- Moms and grandmas are infiltrating TikTok 1 Week Ago
- Did Britain’s head Brexiter hide in a bus to avoid getting hit by a milkshake? 1 Week Ago
- This woman who thought she saw a handmaid about to jump from a building is very relieved 1 Week Ago
- Michael Avenatti allegedly defrauded Stormy Daniels to pay for a Ferrari 1 Week Ago
- HBO has no plans for an Arya Stark spinoff series Today 3:28 PM
- Republicans and Democrats agree on dangers of facial recognition tech Today 3:18 PM
- Amazon is using video games and ‘swag bucks’ to incentivize workers Today 3:04 PM
- Here’s what’s coming and going on Netflix in June Today 2:46 PM
- This Michael Jackson makeup meme is sweeping TikTok Today 2:45 PM
- Homophobic preacher wants Pete Buttigieg to renounce fisting and rimming Today 2:33 PM
- ‘The Liar, the Snitch, and the War Crimes’: Twitter roasts news of Trump Jr. book deal Today 12:36 PM
- Polar Peak in Fortnite is cracking, and players think a dragon may be beneath the ice Today 12:07 PM
- ‘Rise of Skywalker’ first look reveals mysterious new characters Today 12:00 PM
- Meet the anti-choice, pro-NRA Trump supporter challenging Rep. Justin Amash Today 11:51 AM
- Moby attempts to prove he dated Natalie Portman with a shirtless photo Today 11:39 AM
Christoph Scholz/Flickr (CC-BY-SA)
A severe vulnerability in the popular messaging platform WhatsApp allowed hackers to remotely compromise phones just by calling them.
The issue, first reported by the Financial Times, allowed hackers to take over both iPhone and Android devices and install powerful malware even if the target did not answer the call.
Once installed, the malware could do everything from collect private messages to activate the phone’s microphone and camera.
WhatsApp, which boasts more than 1.5 billion users, says it discovered the vulnerability earlier this month while improving the app’s security.
According to the Financial Times, NSO Group, an Israeli spyware company known to work with governments, is responsible for the malware. The company’s exploits have repeatedly been linked to the hacks of journalists, human rights workers, dissident, and lawyers.
While WhatsApp did not name the NSO Group specifically, it did not deny the Financial Times’ reporting. Speaking with Ars Technica, a WhatsApp representative stated that “an advanced cyber actor” was behind the incident.
“The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems,” WhatsApp said.
John Scott-Railton, a senior researcher with surveillance watchdog group Citizen Lab, says one of those targeted by the WhatsApp attack was a human rights lawyer based in the U.K. Scott-Railton also stated that the lawyer was representing, among other clients, a Saudi dissident in Canada currently suing NSO Group.
Perhaps most famously, NSO Group malware was used against journalist and Saudi government critic Jamal Khashoggi, who was killed and dismembered shortly after being lured into the Saudi Consulate in Istanbul last year.
Following news of the WhatsApp issue, Amnesty International, which had its employees targeted with NSO Group spyware last year, announced Monday that it would join a lawsuit against the Israeli company. The aim of the lawsuit is to have the Israeli government revoke NSO Group’s export license for selling its spyware to hostile regimes.
- Man accidentally swallows AirPod—and hears it working in his stomach
- Report: Apple limiting apps that help users control their screen time
- Teen hits Apple with $1 billion lawsuit over alleged face recognition arrest
H/T Financial Times
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.