Action Fraud
Printable version

NCSC advice following WhatsApp vulnerability

The National Cyber Security Centre (NCSC) has issued advice for users of WhatsApp following yesterday's vulnerability announcement.

What has happened?

WhatsApp yesterday announced a vulnerability that could have allowed users’ phones to be compromised. You can read WhatsApp’s security advisory here.

The company has reportedly said that a small number of accounts have been affected and has told its users to update their apps using standard updates from the app store as a precaution.

The National Cyber Security Centre always recommends that you protect your device by installing updates as soon as they become available. They contain vital security updates to help protect your laptop, smartphone or tablet.

It’s important to apply these updates quickly, to make it as hard as possible for attackers to get in. The NCSC also recommends that you switch on automatic updates.

What phones have been affected?

WhatsApp have said that it was a targeted campaign and that “dozens” of accounts could have been affected.

The affected versions of the app relate to;

  • WhatsApp for iOS prior to v2.19.51
  • WhatsApp for Tizen prior to v2.18.15
  • WhatsApp for Android prior to v2.19.134
  • WhatsApp Business for iOS prior to v2.19.51
  • WhatsApp Business for Android prior to v2.19.44
  • WhatsApp for Windows Phone prior to v2.18.348

How to update WhatsApp

Android 

  • Visit the play store, click on menu and choose ‘My apps and games’. Tap update next to the WhatsApp messenger.

iPhone

  • Visit the app store, click updates and refresh. Tap update next to the WhatsApp messenger

Windows Phone 8.1

  • Visit the store and select menu. Click on ‘My apps’ and select WhatsApp to update.

Windows Phone 10

  • Visit the Microsoft store and click on ‘Menu’. Select ‘My Library’ and tap ‘Update’ next to WhatsApp.

The NCSC has also published top tips for staying secure online which includes further advice around updating software and apps.

 

Channel website: http://www.actionfraud.police.uk/

Original article link: https://www.actionfraud.police.uk/news/ncsc-advice-following-whatsapp-vulnerability

Share this article
Action Fraud
Action Fraud is not an emergency service dial 999 if you are in immediate danger

ActionFraud is the UK’s national fraud and cyber crime reporting centre.

We provide a central point of contact for information about fraud and cyber crime.
The easiest way to report fraud and cyber crime is by using our online reporting tool.
Report

Latest News from
Action Fraud

Latest Brief: Cloud Based Internet Security Designed for GDPR - Download Now