Technology 2 min read

Hackers use WhatsApp to Infect Phones With Spyware

Anton / Pexels

Anton / Pexels

Just recently, Facebook-owned WhatsApp discovered a vulnerability in both its iPhone and Android messaging apps which enabled hackers to infect smartphones with spyware.

According to reports, the security vulnerability is associated with a recent hacking incident targeting the lawyer of the group suing the surveillance software company who allegedly made the spyware.

The vulnerability was already fixed last Friday. WhatsApp said that it had distributed a server-side fix and an app update to users yesterday. A WhatsApp representative said in a statement:

“This attack has all the hallmarks of a private company known to work with governments to deliver spyware that reportedly takes over the functions of mobile phone operating systems. We have briefed a number of human rights organizations to share the information we can, and to work with them to notify civil society.”

The Israeli Spyware

The Financial Times identified NSO Group as the actor behind the Israeli spyware. The smartphone malware was spread via missed calls through WhatsApp’s voice calling function.

WhatsApp claimed that only a handful of people have reportedly been affected by the malware. The company also told media outlets that its security team was the first to identify the vulnerability which it later shared with Internet security watchdog Citizen Lab and the U.S. Department of Justice.

However, Citizen Lab researcher John Scott-Railton still called the hacking effort a “very scary vulnerability.” The NSO Group has been known as a cyber arms dealer in the past. In fact, one of its software, the Pegasus, is capable of collecting confidential data from any targeted device.

In a statement, the NSO Group denied any involvement with the Israeli spyware.

“Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies. NSO would not or could not use its technology in its own right to target any person or organization.”

Today, the Tel Aviv court is scheduled to hear the petition of Amnesty International which calls for the revocation of NSO Group’s license to sell its products internationally.

Read More: New Malicious Malware Found On Google Play Store Apps

First AI Web Content Optimization Platform Just for Writers

Found this article interesting?

Let Chelle Fuertes know how much you appreciate this article by clicking the heart icon and by sharing this article on social media.


Profile Image

Chelle Fuertes

Chelle is the Product Management Lead at INK. She's an experienced SEO professional as well as UX researcher and designer. She enjoys traveling and spending time anywhere near the sea with her family and friends.

Comments (5)
Most Recent most recent
You
  1. Profile Image
    Rita Mills June 14 at 4:16 pm GMT

    Hello everyone here, I am here to warn you to please do not make the same mistake I made in the past, I was a victim of a bitcoin scam, I saw a glamorous review showering praises and marketing an investment firm, I contacted them on what the contracts were and I invested 127,000 USd which I was promised to get my first 15% profit in a week, when it was time for me to get my profit, they kept asking for more payments with different stories, I then ran out of patience and requested my money back, they refused to answer of refund my money, until I came across an article about a hacking company named REFUND POLICY, so I reached out to them and after I complained to them they were very swift to action and within 30 hours I got back my funds with the due profit, this was totally unbelievable. I couldn’t contain the joy in me. I want to urge anyone here facing the same problem to not hesitate to get in touch with REFUND POLICY, I assure you of great results. Their email address is refundpolicy 82@ gmail . Com you can also WhatsApp them on 16267705974.

    • Profile Image
      Alex Berry May 02 at 8:56 pm GMT

      Most recovery companies will take your money again. I personally think they are the same set of people that run all of them, seems like an unending cycle and its too sad. The most crazy thing about the whole internet thing is how you can clone a website to make it look like the real one, I discovered so many people fell into this kind of scams. The only recovery company I know that works is RECOVERYBUREAUC (@) Gmail com , I have been to their physical address to meet them before and the good thing about them is that they will let you know if they can handle your case or not. So they will not just take your money when they already know they wont help you out.

      WhatsApp: +447586868096..
      Impressive!!

  2. Profile Image
    Michael Calce May 02 at 8:56 pm GMT

    RecoveryBureauC (at)gmail, com offers five star mobile phone monitoring and assets recovery solution. The new AI technology has been the latest trick used by many fake cryptocurrency investment theft. I fell for this deceit just last week when I got a phone call from someone who impersonated my close friend and introduced me to this investment project. He describes just exactly like her and how she’s been benefiting from the profits of the investment so I decided to invest not
    knowing I would get tricked. I almost lost about 858,000 USDT of my inheritance funds and money borrowed from different loan agents on this Chinese investment platform.
    After few days of losing this huge funds I did thorough search for help and I found RecoveryBureauC (at)gmail, cOm whom I reported my situation. I opened a case with this team and they assured me of a swift action immediately. To my surprise within few hours I reached out to them they were able to retrieve the first tranche of my stolen funds and the remaining subsequently. Their services were seamless and perfect without any hassle. I’m glad I got rescued and I’ll urge you to look this firm up for all asset recovery help. Other services are phone monitoring, catch a suspected cheating spouse, tax evasion, boost of credit scores, upgrade of results, erasing of bad debts etc

  3. Profile Image
    Joel West May 25 at 10:35 pm GMT

    RECOVER LOST OR SCAMMED CRYPTO/BTC/USDT – CONTACT ROOTKIT HACKER I lost about $105,050 to crypto investment scam just recently. The company posed as an investment company that could deliver a certain percentage in returns if you deposit your Bitcoin with them. At first, it seemed real, it worked twice. I didn’t realize they set up a bot (robot) that will completely shutdown your account after you have decided to invest high. So I couldn’t access my crypto. Contacted the customer service and they told me about (unending) website upgrade. Long story cut shut!! it was a scam and I was able to do a research and saw a comment about similar experience, so I was told to Rootkit Hacker. Well, These guys amazed me. Lol!! they literally tracked the scammer, tracked the crypto and refunded me 100%. Scammer is about to be taken to court. If you have been scammed of your Crypto i.e. Bitcoin, Ethereum etc., kindly contact (rootkithacker1@outlook.com)

  4. Profile Image
    Cumulus Oncology June 12 at 2:19 pm GMT

    All you need is to hire an expert to help you accomplish that. If there’s any need to spy on your partner’s phone. From my experience I lacked evidence to confront my husband on my suspicion on his infidelity, until I came across ETHICALAHCKERS which many commend him of assisting them in their spying mission. So I contacted him and he provided me with access into his phone to view all text messages, call logs, WhatsApp messages and even her location. This evidence helped me move him off my life . I recommend you consult ETHICALHACKERS009 @ gmail.com OR CALL/TEXT ‪+1(716) 318-5536 if you need access to your partner’s phone

share Scroll to top

Link Copied Successfully

Sign in

Sign in to access your personalized homepage, follow authors and topics you love, and clap for stories that matter to you.

Sign in with Google Sign in with Facebook

By using our site you agree to our privacy policy.