Skip to main content
  1. Home
  2. Mobile
  3. News

WhatsApp flaw could have let hackers take control of a phone via an MP4 file

Christian de Looper
By

Have you received a strange MP4 file on WhatsApp recently? It’s probably best to avoid downloading it — at least until you update to the latest version. WhatsApp recently fixed a vulnerability that could have allowed hackers to send a specially coded MP4 file, and then remotely take control of a phone and access the messages and files stored on that device.

The flaw is known as CVE-2019-11931, and it affected Android devices with WhatsApp versions before 2.19.274, and iPhones with WhatsApp versions before 2.19.100. Currently, there doesn’t seem to be any indication that the flaw was actually exploited. Facebook, which owns WhatsApp, says the issue was discovered internally — not through any known attacks or a third-party security researcher.

Recommended Videos

“WhatsApp is constantly working to improve the security of our service. We make public reports on potential issues we have fixed consistent with industry best practices,” said a Facebook spokesperson in a statement to The Hacker News. “In this instance, there is no reason to believe that users were impacted.”

Related

There isn’t much extra information about the vulnerability or how it works, but as long as users update to the latest version of WhatsApp, they shouldn’t have any issues.

Recently, WhatsApp sued Israeli mobile surveillance company NSO Group over an exploit that was used to attack hundreds of different phones. These included the likes of human rights defenders, journalists, and more. This particular attack disguised malicious code as call settings, and allowed the attackers to deliver code to phones as if it came from WhatsApp’s servers. Once the initial code was delivered, attackers were able to inject more malicious code into a device’s memory. In total, 1,400 devices were affected.

In general, it’s recommended to ensure that all your apps are kept up to date, so as to make sure that any security issues are patched. There are other things you can do to ensure that your phone remains uncompromised. For example, if you have an Android phone, you can make sure to only download apps from the Google Play Store. It’s also important to always make sure that your version of Android or iOS is the latest version — especially considering the fact that security vulnerabilities often exist in the operating system.

Editors' Recommendations

Topics
Christian de Looper
Christian de Looper
Contributor
Christian’s interest in technology began as a child in Australia, when he stumbled upon a computer at a garage sale that he…
WhatsApp is copying two of Zoom’s best video-calling features
Call Links by WhatsApp

WhatsApp is taking a couple of pages out of Zoom's playbook. The Meta-owned company is rolling out the Call Links feature, making it easier for people to join audio and video calls with just one tap on the phone screen.

Mark Zuckerberg announced the new feature in a Facebook post on Monday morning. Starting this week, WhatsApp users will be able to tap the Call Links option within the Calls tab and create a link for audio or video calls to send to their friends and family, who will then tap on the link and join the call from there.

Read more
WhatsApp just upgraded its emoji reactions and I want them now
Close up of WhatsApp icon as seen on a smartphone display. Credits: WhatsApp official.

WhatsApp will now allow users to react to messages with any emoji, in an expansion of its reaction feature that came out last year. It's coming to iOS and Android over the coming weeks, and it brings more personalization to one of the world's most used messaging apps.

Once you get the update, the emoji reactions will work as they do now, with a long press bringing up the basic six options with the incision of a new plus button. Pressing that plus icon will show you the new expanded set of emojis, and you'll be able to add whatever emoji you want. This includes skin tone variations, family types, and more.

Read more
You can finally move your WhatsApp chats from Android to iOS
WhatsApp and Telegram app icons.

Moving WhatsApp chats from Android to iOS has been a painful task for years. But not anymore, as Apple and WhatsApp have made the process a whole lot easier. Starting today, Apple is adding a feature that allows you to move chats between the two platforms. The feature is a part of Apple’s existing “Move to iOS” Android application. It’s worth noting that the feature is currently available for beta users only, so non-beta users might have to wait for a week or two as it's rolled out in phases.

This is a big move since 2 million people use WhatsApp and, until now, there wasn’t an official method to move conversations between Android and iOS. There have been third-party solutions here and there, but nothing officially backed by Apple or WhatsApp. With the feature becoming available, users will be able to move their chats swiftly from Android to iOS.

Read more