After the cybersecurity agency in India alerted WhatsApp users against certain vulnerabilities detected in the popular instant messaging app that could compromise with sensitive information, the company, in a reply said that they have addressed two bugs that existed on outdated software.

COMMERCIAL BREAK
SCROLL TO CONTINUE READING

Earlier, A "high" severity rating advisory issued by the CERT-In or the Indian Computer Emergency Response Team said the vulnerability has been detected in software that has "WhatsApp and WhatsApp Business for Android prior to v2.21.4.18 and WhatsApp and WhatsApp Business for iOS prior to v2.21.32," the Zee Media Bureau reported.

WATCH | Click on Zee Business Live TV Streaming Below:

The CERT-In is the national technology arm to combat cyberattacks and guard Indian cyberspace. "Multiple vulnerabilities have been reported in WhatsApp applications which could allow a remote attacker to execute arbitrary code or access sensitive information on a targeted system," the advisory said.

Describing the risk in detail, it said that these vulnerabilities "exist in WhatsApp applications due to a cache configuration issue and missing bounds check within the audio decoding pipeline. Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code or access sensitive information on a targeted system."

The advisory added that users of the app should update the latest version of WhatsApp from the Google Play Store or iOS App Store to counter the vulnerability threat.

After this development, a WhatsApp spokesperson told Zee Business: “We regularly work with security researchers to improve the numerous ways WhatsApp protects people’s messages. As is typical of software products, we’ve addressed two bugs that existed on outdated software, and we have no reason to believe that they were ever abused.:

"WhatsApp remains safe and secure, and end-to-end encryption continues to work as intended to protect people’s messages.” a WhatsApp spokesperson further added.