WhatsApp bug allowed hackers to steal files and messages with GIFs Picture
Do not forward Good Morning or Festive GIF images to your friends.
Update your application at all times to fix system bugs and vulnerabilities.
Security researcher spotted a loophole in Facebook-owned app Whatsapp that allows hackers to give special access to your device allowing them to steal all data just by a whatsapp malicious GIF file.
There are various ways to identify if you have been infected by this latest WhatsApp malicious GIF virus is that you will have the following things;
Your memory will be corrupt.
Apps will start crashing.
How can you get infected with Whatsapp Malicious GIF Virus?
If a hacker sends it a Malicious GIF to your WhatsApp, and you open it, it will create a path for a hacker to get into your smartphone and steal whatever they wish to.
Only Android users are at the risk because of Whatsapp Malicious GIF virus. Fortunately, iOS users are safe from this virus.
The researcher has already notified Facebook of this shortcoming, and the company has since fixed the issue. To protect yourself against the exploit, you should download the latest version of the app.
“Facebook acknowledged and patched it officially in WhatsApp version 2.19.244. WhatsApp users, please do update to latest WhatsApp version (2.19.244 or above) to get rid of this bug,” the researcher urged users in his blog post.
This is hardly the first time WhatsApp has dealt with potentially harmful flaws in its software.
Earlier this year, the Financial Times reported a vulnerability in the messaging app allowed attackers to slip in spyware on users’ devices. WhatsApp rushed to fix the issue, but did not clarify how many users were affected by this loophole.
More recently, researchers found a kink in WhatsApp that made it possible to manipulate or spoof messages.
It remains unclear if attackers were able to exploit the double-free vulnerability in the wild, but we’ve reached out to Facebook for a clarification, and will update this piece accordingly if we hear back.
WhatsApp漏洞允许黑客利用 GIF图像窃取文件和消息
请不要再向朋友转发早安或佳节GIF 图像。
请时刻更新您的应用程序了,它能修复系统缺陷与漏洞。
安全研究人员发现了Facebook拥有的应用程序Whatsapp上的漏洞,该漏洞使黑客可以对您的设备进行特殊访问,从而使他们仅可以通过whatsapp恶意GIF文件来窃取所有数据。
有多种方法可以确定您是否受到此最新的WhatsApp恶意gif病毒感染,您将具有以下特征:
您的记忆将被破坏。
应用程序将开始崩溃。
您如何感染Whatsapp恶意GIF病毒?
如果黑客将其发送给您的WhatsApp恶意GIF,并将其打开,它将为黑客创建一条进入您的智能手机并窃取他们想要的东西的途径。
该漏洞似乎主要影响Android设备。
研究人员已将此缺点通知了Facebook,此后该公司已修复该问题。为了保护自己免受攻击,您应该时刻下载该应用程序的最新版本。
Facebook承认并在WhatsApp版本2.19.244中对其进行了正式修补。 研究人员在其博客中呼吁WhatsApp用户,请更新到最新的WhatsApp版本(2.19.244或更高版本)以消除此错误.。
对于WhatsApp而言, 这并不是第一次解决其软件中潜在有害的漏洞。
今年早些时候,《金融时报》报道了该消息应用程序中的一个漏洞,攻击者可以利用该漏洞在用户设备上窃听间谍软件。 WhatsApp急于解决此问题,但未阐明有多少用户受到此漏洞的影响。
最近,研究人员在WhatsApp中发现了一个链接,该链接可以操纵或欺骗消息。
目前尚不清楚黑客是否能够在野外利用双重释放漏洞,但我们已经联系 Facebook 进行澄清,如果我们收到回复,我们将相应地更新这篇文章。
Crime Advisory – Resurgence of scams involving takeover of Whatsapp accounts
Redirected from Singapore Police Force
The Police would like to alert on a resurgence of scams involving the takeover of WhatsApp accounts.
In such a scam, a victim would receive a WhatsApp message from a friend, whose WhatsApp account has been compromised, requesting the victim to send over a 6-digit verification code sent to them. The victim would thereafter lose access to his or her WhatsApp account after providing the scammers with the 6-digit verification code.
Members of the public are advised to adopt the following crime prevention measures:
a) Do not share your account verification codes with anyone;
b) Beware of unusual requests received over WhatsApp, even if they were sent by your WhatsApp contacts;
c) Always call your friend to verify the authenticity of the request, but do not do so through the social media platform as the account might have been taken over by scammers; and
d) Protect your WhatsApp account by enabling the ‘Two-Step Verification’ feature, which is available under ‘Account’ in the ‘Settings’ tab of your WhatsApp application. This will prevent others from compromising your WhatsApp account;
e) In the event that your WhatsApp account has been taken over by a scammer, you can recover the account by signing into your WhatsApp using your phone number and authenticate by entering the verification PIN which you will receive on your phone. The scammer which is using your account will automatically be logged out thereafter.
If you wish to provide any information related to such scams, please call the Police hotline at 1800-255-0000, or submit it online at www.police.gov.sg/iwitness. If you require urgent Police assistance, please dial ‘999’.
To seek scam-related advice, you may call the anti-scam helpline at 1800-722-6688 or go to www.scamalert.sg. Join the ‘let’s fight scams’ campaign at www.scamalert.sg/fight by signing up as an advocate to receive up-to-date messages and share them with your family and friends. Together, we can help stop scams and prevent our loved ones from becoming the next victim.
两新伎俩盗取WhatsApp账号 警方提醒公众切勿分享验证码
来自 / 联合早报 发布 / 2021年1月11日 3:30 AM
盗取WhatsApp账号最近出现两种新手法,警方提醒公众不要落入陷阱,别跟他人分享验证码。
警方发文告说,第一种手段是受害者会收到冒充WhatsApp技术支援员工的信息,称接获有关受害者的投诉,受害者须提供发送到手机的六位数验证码加以确认。受害者一旦提供那组号码,就会失去WhatsApp账号的权限。
WhatsApp已声明不会请用户分享验证码。
另一种是诈骗者故意不断将错误的验证码输入它的仪器。验证码多次输入失败,WhatsApp会要求用户进行“声音验证”,通过发送含有六位数验证码的录音信息给受害者。
如果受害者不加理会或没打开手机,录音信息会直接转入受害者的留话信箱(Voicemail)。
电信服务公司会发送默认密码(default pin)给用户,骗子就利用默认密码远程侵入留话信箱,然后取得录音信息的验证码。
一旦得到验证码,骗子可掌控WhatsApp账号,然后启动“两步验证”(two-step verification)功能,阻止受害者取回账号权限。
另外,警方指骗子还沿用过去的招数,利用所盗取WhatsApp账号的受害者身份,向受害者的亲友下手。
骗子要受害者亲友提供发到他们手机的一组六位数密码,受害者的亲友一旦回复提供密码,手机也会中招,跟着失去WhatsApp账号权限。
警方再度提醒别与人共享WhatsApp账户验证码,即使相关要求来自存在手机里的联络人。
手机用户可启动“两步验证”功能,或更改留话信箱的默认密码。如果没使用留话信箱,就联络电信公司终止相关功能。