WhatsApp Warns of New Israeli Spyware Targeting Phones and Breaking into Private Data

WhatsApp Accuses Paragon Solutions of Targeting Journalists with Israeli Spyware

WhatsApp has accused Israeli spyware company Paragon Solutions of launching a sophisticated hacking campaign targeting nearly 100 journalists and civil society members. This attack involved Graphite spyware, a zero-click malware that infiltrates devices without requiring any interaction from the victim. Such attacks are especially concerning as they compromise personal data and sensitive communications without the target’s knowledge.

Zero-Click Attack: A New Cyber Threat

WhatsApp claims to have high confidence that around 90 users, including journalists and activists, were specifically targeted. Although WhatsApp has not disclosed the locations of the affected individuals, the platform confirmed that they were notified about the potential breach. WhatsApp also took swift legal action by sending a cease and desist letter to Paragon Solutions and is exploring further legal options to hold the company accountable for its role in the attack.

Graphite Spyware: A Dangerous Tool

Paragon Solutions, based in Virginia, USA, is known for developing the Graphite spyware, a tool comparable to the infamous Pegasus spyware developed by NSO Group. Once installed, Graphite gives the attacker complete access to the device, enabling them to read messages sent through encrypted apps like WhatsApp and Signal. This breach raises significant concerns about the security of encrypted messaging platforms.

The Identity of the Attackers

The exact identity of the attackers remains unclear. Paragon Solutions primarily sells its software to government clients, but WhatsApp has not been able to determine which government initiated the attacks. A source close to Paragon claims that the company has 35 government clients, all of which are reportedly democratic nations. However, WhatsApp noted that Paragon avoids working with countries that have a history of spyware abuse, such as Greece, Poland, Hungary, Mexico, and India.

The Growing Issue of Commercial Spyware

This incident is part of a larger pattern of increasing scrutiny surrounding the commercial spyware industry. Natalia Krapiva, senior tech legal counsel at Access Now, highlighted that Paragon Solutions, previously considered a "better" spyware company, is now facing criticism after WhatsApp's revelations. She pointed out that such abuses are not isolated incidents, but rather a feature of the commercial spyware industry as a whole.

WhatsApp's Legal Victory and Future Actions

WhatsApp's announcement comes shortly after its legal victory against NSO Group, another Israeli spyware maker. In December, a California judge ruled that NSO was liable for hacking 1,400 WhatsApp users in 2019, violating US hacking laws and WhatsApp's terms of service. Following this, NSO was blacklisted by the US commerce department in 2021 due to its actions deemed contrary to US national security interests.

While WhatsApp has not disclosed how long the targeted individuals may have been under threat, it confirmed that the attacks were disrupted in December. The company is now working to support the affected users and strengthen its security measures to protect against future breaches and cyber attacks.