uniladtech homepage
  • News
    • Tech News
    • AI
  • Gadgets
    • Apple
    • iPhone
  • Gaming
    • Playstation
    • Xbox
  • Science
    • News
    • Space
  • Streaming
    • Netflix
  • Vehicles
    • Car News
  • Social Media
    • WhatsApp
    • YouTube
  • Advertise
  • Terms
  • Privacy & Cookies
  • LADbible Group
  • LADbible
  • UNILAD
  • SPORTbible
  • GAMINGbible
  • Tyla
  • FOODbible
  • License Our Content
  • About Us & Contact
  • Jobs
  • Latest
  • Archive
  • Topics A-Z
  • Authors
Facebook
Instagram
X
TikTok
Snapchat
WhatsApp
Submit Your Content
Security experts issue urgent WhatsApp update over new ‘spoofing’ hack
Home>Social Media>WhatsApp
Published 09:43 11 Apr 2025 GMT+1

Security experts issue urgent WhatsApp update over new ‘spoofing’ hack

Those in group chats should be particularly vigilant

Rebekah Jordan

Rebekah Jordan

google discoverFollow us on Google Discover
Featured Image Credit: NurPhoto / Contributor via Getty
Whatsapp
Cybersecurity
Meta
Malware
Tech News

Advert

Advert

Advert

WhatsApp issues an urgent update over a major security flaw.

Only last month, WhatsApp users were advised to urgently update the app due to a glitch that allows their private photos to remain visible. The popular messaging app also announced earlier this week that some older smartphones will soon no longer be able to run WhatsApp due to changes in its compatibility.

Now, a newly discovered 'spoofing issue' reportedly allows cybercriminals to carry out an attack through a media attachment. According to an alert issued by WhatsApp’s parent company Meta, the software vulnerability means hackers can gain remote access to a user’s device through a shared image or file.

The software vulnerability means hackers can gain remote access to a user’s device through a shared file / Westend61 / Getty
The software vulnerability means hackers can gain remote access to a user’s device through a shared file / Westend61 / Getty

Advert

So far, it seems only the Windows Desktop version of WhatsApp is affected.

“A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening the attachment inside WhatsApp,” the security advisory stated.

Meta hasn’t confirmed if anyone has actually fallen victim to the attack yet. But, the flaw has led to security experts warning WhatsApp users to be cautious of any images they receive - this goes especially for group chats.

“Most people will be part of a WhatsApp group where it is common for images to be shared and this is where this vulnerability becomes dangerous,” said Adam Pilton, a senior cybersecurity consultant at CyberSmart. “If a cyber criminal was able to share this image either in your group or with someone you trust who then goes on to share it in your group, anybody in that group could unknowingly execute the malicious code associated with the shared image."

Meta hasn’t confirmed if anyone has fallen victim to the cyber attack / NurPhoto / Contributor / Getty
Meta hasn’t confirmed if anyone has fallen victim to the cyber attack / NurPhoto / Contributor / Getty

This bug was flagged through Meta’s bug bounty program, which rewards people for spotting security loopholes. Moreover, it's part of a worryingly rising trend of malware disguised as harmless attachments.

A recent report from cyber security firm SonicWall revealed that there was a large spike in this kind of sneaky malware in 2024.

SonicWall recorded 210,258 never-before-seen malware variants - which equates to around 637 threats every day.

“Cybercriminals are constantly developing new tactics, techniques, and procedures (TTPs) to exploit vulnerabilities and bypass security controls, and companies must be able to quickly adapt and respond to these threats,” added Spencer Starkey, an executive vice president at SonicWall. “Due to the speed at which new attacks are being created, they are more adaptive, and difficult to detect, which poses an additional challenge for cybersecurity professionals.”

Choose your content:

2 days ago
3 days ago
4 days ago
  • Oscar Wong / Getty
    2 days ago

    Terrifying 'silent' loophole hiding in Instagram's new AI feature that Meta just automatically switched on

    Amid growing concerns over Meta’s new AI feature, here’s what users need to know about opting out and managing how their content is used

    Social Media
  • Reckless Ben / YouTube
    3 days ago

    YouTuber Reckless Ben could face 15-year felony charge in explosive final Lego documentary

    The third and final part of Reckless Ben's LEGO documentary has been released

    Social Media
  • Bloomberg / Contributor via Getty
    4 days ago

    Browser's game-changing update lets viewers watch YouTube completely ad-free

    It boasts the ability to provide the 'full YouTube experience, minus the ads'

    Social Media
  • SOPA Images / Contributor / Getty
    4 days ago

    EU pushes last-minute vote that could allow tech giants to scan your WhatsApp chats

    This would allow tech firms to scan your messages for any harmful material

    Social Media
  • Cybersecurity experts warn WhatsApp 'nickname' update could leave users vulnerable to scams
  • WhatsApp axes rollout of major update after urging users to choose their usernames now
  • WhatsApp release new 'lockdown' mode amid latest security update
  • Millions of WhatsApp users urged to reserve username while there's still time