NCSC urges swift action on WhatsApp breach
Government cybersecurity agency issues guidance telling users to act ‘quickly’
WhatsApp users should update their apps after a security attack that could have allowed hackers to spy on users’ phones, the National Cyber Security Centre has recommended.
With WhatsApp admitting that a small number of accounts have been affected and urging its 1.5 billion users to update their phones, the NCSC warned that “it’s important to apply these updates quickly, to make it as hard as possible for attackers to get in”.
- Amber Rudd: ‘I don’t need to understand encryption to understand it’s helping criminals’
- ‘The prospect of a category-one cyberattack is not receding’
- Message to Amber Rudd: Undermining encryption makes us less safe
WhatsApp uses end-to-end encryption, meaning messages should only be displayed in a legible form on the sender or recipient's device.
But the breach came after hackers were able to remotely install surveillance software on phones and other devices.
The surveillance software would have let an attacker read the messages on the target's device.
The company said: “The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems.”
The perimeter security programme is already protecting thousands of NHS services and wants to work with more trusts, according to Rosie Underwood
CyberArk, our sponsor for PublicTechnology Cyber Week, writes about how industry and government are working together to meet Australia’s cyber challenges
Information request reveals that number of reported incidents increased slightly
Fake online shops, malware, phishing emails and ransomware attacks on hospitals have been among the scams perpetrated by bad actors during the pandemic
PublicTechnology talks to Rich Turner about why organisations need to adopt a ‘risk-based approach’ to security – but first make sure they get the basics right