IPhone users, if you have not yet updated WhatsApp to its latest version, do so as soon as possible. «The Indian Computer Emergency Response Team» has detected a series of vulnerabilities in the messaging application owned by Facebook that allow remote access to terminals, bypassing security restrictions and even executing code on the target computer.

Keeping WhatsApp updated is the best way to stay safe.

As pointed out from the CERT-In website, the importance of this problem has been confirmed as “high”, and it affects WhatsApp and WhatsApp Business in their versions prior to 2.20.111.

The first vulnerability, called “Improper Access Control Vulnerability” has been detected in the “lock screen” feature of WhatsApp, where an attacker can run an exploit using Siri to communicate even after locking the terminal. A successful attack in this way can bypass the app’s security restrictions.

The second vulnerability detected, titled in this case “Use-After-Free-Vulnerability”, has been found in a registry error in the WhatsApp and WhatsApp Business libraries, due to a bug known as “error after free use”.

An attacker can exploit this vulnerability to send animated stickers to a user target while making a video call, resulting in multiple events happening at the same time in sequence.

An effective attack in this way can lead to memory corruption, denial of service conditions, and remote code execution., as reported.

Know more: https://www.SamaGame.es/2020/11/06/algunos-cargadores-inalambricos-no-estan-funcionando-con-los-iphone-12/

How to prevent all this from happening? Updating the application. If you are not sure whether or not you have the latest version of WhatsApp on your iPhone, go to the App Store, search for the app and make sure there is no pending update. If you have it, don’t hesitate to do it, otherwise it could lead to unnecessary exposure to these vulnerabilities.

Categorized in: