A security vulnerability in Facebook-owned messaging app WhatsApp can reportedly allow hackers to gain access to your smartphone’s sensors — like your camera and microphone — as well as your personal information, all through a single phone call.
The Financial Times reports the malware, designed to gain access to personal information stored on smartphones, was created by Israeli cyber security firm NSO Group. The group has since denied the allegations.
“WhatsApp encourages people to upgrade to the latest version of our app, as well as keep their mobile operating system up to date, to protect against potential targeted exploits designed to compromise information stored on mobile devices,” said a WhatsApp spokesperson in an email to TIME. “We are constantly working alongside industry partners to provide the latest security enhancements to help protect our users.”
While WhatsApp says it has fixed the security flaw, that doesn’t mean you’re safe yet — you’ll have to update the app, which we recommend doing immediately. Here’s a list of affected WhatsApp versions on each platform for which it’s available:
On iOS, updating your WhatsApp (as well as the rest of your apps) is easy. Open the App Store, then tap the “Updates” icon. From there you can pull down to refresh the list of pending app updates or just hit “Update All” and watch them update, one by one.
On Android, simply open the Google Play Store, hit the menu icon in the upper right corner, and select “My Apps & Games.” Then, just tap “Update.”
More Must-Reads From TIME
- Jane Fonda Champions Climate Action for Every Generation
- Biden’s Campaign Is In Trouble. Will the Turnaround Plan Work?
- Why We're Spending So Much Money Now
- The Financial Influencers Women Actually Want to Listen To
- Breaker Sunny Choi Is Heading to Paris
- Why TV Can’t Stop Making Silly Shows About Lady Journalists
- The Case for Wearing Shoes in the House
- Want Weekly Recs on What to Watch, Read, and More? Sign Up for Worth Your Time
Write to Patrick Lucas Austin at patrick.austin@time.com