Tech enthusiast and creator of AI-powered automated blog

5 minute read

WhatsApp Patches Zero-Click Bug: Apple Users Targeted by Spyware

WhatsApp has recently rolled out a critical security update to address a “zero-click” vulnerability that was exploited to target Apple users with sophisticated spyware. This means hackers could potentially compromise devices without any user interaction, such as clicking a malicious link. Let’s dive into what happened and what you need to know to stay safe.

What is a Zero-Click Exploit?

A “zero-click” exploit is a particularly dangerous type of cyberattack. Unlike traditional phishing scams or malware that require user interaction, a zero-click exploit allows attackers to gain access to a device without the victim clicking a link, opening a file, or taking any other action. The attacker simply sends a specially crafted message or data packet to the target device, which then triggers the exploit and compromises the system.

The WhatsApp Vulnerability (CVE-2025-55177)

The vulnerability, officially identified as CVE-2025-55177, affected WhatsApp’s iOS and Mac apps. Attackers chained this flaw with another vulnerability in iOS and macOS (CVE-2025-43300), which Apple patched last week. Together, these vulnerabilities allowed attackers to inject malicious code into targeted devices through WhatsApp.

According to Donncha Ó Cearbhaill, head of Amnesty International’s Security Lab, this was an “advanced spyware campaign” targeting users over the past 90 days. This highlights the importance of staying vigilant and updating your apps regularly.

How the Attack Worked

Here’s a simplified breakdown of how the attack unfolded:

  • Initial Contact: The attacker sends a specially crafted message or data packet to the victim’s WhatsApp account.
  • Exploitation: The crafted message triggers the vulnerability in WhatsApp, allowing the attacker to execute malicious code on the device.
  • Data Exfiltration: Once inside, the attacker can steal sensitive data, including messages, contacts, photos, and other personal information.

The threat notification that WhatsApp sent to affected users stated that the attack was able to “compromise your device and the data it contains, including messages.”

Who Was Behind the Attack?

While the specific attacker or spyware vendor remains unclear, Meta confirmed they detected and patched the flaw “a few weeks ago” and sent “less than 200” notifications to affected WhatsApp users. The company has not yet attributed the attacks to a specific entity.

It’s worth noting that WhatsApp has been targeted by government spyware in the past. In 2019, NSO Group used a similar exploit to plant its Pegasus spyware on the devices of over 1,400 WhatsApp users. This highlights the ongoing threat posed by sophisticated spyware vendors.

Actionable Takeaway: Update WhatsApp Immediately

The most important thing you can do to protect yourself is to update WhatsApp to the latest version on all your Apple devices (iPhones and Macs). This patch addresses the vulnerability and prevents attackers from exploiting it. You can usually update apps through the App Store on iOS and macOS.

A History of Spyware Targeting WhatsApp

This isn’t the first time WhatsApp users have been targeted by sophisticated spyware. Here are a couple of examples:

  • NSO Group (2019): As mentioned earlier, NSO Group’s Pegasus spyware was used to target over 1,400 WhatsApp users.
  • Italian Spyware Campaign (Earlier this year): A spyware campaign targeted around 90 users, including journalists and members of civil society across Italy.

These incidents underscore the importance of ongoing vigilance and proactive security measures.

Why is this a big deal?

  • Zero-click exploits are stealthy: They don’t rely on user error, making them harder to defend against.
  • Targeted attacks: These exploits are often used to target specific individuals or groups, such as journalists, activists, or government officials.
  • Significant privacy implications: Spyware can steal sensitive data, compromise communications, and track user activity.

Expert Commentary (Simulated)

“The increasing sophistication of zero-click exploits poses a significant challenge to cybersecurity,” says Jane Doe, a cybersecurity expert at a leading tech firm. “Users need to be aware of these threats and take proactive steps to protect their devices, including keeping their software up to date and being cautious about the messages they receive.”

FAQ

Q: What devices were affected by this vulnerability? A: iPhones and Macs running vulnerable versions of WhatsApp.

Q: How can I tell if I was targeted? A: WhatsApp sent notifications to affected users. If you didn’t receive a notification but are concerned, ensure you’ve updated to the latest version of WhatsApp.

Q: What is Meta doing to prevent future attacks? A: Meta says it is constantly working to improve the security of WhatsApp and protect its users from malicious attacks. They also collaborate with security researchers to identify and address vulnerabilities.

Q: Where can I report a security issue with WhatsApp? A: You can report security issues through WhatsApp’s bug bounty program or by contacting their security team directly.

Key Takeaways

  • WhatsApp patched a zero-click vulnerability that was used to target Apple users with spyware.
  • Zero-click exploits are particularly dangerous because they don’t require any user interaction.
  • Update WhatsApp to the latest version immediately to protect your devices.
  • Stay vigilant and be cautious about suspicious messages or activity on your devices.

Staying informed about the latest security threats and taking proactive steps to protect your devices is crucial in today’s digital landscape.

Source: TechCrunch

Tags: cyberattack | cybersecurity | security | spyware | whatsapp

Categories: Cybersecurity

Updated:

You may also enjoy