WhatsApp Bug Allowed Attackers to Access the Local File System

[silversurfer]

Content source

https://www.bleepingcomputer.com/news/security/whatsapp-bug-allowed-attackers-to-access-the-local-file-system/

Facebook patched a critical WhatsApp vulnerability that would have allowed potential attackers to read files from a user's local file system, on both macOS and Windows platforms.

"A vulnerability in WhatsApp Desktop when paired with WhatsApp for iPhone allows cross-site scripting and local file reading," Facebook's security advisory explains. "Exploiting the vulnerability requires the victim to click a link preview from a specially crafted text message."

All WhatsApp Desktop versions before v0.3.9309 are affected by this issue when paired with WhatsApp for iPhone versions prior to 2.20.10.

Blog | HUMAN Security

Check out the latest HUMAN Blogs for expert insights and industry expertise on digital threats.

www.perimeterx.com

 

[SeriousHoax]

Home - The Union Journal

The Union Journal News Read the latest headlines, stock market, news stories, and opinion from Politics, Entertainment, Life, Perspectives, and more.

theunionjournal.com

 

[[correlate]]

Back in 2017, while I was traveling in Peru, I found a security flaw that Check Point published a few months later. That flaw was simple. In the words of Check Point’s researchers in this article published in 2018, it allowed an attacker to “alter the text of someone else’s reply, essentially putting words in their mouth.”

It was cool, but back then I couldn’t come up with any idea of further exploiting the flaw or finding related flaws. So except for trolling my friends a couple of times in our group chat, I kind of let it go.

Blog | HUMAN Security

Check out the latest HUMAN Blogs for expert insights and industry expertise on digital threats.

www.perimeterx.com

 

[amir 957]

It's normal
We almost have such news about WhatsApp each month