WhatsApp Users Targeted by Sophisticated Spyware Attack

WhatsApp recently blocked a phishing campaign that was attempting to install spyware on users' phones. The attack was linked to NSO Group, a company that makes surveillance software. WhatsApp caught the attack and disrupted it, protecting users from having their private messages, photos, and other phone data stolen. This type of spyware can secretly record calls, read messages, and access your camera and microphone.

This attack targeted WhatsApp users through phishing messages. If you received any suspicious messages on WhatsApp asking you to click links, download files, or verify your account, you could have been targeted. The spyware typically tricks people into clicking something that looks legitimate but actually installs malicious software. WhatsApp has over 2 billion users worldwide, so attacks like this can reach many people.

Here is what to do right now to protect yourself. First, delete any suspicious messages you received on WhatsApp, especially those with unexpected links or asking you to download anything. Second, never click on links in WhatsApp messages unless you are absolutely certain they are from someone you know and were expecting. Third, update your WhatsApp app to the latest version through your phone's official app store. Fourth, review your phone settings and remove any apps you do not recognize or did not intentionally install. To stay protected going forward, treat WhatsApp messages with the same caution as emails and text messages. Legitimate companies will never ask you to click links to verify your account through messaging apps. Be especially suspicious of messages that create urgency, like claiming your account will be closed. If someone you know sends you an unexpected link, message them separately to confirm they actually sent it. Their account may have been compromised. Keep your phone's operating system and all apps updated, as updates often include security fixes.