WhatsApp users are advised to review their settings and update their app to the latest version due to two software vulnerabilities recently identified in the messaging service. These vulnerabilities, affecting media files handling and WhatsApp for Windows users, were flagged by security researchers at Malwarebytes. While the flaws do not automatically infect devices, they could potentially be exploited by cybercriminals for social engineering attacks or in conjunction with other vulnerabilities for more severe threats.

The vulnerabilities, known as CVE-2026-23866 and CVE-2026-23863, were uncovered through Meta’s Bug Bounty program. Despite no evidence of real-world exploitation or phone infections, WhatsApp urges users to update their settings as a precautionary measure.

To safeguard against potential risks, users are advised to ensure their WhatsApp app is fully updated. Android users can update via the Google Play Store by searching for WhatsApp Messenger and selecting “Update.” Similarly, iPhone users should open the App Store, locate WhatsApp, and choose “Update.”

In related news, older Android devices may soon lose WhatsApp access as the platform plans to discontinue support for devices operating on versions older than Android 6 starting September 8, 2026. Affected users may receive a notification indicating that WhatsApp will cease functioning on their device. However, the impact is expected to be minimal as Android 6, released in 2015, is now rarely used on modern smartphones.