London Daily

Focus on the big picture.
Monday, Sep 15, 2025
LondOn!
WhatsApp is fixing a bug in its desktop app that allowed access to files on your computer

WhatsApp is fixing a bug in its desktop app that allowed access to files on your computer

Last month, WhatsApp fixed a bug in its desktop app that allowed attackers to read files from your computer. A post published by security firm PerimeterX last night suggests the bug affected folks who used either WhatsApp’s Mac or Windows app paired with an iPhone.

The company’s security researcher, Gal Weizman, found vulnerabilities in WhatsApp’s Content Security Policy (CSP) that could be exploited to send manipulated messages and links using Cross-Site Scripting (XSS). He was able to take advantage of these flaws to send malicious code or read files from a computer’s local file system. That could’ve been quite harmful if someone stored sensitive documents on their machine.

The researcher was able to find and manipulate code from where messages are formed in the desktop app. He proceeded to forge a banner with a link preview to include a potentially malicious link.

Weizman suggested that WhatsApp shouldn’t use older version of Google’s chromium-browser platform to avoid such flaws. If you’re using WhatsApp on an iPhone and through its desktop app, you should update both, just to be safe.

You can read the technical details of how Weizman was able to bypass WhatsApp’s CSP here.

Add Comment
Newsletter
Related Articles

Elon Musk Retakes Lead as World’s Richest After Brief Ellison Surge

Larry Ellison briefly surpassed Musk amid Oracle share rally, but Musk now holds the top spot again with a narrow margin

U.S. and China Agree on Framework to Shift TikTok to American Ownership

Preliminary deal reached in Madrid; President Trump and Xi Jinping to finalise terms later this week

London Daily Podcast: London Massive Pro Democracy Rally, Musk Support, UK Economic Data and Premier League Results Mark Eventful Weekend

A mass Pro Democracy demonstration in central London left anti-free-speech-police injured and drew global attention with Elon Musk’s call for political change, while the UK econ...

This Week in AI: Meta’s Superintelligence Push, xAI’s Ten Billion-Dollar Raise, Genesis AI’s Robotics Ambitions, Microsoft Restructuring, Amazon’s Million-Robot Milestone, and Google’s AlphaGenome Update

Major developments across the AI sector include new labs, massive funding rounds, layoffs to retool talent, and advances in robotics and generative biology

Le Pen Tightens the Pressure on Macron as France Edges Toward Political Breakdown

Marine Le Pen seizes momentum, denouncing Emmanuel Macron’s failing leadership and vowing her movement will not bow to elite deals ahead of critical budget talks.

Musk calls for new UK government at huge pro-democracy rally in London, but Britons have been brainwashed to obey instead of fighting for their human rights

At the “Unite the Kingdom” rally, Elon Musk via video link urged dissolution of Parliament and change of government, accusing Keir Starmer’s administration of eroding freedom an...

Elon Musk responds to post calling for the murder of Erika Kirk, widow of Charlie Kirk: 'Either we fight back or they will kill us'

Musk reacted after a transgender user named Raven Salomon suggested Erika Kirk could be 'next,' and her children given to adoptive parents, prompting Musk to warn of an existent...

Czech Republic signs €1.34 billion contract for Leopard 2A8 main battle tanks with delivery from 2028

First phase orders forty-four Leopard 2A8 tanks from Germany for over thirty-four billion Czech crowns, with “Bohemisation,” support, and options for further purchases

USA: Office Depot Employees Refused to Print Poster in Memory of Charlie Kirk – and Were Fired

Office Depot in Michigan dismissed employees after they refused to print a memorial poster for social activist Charlie Kirk, who was killed in Utah.

Proposed U.S. Bill Would Allow Civil Suits Against Judges Who Release Repeat Violent Offenders

The JAIL Act would strip judicial immunity in cases where judges release violent repeat offenders who commit further violent crimes. This bill tries to hold accountable those wh...

Penske Media Sues Google Over “AI Overviews,” Claiming It Uses Journalism Without Consent and Destroys Traffic

Rolling Stone, Billboard and Variety owner alleges Google’s AI summaries cut traffic and affiliate revenues by over a third and forces publisher consent under duress

Indian Student Engineers Propose “Project REBIRTH” to Protect Aircraft from Crashes Using AI, Airbags and Smart Materials

