Hot topics

You need to update your WhatsApp ASAP

Whasapp 08
© nextpit

Read in other languages:

A security flaw in WhatsApp has led to the massively popular messaging app becoming the vehicle for a spyware used for a surveillance operation. The malicious software, called Pegasus, can be loaded onto an Android or iOS device via a WhatsApp voice call and then gather information from the device.

Both WhatsApp and NSO Group, the Israeli company responsible for developing the spyware, have confirmed the vulnerability. Pegasus can infect a device via WhatsApp call even if the user doesn't answer, delete its calls from the logs, and hijack the camera and microphone on a device in addition to harvesting communication and location data.  

Pegasus is sold commercially to Western and Middle Eastern government agencies, ostensibly for counter-terrorism and crime-fighting surveillance efforts. In this case, there are indications that the perpetrators of the latest cyberattacks via WhatsApp may be a Middle Eastern nation trying to silence criticism of its human rights violations. On May 12, Pegasus was used in a failed attempt to compromise the phone of a UK based human rights lawyer who has helped a group of Mexican journalists and government critics and a Saudi dissident living in Canada to sue NSO for liability in the actions of its customers. Middle Eastern human rights activists have been targeted by Pegasus in the past. 

Whasapp 06
WhatsApp's popularity makes it's vulnerability more worrying. / © NextPit

WhatsApp alerted the US Justice Department and human rights groups about the threat, asserting that the operation had "all the hallmarks of a private company known to work with governments to deliver spyware that reportedly takes over the functions of mobile phone operating systems". NSO, however, denies any involvement with the attacks after the point of sale. "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology." 

The flaw is fixed, so long as you're up-to-date

Although WhatsApp has patched this security flaw at the time of writing, as a precautionary measure the company told users to check that they’re running the latest version of the app on their devices. You can check the latest WhatsApp build by hitting the Play Store button below or getting it from WhatsApp directly.

WhatsApp also advised users to ensure their mobile operating system, whether iOS or Android is up to date to ensure proper protection against potential targeted exploits designed to access information stored on your device. Although NSO claims that it always investigates credible allegations of misuse, and is looking into the WhatsApp call attack, so long as sophisticated spyware can be sold exported to third party actors without much oversight, it won't be easy to prevent similar surveillance campaigns from affecting many in WhatsApps 1.5 billion strong userbase.

Are you concerned about WhatsApp's security?

  nextpit recommendation Price tip Luxury version with handle Price tip with handle For Garmin fans Mid-range tip
Product
Image Withings Body Smart Product Image Renpho Smart Body Fat Scale Product Image Withings Body Scan Product Image Lepulse Lescale P1 Product Image Garmin Index S2 Smart Scale Product Image eufy Smart Scale P3 Product Image
Deals*
Go to comment (0)
Nicholas Montegriffo

Nicholas Montegriffo
Editor

A cyberpunk and actual punk, Nicholas is the Androidpit team's hardcore gamer, writing with a focus on future tech, VR/AR, AI & robotics. Out of office, he can be found hanging around in goth clubs, eating too many chillies, or at home telling an unlucky nerd that their 8th level wizard died from a poisoned spike trap.

View all articles
Liked this article? Share now!
Recommended articles
Latest articles
Push notification Next article
No comments
Write new comment:
All changes will be saved. No drafts are saved when editing
Write new comment:
All changes will be saved. No drafts are saved when editing