WhatsApp claimed reports alleging that messages sent and received on its service can be accessed by malicious individuals have been overstated.

Technology consultant Bas Bosschert said in a widely-reported blog post that WhatsApp messages can be accessed via the microSD card in mobile devices.

The maker of the messaging app – set to be acquired by Facebook for $19 billion – said in a statement that reports have not painted an accurate picture and are overstated”.

“Under normal circumstances the data on a microSD card is not exposed. However, if a device owner downloads malware or a virus, their phone will be at risk,” the company added.

WhatsApp also recommended users add the latest software updates to ensure they have the latest security fixes in place, and to only download software from reputable companies.

The WhatsApp statement also pointed out that the latest version of the messaging app in Google Play has updated security protection. However, Bosschert said the vulnerability is still present with the new version.