The Indian Computer Emergency Response Team (CERT-In), operating under the Ministry of Electronics and Information Technology, has issued a high-severity warning for WhatsApp users, cautioning them about a vulnerability that could lead to potential cyberattacks.
According to CERT-In, a bug has been detected in older versions of the WhatsApp desktop application (prior to version 2.2450.6), which could allow attackers to exploit the system by sending specially crafted attachments. The vulnerability stems from improper validation of file MIME types and extensions, making it difficult for WhatsApp to correctly identify certain files. This loophole may allow malicious files to appear legitimate, enabling hackers to inject malware and gain unauthorized access to the user’s device.
ALSO READ: Jagan Posed the Biggest Threat to Andhra Society: Former Intelligence Chief AB Venkateswara Rao
The advisory highlights that the flaw could be exploited to compromise personal data and install harmful software on desktop or laptop systems running outdated versions of WhatsApp.
In response, CERT-In has urged users to update their WhatsApp desktop application to the latest version immediately. Users are also advised to avoid clicking on suspicious links and refrain from replying to unknown numbers. Regularly updating the application is essential to maintaining security, the agency emphasized.