Technology

WhatsApp Patches “Extremely Sophisticated” Zero-Click Spyware Attack Targeting iPhones

Shirley Thornton 0

September 1, 2025

WhatsApp has confirmed it was recently exploited in an advanced cyberespionage campaign that primarily targeted iPhone users through a “zero-click” vulnerability, meaning victims could be hacked without taking any action.

A Silent Infiltration

The attack was enabled through a chain of vulnerabilities. One flaw inside WhatsApp’s linked device feature was exploited to process malicious content from unknown sources. At the same time, a weakness in Apple’s Image I/O framework allowed hackers to silently install spyware on devices. Together, these security gaps created a path for attackers to break into phones and potentially monitor sensitive information without leaving obvious traces.

Who Was Affected

The operation was highly selective, affecting fewer than 200 users globally. Early investigations suggest that civil society groups, activists, and other high-risk individuals were among the primary targets. Security experts believe the campaign was not designed for mass exploitation but for precise surveillance.

WhatsApp’s Response

The company acted quickly by releasing updated versions of the app for both iOS and macOS, closing off the exploited loopholes. Users believed to have been affected were individually notified. For complete safety, WhatsApp advised some users to perform full factory resets of their devices.

How Users Can Protect Themselves

  • Update immediately: Always run the latest versions of both your operating system and WhatsApp.
  • Enable advanced security: Features like Lockdown Mode on iOS add another layer of defense.
  • Reset if necessary: If you receive a security alert, a complete wipe and reinstall of your device may be the safest step.

Why It Matters

Zero-click attacks are among the most dangerous forms of digital intrusion because they do not require any interaction from the victim. They are typically reserved for highly targeted surveillance campaigns, often aimed at journalists, activists, or government critics. This incident underscores the growing sophistication of spyware tools and the importance of staying vigilant about security updates.

Shirley Thornton

Website:

Related Story

Leave a Reply

Your email address will not be published. Required fields are marked *