WhatsApp users have been urged to review their app settings following the discovery of a WhatsApp security flaw that could allow hackers to access personal data.
The vulnerability, highlighted by Google’s Project Zero team, exploits the app’s automatic media download feature, which instantly saves files to devices without users’ knowledge.
Cybercriminals are reportedly creating fake group chats and inviting unsuspecting users. If the invitation is accepted, infected files are downloaded automatically, potentially compromising sensitive information.
While the number of affected users is unclear, the revelation of this WhatsApp security flaw has raised concerns for billions who use the app daily.
ALSO READ:WhatsApp updates group chats with member tags, text stickers, event reminders
In response, WhatsApp has released a fix aimed at preventing new infections. Security experts, including Malwarebytes, advise users to disable automatic media downloads and enable advanced privacy settings.
To do this, navigate to Settings → Storage and Data → Media Auto-Download, and uncheck all media types for mobile data, Wi-Fi, and roaming.
Additionally, users should adjust who can add them to groups by going to Settings → Privacy → Groups, and limiting access to “My Contacts” or “My Contacts Except…”.
Following these steps can help mitigate the risk posed by this WhatsApp security flaw and provide peace of mind for both personal and work accounts.