WhatsApp users are advised to review their settings and ensure they have the latest app version following the discovery of two software vulnerabilities. Security researchers have identified issues with how media files and attachments are managed, as well as a specific concern for Windows users of WhatsApp.
Although the flaws do not immediately infect devices, experts have cautioned that they could facilitate social engineering attacks or be exploited in combination with other vulnerabilities for more severe consequences. Malwarebytes highlighted the risk of a malicious message tricking devices into opening content from untrusted sources.
The vulnerabilities, known as CVE-2026-23866 and CVE-2026-23863, were found through Meta’s Bug Bounty program. While there is no evidence of real-world exploitation or phone infections, WhatsApp has urged users to update their settings as a precaution.
To safeguard against potential threats, users are encouraged to ensure their WhatsApp is fully updated on their devices. Android users can update via the Google Play Store by searching for WhatsApp Messenger and selecting “Update.” iPhone users should open the App Store, navigate to their profile icon, locate WhatsApp, and choose “Update.”
Following the update, devices should be secure from future attacks. Meanwhile, some older Android devices may soon lose WhatsApp access as the platform plans to discontinue support for versions older than Android 6 starting September 8, 2026. Affected users may receive a notification indicating the app will no longer function on their devices.
Most users are unlikely to be affected by this change, considering the rarity of Android 6 on modern smartphones. For more news updates, consider selecting Daily Mirror as a ‘Preferred Source’ on Google News.