contador web Saltar al contenido

WhatsApp, Microsoft and Intel: Week Marked by Security Flaw | Security

Security flaws marked the week of some of the world's leading technology companies. One of these occurred with WhatsApp, which had an emergency update to address a vulnerability that allowed a spy virus to act on the victim's cell phone. Then it was Microsoft's turn to release the fix for a Windows weakness that was already being exploited by hackers. The next day, Intel announced a breach that made room for criminals to steal data from the user's computer, similar to the 2018 Specter and Meltdown bugs. See a summary of all security issues reported in recent days and learn how protect yourself.

Top 10 scams on WhatsApp, Uber and other apps

WhatsApp: Five Tips for Using the App Safely

WhatsApp: Five Tips for Using the App Safely

Want to buy a cell phone, TV and other discounted products? Meet the Compare TechTudo

On Monday (13), WhatsApp confirmed that the app had been the target of attacks that exploited a vulnerability in the voice call system: an unanswered call would be enough for the phone to be infected. According to the company, hackers were taking advantage of the failure to distribute the Pegasus virus, a spyware that can spy on the victim through the microphone and camera, as well as access files stored on the device. The program, according to international press, was developed by the Israeli intelligence company NOS, which denies involvement in WhatsApp infection cases. The solution has been released as an update for Android, iPhone (iOS), Tizen and Windows Phone.

WhatsApp released update to fix critical security hole Photo: TechTudoWhatsApp released update to fix critical security hole Photo: TechTudo

WhatsApp released update to fix critical security hole Photo: TechTudo

Microsoft released a zero-day bug in Windows that allowed a command to be granted to grant administrator privileges to malware on the computer. Rated by the company as important, the update that corrects the problem was released on Tuesday (14), but did not have details disclosed to prevent the action of hackers. The security breach was already being used to attack specific targets. To keep the computer safe, I need to update Windows 10 using the native tool in system settings from the Update and Security> Windows Update menu.

Update Windows to fix system crash Photo: Luana Marfim / TechTudoUpdate Windows to fix system crash Photo: Luana Marfim / TechTudo

Update Windows to fix system crash Photo: Luana Marfim / TechTudo

ZombieLoad is a new flaw discovered by a team of researchers on Intel processors manufactured since 2011. As with the speculative processing feature exploited in the 2018 Specter and Meltdown bugs, the vulnerability takes advantage of an error in the way the chipset handles with data processed invisibly to the user. The problem has the potential to leak passwords and other criminal-sensitive data.

The fix for the problem may reduce computer performance by up to 9%, but should be installed as soon as possible. The package is being released as an upgrade by Intel and computer and operating system manufacturers. In general, you can obtain the solution by keeping Windows 10 up to date, but you can also download the security patch directly from the Intel support site.

Intel chip computers need to upgrade to fix security hole Photo: Disclosure / IntelIntel chip computers need to upgrade to fix security hole Photo: Disclosure / Intel

Intel chip computers need to upgrade to fix security hole Photo: Disclosure / Intel

Finally, on Thursday (16), Cisco released a patch package for a number of security holes in the web version of the control panel of its hardware infrastructure management services. Among the problems is a bug that allows remote execution of code on the platform, which may impact the operation of companies that hire these services, such as telephone companies, cable TV and internet providers.