Israeli spyware company targeting Journalists, WhatsApp users

New York: WhatsApp has expressed concern that approximately 90 users, including journalists and civil society members, may have been the targets of a spyware campaign carried out by Paragon Solutions, an Israeli spyware company. The attack, which affected individuals across more than 20 countries, particularly in Europe, is believed to have used a method that illegally infiltrated users’ networks.

A WhatsApp spokesperson confirmed the news to NBC News, stating that the attack involved a “vector” — a technique used to access a network without authorization. The spyware was distributed via groups through a malicious PDF file. The company confirmed that the exploitation vector has now been successfully disrupted.

In response, WhatsApp sent a cease-and-desist letter to Paragon Solutions, demanding that they halt the spyware activity. Affected users were notified through WhatsApp chats and provided with guidance on how to secure their devices from further threats.

Experts have identified the attack as a “zero-click” hack, meaning that the targets did not have to click on any malicious links to be infected. This type of attack allows spyware to infiltrate a device silently, turning it into a tool for surveillance without the user’s knowledge.

Among those affected, Francesco Cancellato, the editor-in-chief of the Italian news outlet Fanpage.it, confirmed in an article on his platform that he was one of the targeted individuals.

John Scott-Railton, a senior researcher at Citizen Lab, explained that such an attack could effectively “turn a telephone into a spy in your pocket,” underscoring the potential dangers to privacy and security posed by this type of spyware.

Natalia Krapiva, senior tech-legal counsel at the advocacy group Access Now, praised WhatsApp’s response, sharing on X: “Great to see actions like these by platforms to protect their users’ privacy and security,” referring to the company’s decision to issue the cease-and-desist order. Though, Paragon Solutions has yet to comment on the issue.