WhatsApp Patches Zero-Click Vulnerability Exploited in Sophisticated Spyware Campaign

Popular：

Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

WhatsApp Patches Zero-Click Vulnerability Exploited in Sophisticated Spyware Campaign

2025-08-30

WhatsApp has patched a critical security vulnerability (CVE-2025-55177) in its iOS and Mac apps that was exploited in a sophisticated spyware campaign targeting nearly 200 users. The vulnerability, used in conjunction with another flaw fixed by Apple (CVE-2025-43300), allowed attackers to steal data via a zero-click exploit, requiring no user interaction. Amnesty International's Security Lab confirmed the attack, which lasted over 90 days. While Meta hasn't identified the attacker, this isn't the first time WhatsApp has faced government-backed spyware attacks, having previously sued and won damages against NSO Group for its Pegasus spyware.

(techcrunch.com)

Tech Zero-Click Exploit

Laravel's Taylor Otwell: 14 Years of Building a Web Framework Legend

Amazon CTO Werner Vogels: AI is Not Magic, Clarity is King