WhatsApp is strongly encouraging its users to update to the very latest version of the app after discovering a vulnerability that allowed spyware to be injected into a user’s phone through the app’s phone call function. WhatsApp said that the vulnerability was discovered this month, and that they have responded quickly to address the security issue.
An application update was published on Monday, and WhatsApp is encouraging users to upgrade as soon as possible as a precaution.
The Financial Times first reported the vulnerability, and alleged that the spyware was developed by the Israeli cyber intelligence company NSO Group.
The attacker calls the user and infects the call with injected code. According to the report, it didn’t matter if the call was answered or not. Logs of the incoming calls were often erased.
Best to ensure your WhatsApp application is up-to-date, and whilst you’re at it – ensure ALL of your mobile apps, and your mobile device operating system are up-to-date too.