GUWAHATI: The Indian government has issued a high-severity warning for users of WhatsApp's desktop application, highlighting a critical vulnerability that poses a serious security risk. The alert was released on April 9 by the Indian Computer Emergency Response Team (CERT-IN), which operates under the Ministry of Electronics and Information Technology.
ALSO READ: Assam's Dimpu Baruah & Amiee Misobbah Set For Bollywood Debut In Bihu Attack
The warning specifically targets users of the WhatsApp desktop app on Windows systems. According to CERT-IN, versions of WhatsApp Desktop prior to 2.2450.6 are susceptible to spoofing attacks. These vulnerabilities could allow attackers to send malicious attachments that, when opened, might execute arbitrary code on the victim’s device.
The vulnerability stems from a misconfiguration involving MIME types and file extensions, which leads to improper handling of attachments. CERT-IN stated that attackers could exploit this flaw by disguising harmful files as legitimate ones, potentially compromising user data or system integrity.
With over 400 million users in India, WhatsApp is a prime target for scammers, and issues like this draw increased scrutiny of the platform's security measures.
To safeguard their devices, users are strongly advised to immediately update their WhatsApp Desktop app via the Microsoft Store. Here’s how to do it:
- Open the Microsoft Store
- Search for “WhatsApp Messenger”
- Click on the “Update” button if available
WhatsApp has also published a security advisory urging users to remain vigilant and ensure they are running the latest version of the desktop client.
CERT-IN has been actively monitoring tech vulnerabilities in recent days, also issuing alerts related to the iPhone 16 and Android 15 devices earlier this month.
