WhatsApp is the most famous and widely used messaging application around the world.
Sending messages, documents, and media was never this impressive and easy as provided by WhatsApp. Recently WhatsApp was detected with a vulnerability that allows the hackers to install Spywares and steal messages and files stored in the device. Vulnerability found the culprit for this is CVE-2019-11931, which is a stack-based buffer overflow issue that resided in elementary versions of WhatsApp MP4 file. This vulnerability leads to denial-of-service or remote code execution attacks.
To initiate the attack, hackers are forwarding malicious MP4 files to target devices that install a malicious backdoor on the device. The apps affected by this vulnerability include Android versions before 2.19.274, iOS versions before 2.19.100, Enterprise client versions before 2.25.3, Windows phone versions before and including 2.18.368, business for android versions before 2.19.104, business for iOS versions before 2.19.100, etc.
WhatsApp was recently detected with VoIP call vulnerability which leads to install Pegasus spyware on nearly 1400 targeted android and iOS devices. NPAV recommends staying alert from all unknown MP4 files that are being shared over WhatsApp. Downloading any document or media file that comes from an unknown source can paint a target on your device.
Use NPAV and join us on a mission to secure the cyber world.