Two dangerous vulnerabilities were discovered in the Android version of WhatsApp. Their exploitation allows you to remotely steal confidential information from your smartphone.
Due to vulnerabilities, hackers can execute malicious code on the device. The problem affects smartphones running all versions up to and including Android 9.
As the security experts explained, vulnerabilities in WhatsApp allow the hijacking of TLS protocol cryptographic data for TLS 1.3 and TLS 1.2 sessions. So hackers can carry out an attack that will lead to “compromise of WhatsApp communications, remote code execution on the victim's device and theft of the used Noise keys for end-to-end encryption.”
Attackers can send a specially crafted HTML file to the victim via WhatsApp. If you open it in a browser, the malicious code will be executed.
It is unclear whether the attackers exploited these vulnerabilities in real-world attacks. Users are advised to update WhatsApp to version 2.21.4.18.
Read also:
Scientists have named a habit that shortens life by 28 years
One American submarine was able to sink three Russian submarines
The expert explained why the Russian PAK DA bomber will not be supersonic
The doctor named the eating habits that can cause spikes in blood sugar
New World War II shooter is now available for free to everyone
