Owners of Android smartphones are at risk of being hacked remotely.
The peculiarities of the exchange of personal data between clients in versions prior to 184.108.40.206 of WhatsApp for Android can give hackers the ability to remotely access correspondence or even interfere in dialogues. This vulnerability was reported on the website of the Census IT Security Works.
“Census revealed that versions of WhatsApp for Android prior to 220.127.116.11 allowed third-party applications to access WhatsApp TLS 1.2 cryptographic material as it was stored in ‘external application-specific storage’. In Android 9 and previous versions of Android, the material is available for any third-party application that has permission READ_EXTERNAL_STORAGE or WRITE_EXTERNAL_STORAGE, ”the company said.
Census recommended that all users of the messenger on Android phones update the app to version 18.104.22.168 or higher. The specialists emphasized that the discovered vulnerability is a serious problem from the point of view of data security.
25 Scammers invented a scam disguised as WhatsApp policy
The cybercriminals took advantage of the change in WhatsApp’s policy and began sending emails to users informing them that the messenger could allegedly become paid. This was reported by RIA Novosti.
Users, mostly retirees, receive messages that WhatsApp is supposedly paid from May 15th. Those wishing to avoid this are offered to forward this information to 10 contacts. The cost of one SMS is 0.01 euros.
“This way we will see that you are an active user and your logo will turn blue and remain free. Otherwise, WhatsApp will activate the account, ”the message says.