Vulnerability cyber

WhatsApp

Mar 20, 2025 1 min read
WhatsApp

WhatsApp experienced a sophisticated cyber attack exploiting a zero-day vulnerability, leading to the unauthorized deployment of Graphite spyware against journalists and civil society members. While the attack did not result in a client-side update, affecting approximately 90 users internationally, it demonstrates the significant risks associated with spyware operations. The incident triggered a server-side fix and raised concerns about the potential for misuse of advanced surveillance tools sold to governments, highlighting the challenge of regulating spyware use and ensuring the protection of fundamental rights and freedoms.

Source: https://cybersecuritynews.com/paragon-spyware-exploited-whatsapp-zero-day-vulnerability/

TPRM report: https://scoringcyber.rankiteo.com/company/whatsapp.

"id": "wha443032025",
"linkid": "whatsapp.",
"type": "Vulnerability",
"date": "3/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'customers_affected': '90',
                        'industry': 'Technology',
                        'location': 'Global',
                        'name': 'WhatsApp',
                        'type': 'Messaging Platform'}],
 'attack_vector': 'Zero-Day Vulnerability',
 'description': 'WhatsApp experienced a sophisticated cyber attack exploiting '
                'a zero-day vulnerability, leading to the unauthorized '
                'deployment of Graphite spyware against journalists and civil '
                'society members. While the attack did not result in a '
                'client-side update, affecting approximately 90 users '
                'internationally, it demonstrates the significant risks '
                'associated with spyware operations. The incident triggered a '
                'server-side fix and raised concerns about the potential for '
                'misuse of advanced surveillance tools sold to governments, '
                'highlighting the challenge of regulating spyware use and '
                'ensuring the protection of fundamental rights and freedoms.',
 'impact': {'systems_affected': 'WhatsApp'},
 'initial_access_broker': {'high_value_targets': ['Journalists',
                                                  'Civil Society Members']},
 'lessons_learned': 'The incident highlights the significant risks associated '
                    'with spyware operations and the challenge of regulating '
                    'spyware use to protect fundamental rights and freedoms.',
 'motivation': 'Surveillance',
 'post_incident_analysis': {'corrective_actions': 'Server-side fix',
                            'root_causes': 'Zero-Day Vulnerability'},
 'response': {'remediation_measures': 'Server-side fix'},
 'title': 'WhatsApp Zero-Day Vulnerability Exploited for Spyware Deployment',
 'type': 'Spyware Attack',
 'vulnerability_exploited': 'Zero-Day Vulnerability'}
Published by
Jeremy C
Jeremy C
You might also like
Vulnerability cyber

GeoServer

public 1 min read
A critical remote code execution vulnerability in GeoServer, designated CVE-2024-36401, has been exploited by cybercriminals to deploy cryptocurrency mining malware.…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.