Logo

Defender of your Digital Freedom

Home > Digital Security Training > Critical security advisory: WhatsApp vulnerability
WhatsApp

Critical security advisory: WhatsApp vulnerability

May 14,2019 | 12:20 pm

WhatsApp has reported that a security vulnerability in the app was exploited to install the NSO Pegasus spyware in certain iPhones and Android phones. The spyware can be installed by calling a target device. Even if the call is missed, the device could still be infected. The Financial Times has reported that a log of the call could disappear from the device, leaving no trace that the device was called and infected if the user of the device missed the call. The spyware can retrieve your calls, messages and data, and activate your camera and microphone, among malicious activities.

WhatsApp has stated the the vulnerability has been fixed in a recent update to the app. We urge all our readers to upgrade the app on your phone as soon as possible. If you noticed an incoming call that later disappeared from your call log, we advise that you erase / reset your phone.

In general, we advise updating your device’s OS (such as iOS or Android) and apps as often as possible so that you have the latest security patches installed on your phone. We further advise purchasing your devices from only those manufacturers that have a reputation of keeping the OS updated for at least as long as you plan to use the device.

For more details regarding the security vulnerability in WhatsApp, please see https://techcrunch.com/2019/05/13/whatsapp-exploit-let-attackers-install-government-grade-spyware-on-phones/

For more information on keeping yourself safe and secure online, please visit https://security.sflc.in/

Digital Security Training at Amity Law School, Gwalior

On 20th Sept 2018, we conducted a Digital Security Training for Law Students at Amity Law School, Gwalior. We also ...

Digital Security Training at Amity University, Noida

On 13th Sept 2018, we conducted a Digital Security Training at Amity University, Noida for students from Computer Science Department, Amity ...

Digital Security Training at Noida Institute of Engineering and Technology

On 8th Sept 2018, we conducted a Digital Security Training at Noida Institute of Engineering and Technology (NIET), Noida, for students from Computer Science ...

Digital Security Training at Haiyya Camp, ‘Post. Don’t Rost’

Haiyya organised a Haiyya Camp, ‘Post. Don’t Rost’ on Sept 1st, 2018 to provide training on organizing skills to the participants so ...

Digital Security Trainings in Kerala

SFLC.in conducted four Digital Security Trainings at Kerala, including two full-day workshops for Master Trainers from KITE (Kerala Infrastructure and ...

Digital Security Training for Lawyers – May 26, 2018

We are glad to inform you that we are conducting a "Digital Security training for Lawyers" workshop on this Saturday ...

Digital Security Training at Mozilla’s 20th Anniversary Celebrations

On Saturday March 31, SFLC.in hosted an event organized by the Mozilla Delhi Community on the occasion of the 20th ...

Digital Security Training in Kochi

We live in an era where human activity is producing unprecedented amounts of digital data. The popular saying these days ...

Workshop on Secure Communication

SFLC.in is organising a workshop on “Secure Communication ” in association with Sukhbir Singh, TOR Developer, on Saturday, September 23, ...

Why Should We Use A Password Manager

Do you store passwords to your online accounts (Banks, Emails, Social Networking Sites etc) in the browser ? It is ...