Vulnerabilities In WhatsApp Web Affect Millions of Users Globally

An anonymous reader writes with an alert for anyone who uses the WhatsApp Web application. Check Point researcher Kasif Dekel, according to NetSecurity.Org, has discovered that "to exploit the vulnerability, an attacker simply needs to send a WhatsApp user a seemingly innocent vCard contact card, containing malicious code." When this card is opened from within the app, the executable it contains is run, "further compromising computers by distributing malware including ransomware, bots, remote access tools, and other types of malicious code." Not all users need to panic about this vulnerability, though: the company has rolled out a fix, contained in all versions of WhatsApp Web after v0.1.4481. But with an estimated 200 million users of the web-based version, many users aren't yet using the updated version.

More shitware ...

[gstoddart]

Not even sure what this is, but this might explain why I've started seeing spam messages telling me What's App sent me a message.

I have no idea what this app is, and I don't care ... I'm sure it's one of the endless stream of shitware out there whose sole purpose us to collect your data and deliver ads. I'm sure it pretends to do something useful to, like they all do. But all these apps and social media crap are really about two things: collecting your data and delivering ads.

And in all likelihood will be full of security holes, untrustworthy in terms of a privacy policy, and just as likely to get hacked on their server side as anything.

Yawn, wake me up with the golf rush of this shit has ended. This is why I have no interest in this crap ... because time and time again it proves itself to be broken, insecure, and run by shady people who only care about their profits.

Sorry, but that's not something I'm interested in. The only way to win is to not even play.