WebP bug

Critical WebP bug is a systemic cybersecurity issue

This bug is embedded in many software and apps and exploited actively! What can you do about it?

Yesterday, it was revealed that a critical cybersecurity bug was found in all kinds of software, from web browsers and image editing software to password managers! Worse still, this bug is under active exploitation by hackers.

What happened?

We all know of the famous image file format called “JPEG”.

There is another much lesser-known image file format called “WebP”. Despite its relative obscurity to most people, it is widely used on the Internet. To display images in the WebP format, a lot of software uses the same re-usable code library called “libwebp“.

It turns out that there is a cybersecurity vulnerability in libwebp. Hackers can feed a deliberately malformed WebP file into a software/app that uses libwebp to display the image. This malformed WebP file is booby-trapped to inject the hacker’s code into the software/app via the defective libwebp code library. When that happens, the hacker can take over the software/app and commandeer it to do whatever he wants.

There are reports that this bug is under active exploitation by hackers! So you will want to patch all the affected software/apps as soon as possible.

Unfortunately, there are a huge number of software/app that uses libwebp. We know for sure that these software/apps are affected:

Exclusive Content

To read the rest of this exclusive content, you need to sign up for a membership plan here for only $1.49/MONTH.

If you are already a member, please sign in here.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

FREE: Top 10 Things You Must Do to Avoid Getting Hacked

Subscribe to our Cybersecurity News, Insights & Updates to get this FREE guide on how to avoid getting hacked!

* indicates required