the first flaw, this one has a lower severity score - 7.8, but is still deemed “critical”.

WhatsApp could soon let you set a voice message as your status>WhatsApp just made a big change that’ll make it worth using in Windows 11>These are the best antivirus software picks around

While security upgrades are always a good reason to update the app, WhatsApp has also recently made some significant usability upgrades.

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

In August 2022, the company announced a new version of its Windows app, which no longer required to be connected to the smartphone and can work completely standalone.

Previously, the WhatsApp client forWindows 11(and 10) was a web-based (Electron) effort, but the new app – which has moved from beta to its full release, is a native client, and what’s more, it works independently of your smartphone.

Via:The Verge

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

A new form of macOS malware is being used by devious North Korean hackers

Scammers are using fake copyright infringement claims to hack businesses

We might have our first look at the long-rumored Samsung tri-fold