MILLIONS of WhatsApp users have been given a worrying alert to ‘check settings immediately’ or they will risk their texts being stolen.
This will affect users who use the instant messaging service on their computers.
5
5
If you use an older version of WhatsApp on a Windows PC, then this news might come in handy.
Users will need to update the platform, otherwise personal data might be at risk of being stolen.
It was confirmed that a vulnerability has been found within the global chat service that could allow cyber crooks to execute something called an arbitrary code.
The nasty attack from scammers is hidden within seemingly harmless attachments.
If an arbitrary code attack succeeds, hackers may gain unauthorised access to details and information.
In particularly bad cases and worst case scenarios, they may even gain full control of devices.
According to The Mirror, WhatsApp explained: “A spoofing issue in WhatsApp for Windows prior to version 2.2450.6 displayed attachments according to their MIME type but selected the file opening handler based on the attachment’s filename extension.
“A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening the attachment inside WhatsApp.”
Although a glitch in the app has been fixed, the app has warned that it is imperative that Windows users who send messages via the service update their software.
It has warned that people need to make sure they have the very latest version of the app.
Once they have installed the latest edition with the new patch, their files and data will be safe.
Adam Pilton is a Senior Cybersecurity Consultant at CyberSmart and he stressed that only a select number of users are at risk.
He explained: “It’s really important to stress that this WhatsApp vulnerability impacts Windows desktop users.
“Most people will be part of a WhatsApp group where it is common for images to be shared and this is where this vulnerability becomes dangerous.
How to protect yourself from scams
BY keeping these tips in mind, you can avoid getting caught up in a scam:
- Firstly, remember that if something seems too good to be true, it normally is.
- Check brands are “verified” on Facebook and Twitter pages – this means the company will have a blue tick on its profile.
- Look for grammatical and spelling errors; fraudsters are notoriously bad at writing proper English. If you receive a message from a “friend” informing you of a freebie, consider whether it’s written in your friend’s normal style.
- If you’re invited to click on a URL, hover over the link to see the address it will take you to – does it look genuine?
- To be on the really safe side, don’t click on unsolicited links in messages, even if they appear to come from a trusted contact.
- Be careful when opening email attachments too. Fraudsters are increasingly attaching files, usually PDFs or spreadsheets, which contain dangerous malware.
- If you receive a suspicious message then report it to the company, block the sender and delete it.
“Because if a cyber criminal was able to share this image either in your group or with someone you trust who then goes on to share it in your group, anybody in that group could unknowingly execute the malicious code associated with the shared image.
“Cyber criminals will continue to exploit vulnerabilities within the software we use and the software providers will continue to provide updates or patches that protect us against the attacks that cyber criminals use. “
He added: “This is why vulnerability management AKA applying the updates that software providers issue, is so important!”
5
5
5
