NCSC advice following WhatsApp vulnerability
The National Cyber Security Centre (NCSC) has issued advice for users of WhatsApp following yesterday's vulnerability announcement.
What has happened?
WhatsApp yesterday announced a vulnerability that could have allowed users’ phones to be compromised. You can read WhatsApp’s security advisory here.
The company has reportedly said that a small number of accounts have been affected and has told its users to update their apps using standard updates from the app store as a precaution.
The National Cyber Security Centre always recommends that you protect your device by installing updates as soon as they become available. They contain vital security updates to help protect your laptop, smartphone or tablet.
It’s important to apply these updates quickly, to make it as hard as possible for attackers to get in. The NCSC also recommends that you switch on automatic updates.
What phones have been affected?
WhatsApp have said that it was a targeted campaign and that “dozens” of accounts could have been affected.
The affected versions of the app relate to;
- WhatsApp for iOS prior to v2.19.51
- WhatsApp for Tizen prior to v2.18.15
- WhatsApp for Android prior to v2.19.134
- WhatsApp Business for iOS prior to v2.19.51
- WhatsApp Business for Android prior to v2.19.44
- WhatsApp for Windows Phone prior to v2.18.348
How to update WhatsApp
- Visit the play store, click on menu and choose ‘My apps and games’. Tap update next to the WhatsApp messenger.
- Visit the app store, click updates and refresh. Tap update next to the WhatsApp messenger
Windows Phone 8.1
- Visit the store and select menu. Click on ‘My apps’ and select WhatsApp to update.
Windows Phone 10
- Visit the Microsoft store and click on ‘Menu’. Select ‘My Library’ and tap ‘Update’ next to WhatsApp.
The NCSC has also published top tips for staying secure online which includes further advice around updating software and apps.
ActionFraud is the UK’s national fraud and cyber crime reporting centre.
We provide a central point of contact for information about fraud and cyber crime.
The easiest way to report fraud and cyber crime is by using our online reporting tool.Report
Latest News from
Watch out for fake emails claiming to be Action Fraud08/11/2019 13:10:00
Action Fraud are aware of fraudsters claiming to be from Action Fraud contacting people in order to steal personal and financial details.
Action Fraud urge people to be on the lookout for “too good to be true” flight deals01/11/2019 16:15:00
Flights to Africa and the Indian subcontinent are among the destinations thought to be targeted by fraudsters.
Action Fraud warns of Amazon Prime scam that has cost victims over £400,000 in two months25/10/2019 13:20:00
Criminals are targeting members of the public with automated calls stating that the recipient has been charged for an Amazon Prime subscription.
National Courier Fraud Practitioners Day16/10/2019 14:33:00
Police officers and staff from across the country are set to attend a special national Courier Fraud Practitioners Day, tomorrow (Thursday, 17 October).
The easy way to stop your online accounts getting hacked02/10/2019 10:20:00
Two-factor authentication (2FA) can help protect your online accounts, even if your password is stolen!
Fraudster sentenced after funding luxury holidays through £50k smishing scam01/10/2019 13:20:00
A fraudster from London who went on luxury holidays abroad after harvesting details from thousands of bank customers has been sentenced to two years and nine months in prison.
Banking industry stops £4.5 million of fraud a day in first half of 201927/09/2019 10:20:00
The finance industry prevented £820 million of unauthorised fraud in the first half of 2019.
Thomas Cook "refund" scams on the rise26/09/2019 15:20:00
We are aware of reports on social media that criminals are using the Thomas Cook liquidation as an opportunity to lure victims into financial scams.