WhatsApp vulnerability that allowed hackers to share .exe files as images patched

Meta found a vulnerability in WhatsApp for Windows
It affects all older versions and allows hackers to trick people into running .exe files
The flaw lets criminals display .exe files as harmless photos in the chat

Meta has fixed a medium-severity vulnerability in its WhatsApp client for Windows, which allowed threat actors to spoof executable files as images.

In a short advisory published on Facebook, the company said that it addressed a spoofing issue in WhatsApp for Windows, prior to version 2.2450.6.

The bug “displayed attachments according to their MIME type but selected the file opening handler based on the attachment’s filename extension,” Meta explained.

No abuse in the wild

“A maliciously crafted mismatch could have caused the recipient to inadvertently execute arbitrary code rather than view the attachment when manually opening the attachment inside WhatsApp.”

According to CyberInsider, this mismatch is a “classic method” for social engineering-based exploitation, since it allows threat actors to send files that appear harmless, but are in fact malicious. “If a victim double-clicks the attachment within WhatsApp, the underlying executable could run, compromising the user’s system,” the publication wrote.

All older versions of the software were vulnerable, Meta further explained, recommending that users apply the patch immediately.

At the same time, the Cybernews team says that there is currently no evidence that the vulnerability is being exploited in the wild. However, as usual with these things, as soon as news of a vulnerability breaks, cybercriminals start hunting for vulnerable endpoints.

Most cyberattacks these days start with social engineering. A phishing message, paired with a malicious attachment can be sent either via email, or through an instant messaging platform such as WhatsApp. It can trick the victim into making a rash decision, running the attachment without thinking through it first.

Email addresses get leaked a lot more often than phone numbers, which makes WhatsApp-borne attacks a little less likely. However, many organizations harvest this information as well, and then store it in misconfigured, non-password-protected databases, which often get picked up by malicious actors and sold on the dark web.

For Adam Pilton, Senior Cybersecurity Consultant at CyberSmart, said this is a dangerous vulnerability since many people are parts of different WhatsApp groups where images get shared all the time. This presents a great opportunity for criminals, and major risk for the users:

“It’s really important to stress that this WhatsApp vulnerability impacts Windows desktop users. Most people will be part of a WhatsApp group where it is common for images to be shared and this is where this vulnerability becomes dangerous, because if a cyber criminal was able to share this image either in your group or with someone you trust who then goes on to share it in your group, anybody in that group could unknowingly execute the malicious code associated with the shared image,” he said.

“It is good to see however that the solution is at hand and simple to achieve and that is to apply an update to WhatsApp.”

Via Cybernews

https://cdn.mos.cms.futurecdn.net/hyYxnQdpMpqDXu5EtehWhY-1200-80.jpg

Source link

Quantum startup claims its 20-square-meter machine will crush HPC giants and rewrite the future of data centers forever

8 new horror movies on Netflix, Shudder, HBO Max, and more in June 2025

8 new horror movies on Netflix, Shudder, HBO Max, and more in June 2025

Walmart’s mega summer sale is live – 29 deals I’d buy on TVs, grills, vacuums and more

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Exercise, including regular walks, boosts colon cancer survival rates—and even rivals some drugs, study shows

Trevi Therapeutics to Host Conference Call and Webcast on June 2nd to Share Topline Results from the Phase 2b CORAL Trial of Haduvio in...

Housing market tide is turning as home prices fall in top cities

HORIZON PETROLEUM PROVIDES AN OPERATIONS UPDATE OF ITS PREPARATION FOR FIRST PRODUCTION IN POLAND

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

WhatsApp vulnerability that allowed hackers to share .exe files as images patched

Exercise, including regular walks, boosts colon cancer survival rates—and even rivals some drugs, study shows

Quantum startup claims its 20-square-meter machine will crush HPC giants and rewrite the future of data centers forever

Trevi Therapeutics to Host Conference Call and Webcast on June 2nd to Share Topline Results from the Phase 2b CORAL Trial of Haduvio in...

Housing market tide is turning as home prices fall in top cities