London Daily

Focus on the big picture.
Thursday, Sep 18, 2025
LondOn!
WhatsApp is fixing a bug in its desktop app that allowed access to files on your computer

WhatsApp is fixing a bug in its desktop app that allowed access to files on your computer

Last month, WhatsApp fixed a bug in its desktop app that allowed attackers to read files from your computer. A post published by security firm PerimeterX last night suggests the bug affected folks who used either WhatsApp’s Mac or Windows app paired with an iPhone.

The company’s security researcher, Gal Weizman, found vulnerabilities in WhatsApp’s Content Security Policy (CSP) that could be exploited to send manipulated messages and links using Cross-Site Scripting (XSS). He was able to take advantage of these flaws to send malicious code or read files from a computer’s local file system. That could’ve been quite harmful if someone stored sensitive documents on their machine.

The researcher was able to find and manipulate code from where messages are formed in the desktop app. He proceeded to forge a banner with a link preview to include a potentially malicious link.

Weizman suggested that WhatsApp shouldn’t use older version of Google’s chromium-browser platform to avoid such flaws. If you’re using WhatsApp on an iPhone and through its desktop app, you should update both, just to be safe.

You can read the technical details of how Weizman was able to bypass WhatsApp’s CSP here.

Add Comment
Newsletter
Related Articles

Trump and Starmer Clash Over UK Recognition of Palestinian State Amid State Visit

As Donald Trump visits the UK, Prime Minister Keir Starmer signals Britain will soon recognise a Palestinian state—sparking public disagreement between the leaders

Trump’s Quip on Biden and Google Lawsuit Revives Debate Over Antitrust Legacy

At a White House dinner with top tech CEOs, Donald Trump told Sundar Pichai that Joe Biden ‘was the one who prosecuted that lawsuit,’ sparking fresh scrutiny of how the landmark...

Macron and his wife to provide 'scientific photographic evidence' that she is a real woman

French President Emmanuel Macron and his wife Brigitte plan to present medical and photographic proof in a U.S. defamation lawsuit against American activist Candace Owens, who s...

US Tech Giants Pledge Billions to UK AI Infrastructure Following Starmer's Call

Microsoft, Nvidia, Google, and others commit massive investments as the UK seeks to become a global AI hub amid plans to scale up compute power and data centre capacity

Saudi Arabia cracks down on music ‘lounges’ after conservative backlash

At least two dozen venues in Riyadh and Jeddah closed over hygiene violations, reflecting pressure from conservative voices amid Crown Prince Mohammed bin Salman’s reform agenda.

DeepMind and OpenAI Achieve Gold at ‘Coding Olympics’ in AI Milestone

Both companies’ AI models earned gold-medal scores at the International Mathematical Olympiad, solving five out of six problems in natural language within the time limit

SEC Allows Public Companies to Block Investors from Class-Action Lawsuits

New rule lets companies force arbitration instead of court for shareholder disputes, reversing long-standing SEC policy

Saudi Arabia Signs ‘Strategic Mutual Defence’ Pact with Pakistan, Marking First Arab State to Gain Indirect Access to Nuclear Strike Capabilities in the Region

Agreement commits both nations to treat any attack on one as an attack on both, while dramatically making Saudi Arabia the first Arab state indirectly equipped with nuclear stri...

Federal Reserve Cuts Rates by Quarter Point and Signals More to Come

First rate cut since December, as Fed cites labor market weakness and suggests two more cuts this year

Effective and Impressive Generation Z Protest: Images from the Riots in Nepal

Young demonstrators in Nepal launched a peaceful protest that escalated from calm sit-ins to violent clashes as soon as the government sent violent police against them, leaving ...

European manufacturers against ban on polluting cars: "The industry may collapse"

