A WhatsApp security flaw let hackers install spying software via voice calls

The vulnerability was fixed on Friday, but it’s a blow to a company that prides itself on providing secure communications to its 1.5 billion users, using end-to-end encryption.
The details: The security hole let an attacker read messages on the target’s device. It used WhatsApp’s voice calling feature to call someone and then install surveillance software, even if the call was not picked up. The call would often disappear from the device’s call log. It was discovered earlier this month by WhatsApp’s own security team. It targeted specific users and was developed by Israeli security company NSO Group, according to the Financial Times.
Who’s behind it? Its development is likely to have been directed by a government, and the suspected attacks were targeted to specific individuals, WhatsApp said. It didn’t name any of them.
What do I need to do? Make sure you’re using the latest version of WhatsApp. Although your phone might have auto-updated since Friday already, it’s worth checking. For Android devices, that involves opening the Google Play store and looking in “My Apps & Games” to see if WhatsApp needs updating or not. The latest version is 2.19.134. For iOS, you need to check the App Store and make sure you’re using WhatsApp version 2.19.51.
Sign up here to get your dose of the latest must-read news from the world of emerging tech in our daily newsletter The Download.
Keep Reading
Most Popular
The inside story of how ChatGPT was built from the people who made it
Exclusive conversations that take us behind the scenes of a cultural phenomenon.
How Rust went from a side project to the world’s most-loved programming language
For decades, coders wrote critical systems in C and C++. Now they turn to Rust.
Design thinking was supposed to fix the world. Where did it go wrong?
An approach that promised to democratize design may have done the opposite.
Sam Altman invested $180 million into a company trying to delay death
Can anti-aging breakthroughs add 10 healthy years to the human life span? The CEO of OpenAI is paying to find out.
Stay connected
Get the latest updates from
MIT Technology Review
Discover special offers, top stories, upcoming events, and more.