Hot topics

You need to update your WhatsApp ASAP

Whasapp 08
© nextpit

Read in other languages:

A security flaw in WhatsApp has led to the massively popular messaging app becoming the vehicle for a spyware used for a surveillance operation. The malicious software, called Pegasus, can be loaded onto an Android or iOS device via a WhatsApp voice call and then gather information from the device.

Both WhatsApp and NSO Group, the Israeli company responsible for developing the spyware, have confirmed the vulnerability. Pegasus can infect a device via WhatsApp call even if the user doesn't answer, delete its calls from the logs, and hijack the camera and microphone on a device in addition to harvesting communication and location data.  

Pegasus is sold commercially to Western and Middle Eastern government agencies, ostensibly for counter-terrorism and crime-fighting surveillance efforts. In this case, there are indications that the perpetrators of the latest cyberattacks via WhatsApp may be a Middle Eastern nation trying to silence criticism of its human rights violations. On May 12, Pegasus was used in a failed attempt to compromise the phone of a UK based human rights lawyer who has helped a group of Mexican journalists and government critics and a Saudi dissident living in Canada to sue NSO for liability in the actions of its customers. Middle Eastern human rights activists have been targeted by Pegasus in the past. 

Whasapp 06
WhatsApp's popularity makes it's vulnerability more worrying. / © NextPit

WhatsApp alerted the US Justice Department and human rights groups about the threat, asserting that the operation had "all the hallmarks of a private company known to work with governments to deliver spyware that reportedly takes over the functions of mobile phone operating systems". NSO, however, denies any involvement with the attacks after the point of sale. "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology." 

The flaw is fixed, so long as you're up-to-date

Although WhatsApp has patched this security flaw at the time of writing, as a precautionary measure the company told users to check that they’re running the latest version of the app on their devices. You can check the latest WhatsApp build by hitting the Play Store button below or getting it from WhatsApp directly.

WhatsApp also advised users to ensure their mobile operating system, whether iOS or Android is up to date to ensure proper protection against potential targeted exploits designed to access information stored on your device. Although NSO claims that it always investigates credible allegations of misuse, and is looking into the WhatsApp call attack, so long as sophisticated spyware can be sold exported to third party actors without much oversight, it won't be easy to prevent similar surveillance campaigns from affecting many in WhatsApps 1.5 billion strong userbase.

Are you concerned about WhatsApp's security?

The best VPN services compared and tested

  Sponsored Editor's Choice              
  SurfShark CyberGhost NordVPN PureVPN VyprVpn ExpressVPN Private Internet Access Tunnelbear Ivacy
Name SurfShark* CyberGhost* NordVPN* PureVPN VyprVpn ExpressVPN Private Internet Access Tunnelbear Ivacy*
nextpit Tested
Go to review
Go to review
Go to review
Not yet rated
Not yet rated
Not yet rated
Not yet rated
Not yet rated
Not yet rated
Price (monthly) $2.49 to $12.95 $2.25 to $12.99 $3.49 to $11.95 $2.91 to $10.95  $6.47 to $1.81 $8.32 to $12.95  $2.03 to $9.95 $3.33 and $9.99 $2.45 to $9.95
Compatible platforms with its app - Android, iOS
- Windows, macOS, Linux
- FireTV
- Android, iOS
- Windows, macOS, Linux
- Android TV, FireTV 
- Android, iOS
- Windows, macOS, Linux
- Android TV, FireTV
- Android, iOS
- Windows, macOS, Linux
- Android TV, FireTV
- Android, iOS
- Windows, macOS
- Android TV
- Android, iOS
- Windows, macOS, Linux
- Android, iOS
- Windows, macOS, Linux
- Android, iOS
- Windows, macOS
- Android, iOS
- Windows, macOS, Linux
- Android TV, FireTV
Protocols OpenVPN, IKEv2, WireGuard OpenVPN, IKEv2, WireGuard OpenVPN, IKEv2, WireGuard L2TP, OpenVPN, IKEv2 L2TP, OpenVPN, IKEv2, WireGuard L2TP, OpenVPN, IKEv2 OpenVPN, WireGuard, IKEv2 OpenVPN, IKEv2 L2TP,  OpenVPN, IKEv2
How do I subscribe? See Options* See Options* See Options* See Options* See Options* See Options* See Options* See Options* See Options*
Name SurfShark CyberGhost NordVPN PureVPN VyprVpn ExpressVPN Private Internet Access Tunnelbear Ivacy
Go to comment (0)
Nicholas Montegriffo

Nicholas Montegriffo
Editor

A cyberpunk and actual punk, Nicholas is the Androidpit team's hardcore gamer, writing with a focus on future tech, VR/AR, AI & robotics. Out of office, he can be found hanging around in goth clubs, eating too many chillies, or at home telling an unlucky nerd that their 8th level wizard died from a poisoned spike trap.

To the author profile
Liked this article? Share now!
Recommended articles
Latest articles
Push notification Next article
No comments
Write new comment:
All changes will be saved. No drafts are saved when editing
Write new comment:
All changes will be saved. No drafts are saved when editing