Top executives from Stellantis, BMW, and Mercedes warn the European Union’s planned 2035 ban on gasoline cars could devastate jobs and competitiveness, while China surges ahead ...
Playlist Hide
0:00
0:00
Open
0:00
0:00
Close
Trump and Starmer Clash Over UK Recognition of Palestinian State Amid State Visit
Trump’s Quip on Biden and Google Lawsuit Revives Debate Over Antitrust Legacy
Macron and his wife to provide 'scientific photographic evidence' that she is a real woman
US Tech Giants Pledge Billions to UK AI Infrastructure Following Starmer's Call
Saudi Arabia cracks down on music ‘lounges’ after conservative backlash
DeepMind and OpenAI Achieve Gold at ‘Coding Olympics’ in AI Milestone
SEC Allows Public Companies to Block Investors from Class-Action Lawsuits
Saudi Arabia Signs ‘Strategic Mutual Defence’ Pact with Pakistan, Marking First Arab State to Gain Indirect Access to Nuclear Strike Capabilities in the Region
Federal Reserve Cuts Rates by Quarter Point and Signals More to Come
Effective and Impressive Generation Z Protest: Images from the Riots in Nepal
European manufacturers against ban on polluting cars: "The industry may collapse"
Sam Altman sells the 'Wedding Estate' in Hawaii for 49 million dollars
Trump: Cancel quarterly company reports and settle for reporting once every six months
Turkish car manufacturer Togg Enters German Market with 5-Star Electric Sedan and SUV to Challenge European EV Brands
US Launches New Pilot Program to Accelerate eVTOL Air Taxi Deployment
Christian Brueckner Released from German Prison after Serving Unrelated Sentence
World’s Longest Direct Flight China Eastern to Launch 29-Hour Shanghai–Buenos Aires Direct Flight via Auckland in December
New OpenAI Study Finds Majority of ChatGPT Use Is Personal, Not Professional
Hong Kong Industry Group Calls for HK$20 Billion Support Fund to Ease Property Market Stress
Joe Biden’s Post-Presidency Speaking Fees Face Weak Demand amid Corporate Reluctance
Charlie Kirk's murder will break the left's hateful cancel tactics
Kash Patel erupts at ‘buffoon’ Sen. Adam Schiff over Russiagate: ‘You are the biggest fraud’
Homeland Security says Emmy speech ‘fanning the flames of hatred’ after Einbinder’s ‘F— ICE’ remark
Charlie Kirk’s Alleged Assassin Tyler Robinson Faces Death Penalty as Charges Formally Announced
Actor, director, environmentalist Robert Redford dies at 89
The conservative right spreads westward: a huge achievement for 'Alternative for Germany' in local elections
JD Vance Says There Is “No Unity” with Those Who Celebrate Charlie Kirk’s Killing, and he is right!
Trump sues the 'New York Times' for an astronomical sum of 15 billion dollars
Florida Hospital Welcomes Its Largest-Ever Baby: Annan, Nearly Fourteen Pounds at Birth
U.S. and Britain Poised to Finalize Over $10 Billion in High-Tech, Nuclear and Defense Deals During Trump State Visit
China Finds Nvidia Violated Antitrust Laws in Mellanox Deal, Deepens Trade Tensions with US
US Air Force Begins Modifications on Qatar-Donated Jet Amid Plans to Use It as Air Force One
Pope Leo Warns of Societal Crisis Over Mega-CEO Pay, Citing Tesla’s Proposed Trillion-Dollar Package
Poland Green-Lights NATO Deployment in Response to Major Russian Drone Incursion
Elon Musk Retakes Lead as World’s Richest After Brief Ellison Surge
U.S. and China Agree on Framework to Shift TikTok to American Ownership
London Daily Podcast: London Massive Pro Democracy Rally, Musk Support, UK Economic Data and Premier League Results Mark Eventful Weekend
This Week in AI: Meta’s Superintelligence Push, xAI’s Ten Billion-Dollar Raise, Genesis AI’s Robotics Ambitions, Microsoft Restructuring, Amazon’s Million-Robot Milestone, and Google’s AlphaGenome Update
Le Pen Tightens the Pressure on Macron as France Edges Toward Political Breakdown
Musk calls for new UK government at huge pro-democracy rally in London, but Britons have been brainwashed to obey instead of fighting for their human rights
Elon Musk responds to post calling for the murder of Erika Kirk, widow of Charlie Kirk: 'Either we fight back or they will kill us'
Czech Republic signs €1.34 billion contract for Leopard 2A8 main battle tanks with delivery from 2028
USA: Office Depot Employees Refused to Print Poster in Memory of Charlie Kirk – and Were Fired
Proposed U.S. Bill Would Allow Civil Suits Against Judges Who Release Repeat Violent Offenders
Penske Media Sues Google Over “AI Overviews,” Claiming It Uses Journalism Without Consent and Destroys Traffic
Indian Student Engineers Propose “Project REBIRTH” to Protect Aircraft from Crashes Using AI, Airbags and Smart Materials
French Debt Downgrade Piles Pressure on Macron’s New Prime Minister
US and UK Near Tech, Nuclear and Whisky Deals Ahead of Trump Trip
One in Three Europeans Now Uses TikTok, According to the Chinese Tech Giant
Could AI Nursing Robots Help Healthcare Staffing Shortages?
×