Idea enters the 2025 James Dyson Award: AI-powered system aims to detect unavoidable crashes below three thousand feet and shield aircraft with fast-deploy airbags, reverse thru...
Playlist Hide
0:00
0:00
Open
0:00
0:00
Close
Elon Musk Retakes Lead as World’s Richest After Brief Ellison Surge
U.S. and China Agree on Framework to Shift TikTok to American Ownership
London Daily Podcast: London Massive Pro Democracy Rally, Musk Support, UK Economic Data and Premier League Results Mark Eventful Weekend
This Week in AI: Meta’s Superintelligence Push, xAI’s Ten Billion-Dollar Raise, Genesis AI’s Robotics Ambitions, Microsoft Restructuring, Amazon’s Million-Robot Milestone, and Google’s AlphaGenome Update
Le Pen Tightens the Pressure on Macron as France Edges Toward Political Breakdown
Musk calls for new UK government at huge pro-democracy rally in London, but Britons have been brainwashed to obey instead of fighting for their human rights
Elon Musk responds to post calling for the murder of Erika Kirk, widow of Charlie Kirk: 'Either we fight back or they will kill us'
Czech Republic signs €1.34 billion contract for Leopard 2A8 main battle tanks with delivery from 2028
USA: Office Depot Employees Refused to Print Poster in Memory of Charlie Kirk – and Were Fired
Proposed U.S. Bill Would Allow Civil Suits Against Judges Who Release Repeat Violent Offenders
Penske Media Sues Google Over “AI Overviews,” Claiming It Uses Journalism Without Consent and Destroys Traffic
Indian Student Engineers Propose “Project REBIRTH” to Protect Aircraft from Crashes Using AI, Airbags and Smart Materials
French Debt Downgrade Piles Pressure on Macron’s New Prime Minister
US and UK Near Tech, Nuclear and Whisky Deals Ahead of Trump Trip
One in Three Europeans Now Uses TikTok, According to the Chinese Tech Giant
Could AI Nursing Robots Help Healthcare Staffing Shortages?
NATO Deploys ‘Eastern Sentry’ After Russian Drones Violate Polish Airspace
Anesthesiologist Left Operation Mid-Surgery to Have Sex with Nurse
Tens of Thousands of Young Chinese Get Up Every Morning and Go to Work Where They Do Nothing
The New Life of Novak Djokovic
The German Owner of Politico Mathias Döpfner Eyes Further U.S. Media Expansion After Axel Springer Restructuring
Suspect Arrested: Utah Man in Custody for Charlie Kirk’s Fatal Shooting
In a politically motivated trial: Bolsonaro Sentenced to 27 Years for Plotting Coup After 2022 Defeat
German police raid AfD lawmaker’s offices in inquiry over Chinese payments
Turkish authorities seize leading broadcaster amid fraud and tax investigation
Volkswagen launches aggressive strategy to fend off Chinese challenge in Europe’s EV market
ChatGPT CEO signals policy to alert authorities over suicidal youth after teen’s death
The British legal mafia hit back: Banksy mural of judge beating protester is scrubbed from London court
Surpassing Musk: Larry Ellison becomes the richest man in the world
Embarrassment for Starmer: He fired the ambassador photographed on Epstein’s 'pedophile island'
Manhunt after 'skilled sniper' shot Charlie Kirk. Footage: Suspect running on rooftop during panic
Effective Protest Results: Nepal’s Prime Minister Resigns as Youth-Led Unrest Shakes the Nation
Qatari prime minister says Netanyahu ‘killed any hope’ for Israeli hostages
King Charles and Prince Harry Share First In-Person Moment in 19 Months
Starmer Establishes Economic ‘Budget Board’ to Centralise Policy and Rebuild Business Trust
France Erupts in Mass ‘Block Everything’ Protests on New PM’s First Day
Poland Shoots Down Russian Drones in Airspace Violation During Ukraine Attack
Brazilian police say ex-President Bolsonaro had planned to flee to Argentina seeking asylum
Trinidad Leader Applauds U.S. Naval Strike and Advocates Forceful Action Against Traffickers
Kim Jong Un Oversees Final Test of New High-Thrust Solid-Fuel Rocket Engine
Apple Introduces Ultra-Thin iPhone Air, Enhanced 17 Series and New Health-Focused Wearables
Macron Appoints Sébastien Lecornu as Prime Minister Amid Budget Crisis and Political Turmoil
Supreme Court temporarily allows Trump to pause billions in foreign aid
Charlie Sheen says his father, Martin Sheen, turned him in to the police: 'The greatest betrayal possible'
Vatican hosts first Catholic LGBTQ pilgrimage
Apple Unveils iPhone 17 Series, iPhone Air, Apple Watch 11 and More at 'Awe Dropping' Event
Pig Heads Left Outside Multiple Paris Mosques in Outrage-Inducing Acts
Nvidia’s ‘Wow’ Factor Is Fading. The AI chip giant used to beat Wall Street expectations for earnings by a substantial margin. That trajectory is coming down to earth.
France joins Eurozone’s ‘periphery’ as turmoil deepens, say investors
On the Anniversary of Queen Elizabeth’s Death: Prince Harry Returns to Britain
×