27 September 2023

What’s hacked: WhatsApp accuses Israeli firm of malware injection

Start the conversation

Ivan Mehta* says WhatsApp is taking an Israeli security firm to court, claiming it injected malware into targets’ phones through its app.


WhatsApp has sued Israel-based security company, NSO Group, in a US Federal Court for allegedly injecting malware into over 1,400 targets’ phones through the messaging service.

The Facebook-owned company accused the NSO Group of installing the malware into phones for surveillance purposes.

The court filing says the security company wasn’t able to break WhatsApp’s end-to-end encryption, so it used malicious code to snoop on chat messages.

In May, the chat app patched a vulnerability that allowed hackers to install malware through an audio call even if you don’t answer it.

At the time, sources told the Financial Times that NSO Group was responsible for this exploit.

In a column posted in The Washington Post after the lawsuit, the company’s head, Will Cathcart said NSO Group targeted “at least 100 human-rights defenders, journalists and other members of civil society across the world.”

The notorious Israel-based security group has been accused of supplying snooping tools to various governments.

WhatsApp’s court filing alleges the security company says its Pegasus software “could remotely and covertly extract valuable information from virtually any mobile device.”

NSO Group has been involved in human rights issues as well.

Last year, Jamal Khashoggi, a journalist, was tortured and murdered by Saudi Arabia inside the country’s consulate in Istanbul.

Gizmodo notes the company’s spyware was found on the phone of one of Khashoggi’s contacts.

According to a report by Motherboard, the Group has been trying to clean up its image with select interviews and Google ads.

However, in an email statement to The Next Web, the firm said it disputes WhatsApp’s allegations strongly and takes action against any misuse of its service: “In the strongest possible terms, we dispute today’s allegations and will vigorously fight them.”

“The sole purpose of NSO is to provide technology to licensed government intelligence and law enforcement agencies to help them fight terrorism and serious crime.”

“Our technology is not designed or licensed for use against human rights activists and journalists.”

“It has helped to save thousands of lives over recent years.”

“The truth is that strongly-encrypted platforms are often used by paedophile rings, drug kingpins and terrorists to shield their criminal activity.”

“Without sophisticated technologies, the law enforcement agencies meant to keep us all safe face insurmountable hurdles.”

“NSO’s technologies provide proportionate, lawful solutions to this issue.”

“We consider any other use of our products than to prevent serious crime and terrorism a misuse, which is contractually prohibited.”

“We take action if we detect any misuse.”

“This technology is rooted in the protection of human rights – including the right to life, security and bodily integrity -and that’s why we have sought alignment with the UN Guiding Principles on Business and Human Rights, to make sure our products are respecting all fundamental human rights.”

Almost every communications software company like WhatsApp is facing pressure from governments across the world to install a backdoor to let them trace messages for security purposes.

However, if there’s a backdoor in services with end-to-end encryption, there’s a strong possibility of it being exploited by governments for snooping and censorship, and by bad actors to steal information.

Authorities across the globe must understand this threat and stop encouraging tools that can be used for mass surveillance.

* Ivan Mehta is a reporter at The Next Web. He tweets at @IndianIdle.

This article first appeared at thenextweb.com

Start the conversation

Be among the first to get all the Public Sector and Defence news and views that matter.

Subscribe now and receive the latest news, delivered free to your inbox.

By submitting your email address you are agreeing to Region Group's terms and conditions and privacy policy.