WhatsApp is one of the most popular text messaging apps and services around, despite Facebook taking over the reins.
That was already bad news, but things have gone from bad to worse for WhatsApp users after a new report noted that it’s possible to compromise an iPhone or Android phone just by having someone download a malicious MP4 file via WhatsApp.
The file essentially triggers remote code execution and then a DDoS attack, allowing bad actors to deploy malware. What that malware then does is up to them, but it could theoretically keep tabs on what a user is doing and then feed it back to a third-party.
Facebook has identified that a “stack-based buffer overflow” can be triggered, saying that it only affects specific versions of the apps.
“A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Windows Phone versions before and including 2.18.368, Business for Android versions prior to 2.19.104, and Business for iOS versions prior to 2.19.100.”
As usual the best way to make sure that you aren’t impacted by this issue is to ensure you’re running the latest version of WhatsApp on all of your devices. If you aren’t, maybe it would be a good idea to be wary of any videos that appear in your chats.
(Source: GBHackers)
You may also like to check out:
- Download: iOS 13.2.3 IPSW Links, OTA Update Released For iPhone And iPad
- Download: iOS 13.3 Beta 2 IPSW Links, OTA Update File Along With iPadOS 13.3 Beta 2 Released
- Jailbreak iOS 13.2.2 Using Checkra1n On Mac, Here’s How [Tutorial]
- Download Checkra1n iOS 13 Jailbreak IPA For iOS 13.2.2 On Mac [0.9 beta]
- iOS 13.2.3 Jailbreak With Checkra1n Update Likely To Come Soon
- iOS 13 / 13.2.2 Jailbreak Tweaks Compatibility List For Checkra1n
- Fix Cydia Crashing On Checkra1n iOS 13 Jailbreak, Here’s How
- Gold iPhone 11 Pro Max: Case, Lightning Cable, Wireless Charger, Band, Speaker, More
- Red iPhone 11 Accessories: Case, Lightning Cable, Wireless Charger, Band, Speaker, Much More
- Yellow iPhone 11 Accessories: Case, Lightning Cable, Qi Wireless Charger, Band, Speaker, Much More
- Purple iPhone 11 Accessories: Case, Lightning Cable, Qi USB Charger, Band, Speaker, Much More
- Green iPhone 11 Accessories: Case, Lightning Cable, Qi USB Charger, Band, Speaker, Much More
- Midnight Green iPhone 11 Pro Max: Case, Lightning Cable, Wireless Charger, Band, Speaker, More
- Apple Watch ECG App Hack: Enable Outside US In Unsupported Country On Series 5 & 4 Without Jailbreak
You can follow us on Twitter, or Instagram, and even like our Facebook page to keep yourself updated on all the latest from Microsoft, Google, Apple, and the Web.