Meta-owned whatsApp has uncovered and disrupted a hacking campaign linked to Israeli spyware company Paragon, which targeted journalists, civil society members, and activists late last year.
According to a whatsApp spokesperson, around 90 individuals were identified as potential victims, with attackers attempting to infiltrate their devices via malicious files. This latest breach has reignited concerns over spyware surveillance and the growing threat to press freedom and human rights defenders.
How the attack unfolded
Hackers reportedly lured victims into a whatsApp group, sending them a malicious PDF file designed to exploit vulnerabilities and gain unauthorised access to their devices.
While whatsApp has not disclosed the exact locations of the targets, it confirmed that all affected users have been notified. It remains unclear whether the attack succeeded in fully compromising any devices.
This incident highlights the persistent use of spyware against journalists and activists, who are often targeted by governments or private entities seeking to monitor dissent.
What is paragon spyware?
Paragon is one of several Israeli firms specialising in advanced surveillance technology, allowing law enforcement and intelligence agencies to covertly monitor encrypted communications on platforms like whatsApp and Signal.
The spyware enables unauthorised access to mobile phones, giving operators the ability to:
- Intercept private messages
- Track locations in real-time
- Remotely activate device cameras and microphones
While Paragon claims its technology is sold exclusively to democratic governments to fight organised crime and terrorism, spyware companies have frequently faced criticism over their alleged misuse by authoritarian regimes.
In december 2023, Paragon was acquired by US private equity firm AE industrial partners in a deal reportedly worth up to $900 million. The acquisition raises further concerns about the commercialisation of surveillance technology.
WhatsApp’s fight against spyware
This is not the first time whatsApp has taken action against spyware firms. The company previously sued NSO Group, the maker of Pegasus spyware, for allegedly hacking over 1,400 users in 2019.
In December 2023, a US federal judge in California ruled in whatsApp’s favour, holding NSO Group accountable for hacking and breaching contractual agreements. NSO remains under US sanctions due to its involvement in cyber espionage operations.
The growing spyware threat
More Read
Spyware has become an increasingly powerful tool in state-sponsored surveillance, raising concerns about privacy, press freedom, and human rights abuses.
Citizen Lab researcher John Scott-Railton told Reuters:
“The discovery of Paragon spyware targeting WhatsApp users is a reminder that mercenary spyware continues to proliferate, and as it does, we continue to see familiar patterns of problematic use.”
Governments and rights groups have long called for stricter regulations on spyware companies, urging more transparency and oversight on who can access these powerful surveillance tools.
What happens next?
While WhatsApp has contained the immediate threat by warning affected users, the larger battle against spyware continues. Cybersecurity experts are now calling for:
- Stronger encryption measures to prevent unauthorised access
- Increased accountability for spyware firms and their clients
- Tighter international regulations on spyware sales and distribution
For now, journalists and activists remain on high alert, as mercenary spyware firms continue to exploit digital vulnerabilities for surveillance.
