Indian Computer Emergency Response Team (CERT-In) has warned users against a "vulnerability" on WhatsApp and advised updating the app to combat it.
The vulnerability could get exploited by a remote attacker by sending a crafted MP4 file on the target's phone. The exploitation doesn't need any authentication from the victim and the threat's severity has marked "high".
The advisory comes in the backdrop of recent developments where WhatsApp had informed the Indian government in September that over a hundred Indian users had targeted by the Israeli spyware Pegasus. The distinguishing feature of this bloatware is, it doesn’t need any special permissions to intrude into our account which marks the threat severity to sky level.
“A vulnerability had reported in WhatsApp which could get exploited by a remote attacker to execute arbitrary code on the target system,” the latest advisory said. The CERT-In is the nodal agency to combat hacking, phishing and to fortify security-related defenses of the Indian internet domain.