WhatsApp Says Two Obsolete Software Bugs Fixed After CERT-in Warned User Data at Risk

WhatsApp said Monday it fixed two bugs that existed in its outdated software and had no reason to believe that “these vulnerabilities have never been exploited.” The official statement came in the wake of a recent advisory issued by CERT-In, India’s cybersecurity agency, which warned WhatsApp users of certain vulnerabilities in the app that could lead to the breach. sensitive information.

“We regularly work with security researchers to improve the many ways WhatsApp protects people’s messages. The WhatsApp spokesperson told PTI in a statement.

The spokesperson added that WhatsApp “remains safe and secure, and end-to-end encryption continues to work as intended to protect people’s messages.”

A “high” severity notice issued on Saturday by CERT-In, or the Indian Computer Emergency Response Team, said the vulnerability had been detected in software with “WhatsApp and WhatsApp Business. for Android before v2.21.4 .18 and WhatsApp and WhatsApp Business for iOS before v2.21.32 “.

“Multiple vulnerabilities have been reported in WhatsApp applications that could allow a remote attacker to execute arbitrary code or access sensitive information on a targeted system,” the advisory said. The advisory recommended that users update their devices to the latest version of WhatsApp from the Google Play Store or the iOS App Store to counter the vulnerability threat.

CERT-In is the federal tech arm to fight cyber attacks and protect Indian cyberspace.

Is WhatsApp’s new privacy policy the end of your privacy? We discussed this on Orbital, the Gadgets 360 podcast. Orbital is available on Apple Podcasts, Google Podcasts, Spotify, and wherever you get your podcasts.