- ‘Watchmen’ episode 5: Looking Glass just became one of the most compelling characters Sunday 9:05 PM
- Man allegedly kills girlfriend, then pretends to be her on Facebook Sunday 4:29 PM
- Trevor Lawrence met TikTok teen who looks just like him Sunday 3:48 PM
- Trump’s hospital visit spawns conspiracy theories Sunday 2:49 PM
- ‘SNL’ skit combines Harry Styles, the Popeyes chicken sandwich, and Disney+ Sunday 2:02 PM
- Doctored photo of GOP congresswoman flipping the bird fools critics Sunday 1:05 PM
- Internet scammers taking advantage of Narwhal the ‘unicorn’ rescue puppy Sunday 12:19 PM
- Sunday Night Football: How to stream Bears vs. Rams live Sunday 12:00 PM
- CupcakKe’s month-long ‘water fast’ has fans concerned Sunday 11:24 AM
- Will.i.am claims ‘racist’ flight attendant called police on him Sunday 10:28 AM
- How does Disney+ compare to Netflix, Hulu, HBO Max, and Apple TV+? Sunday 9:35 AM
- How to stream Patriots vs. Eagles live Sunday 9:30 AM
- Girl turns herself into ‘pleading face’ emoji Sunday 9:27 AM
- How to stream Cowboys vs. Lions live Sunday 9:00 AM
- Chaotic good, true neutral: The 2020 Democrat alignment chart Sunday 6:30 AM
A severe vulnerability in the popular messaging platform WhatsApp allowed hackers to remotely compromise phones just by calling them.
The issue, first reported by the Financial Times, allowed hackers to take over both iPhone and Android devices and install powerful malware even if the target did not answer the call.
Once installed, the malware could do everything from collect private messages to activate the phone’s microphone and camera.
WhatsApp, which boasts more than 1.5 billion users, says it discovered the vulnerability earlier this month while improving the app’s security.
According to the Financial Times, NSO Group, an Israeli spyware company known to work with governments, is responsible for the malware. The company’s exploits have repeatedly been linked to the hacks of journalists, human rights workers, dissident, and lawyers.
While WhatsApp did not name the NSO Group specifically, it did not deny the Financial Times’ reporting. Speaking with Ars Technica, a WhatsApp representative stated that “an advanced cyber actor” was behind the incident.
“The attack has all the hallmarks of a private company reportedly that works with governments to deliver spyware that takes over the functions of mobile phone operating systems,” WhatsApp said.
John Scott-Railton, a senior researcher with surveillance watchdog group Citizen Lab, says one of those targeted by the WhatsApp attack was a human rights lawyer based in the U.K. Scott-Railton also stated that the lawyer was representing, among other clients, a Saudi dissident in Canada currently suing NSO Group.
Perhaps most famously, NSO Group malware was used against journalist and Saudi government critic Jamal Khashoggi, who was killed and dismembered shortly after being lured into the Saudi Consulate in Istanbul last year.
Following news of the WhatsApp issue, Amnesty International, which had its employees targeted with NSO Group spyware last year, announced Monday that it would join a lawsuit against the Israeli company. The aim of the lawsuit is to have the Israeli government revoke NSO Group’s export license for selling its spyware to hostile regimes.
- Man accidentally swallows AirPod—and hears it working in his stomach
- Report: Apple limiting apps that help users control their screen time
- Teen hits Apple with $1 billion lawsuit over alleged face recognition arrest
H/T Financial Times
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.