WhatsApp fixes bug that installed spyware via voice calling

WhatsApp has urged its 1.5 billion users globally to update their app to protect against “potential targeted exploits” after it discovered a vulnerability that allows spyware to be installed on users’ phone.

The Facebook-owned company said it had, earlier this month, identified and promptly fixed a vulnerability that could enable an attacker to insert and execute code on mobile devices. It has also made changes to its infrastructure to deny the ability for this attack to take place, it added.

Without naming the attacker, WhatsApp said the attack has all the hallmarks of a private company that reportedly works with governments to deliver spyware, which takes over the functions of mobile phone operating systems.

In an emailed statement, a WhatsApp spokesperson said the company encourages people to upgrade to the latest version of its app, and to keep their mobile operating system up-to-date.