WhatsApp users urged to quickly update app over security flaws: SingCert

SINGAPORE — WhatsApp users are urged to download the latest version of the application immediately due to two security flaws that allow hackers to gain control of the app, said the Singapore Computer Emergency Response Team (SingCert) on Wednesday (28 September).

The government unit overseeing cybersecurity incidents said the flaws impact certain WhatsApp versions for iOS and Android users. Currently, there are no reports of any exploitation of the flaws, SingCert said.

The alert comes after WhatsApp posted an advisory on the flaws on its website.

One flaw affects the WhatsApp video call handler component, allowing a hacker to exploit a vulnerability during a video call to targeted users, and take full control of their app. The affection versions are WhatsApp for iOS and Android prior to v2.22.16.12 and WhatsApp Business for iOS and Android prior to v2.22.16.12.

The other flaw affects the WhatsApp video file handler component, allowing a hacker to exploit the vulnerability by sending a specially-crafted video file to targeted users, and convincing them to play it. The affected versions are WhatsApp for Android prior to v2.22.16.2 and WhatsApp for iOS v2.22.15.9.

WhatsApp users are encouraged to enable automatic updates, if available, in iOS App Store and Android Play Store, said SingCert.

Do you have a story tip? Email: sgnews.tips@yahooinc.com.

You can also follow us on Facebook, Instagram, TikTok and Twitter. Also check out our Southeast Asia, Food, and Gaming channels on YouTube.