WhatsApp fixes zero-click spyware bug targeting Apple users - ShiftDelete.Net Global

ShiftDelete.net
FOLLOW US

WhatsApp fixes zero-click spyware bug targeting Apple users

WhatsApp patched a “zero-click” bug on iOS and Mac that hackers used to install spyware, targeting fewer than 200 Apple device users.

whatsapp-zero-click-1

WhatsApp has patched a dangerous flaw in its iOS and Mac apps that allowed hackers to break into Apple devices without the victims clicking a thing. The zero-click exploit, linked to a broader Apple vulnerability fixed last week, was used in what security experts describe as a targeted spyware campaign.

How the WhatsApp bug was exploited

whatsapp-zero-click-2

The flaw, officially tracked as CVE-2025-55177, worked in tandem with Apple’s CVE-2025-43300. Together, the two bugs gave attackers a way to deliver malicious code through WhatsApp, compromising both the device and the user’s private data.

According to Amnesty International’s Security Lab, the exploit was used in “an advanced spyware campaign” running since late May. Victims didn’t need to tap, open, or accept anything; the attack required no interaction at all.

Once triggered, the exploit could access data on the device, including WhatsApp messages.

Gmail users receive emergency warning from Google

Gmail users receive emergency warning from Google

Gmail users face new cyber threats after a Salesforce breach, as Google issues an emergency warning and urges stronger security measures.

Who was targeted in the spyware campaign

Meta, WhatsApp’s parent company, confirmed that it detected the flaw weeks ago and quietly patched it. Fewer than 200 people received notifications that their accounts had been targeted.

So far, WhatsApp has not identified which spyware vendor or government-backed actor was behind the campaign. Still, the nature of the attack suggests highly resourced operators.

WhatsApp’s long fight against spyware

This isn’t the first time WhatsApp has been a battleground for surveillance tools.

  • In 2019, spyware maker NSO Group hacked more than 1,400 users with its Pegasus malware. A U.S. court later ordered NSO to pay WhatsApp $167 million in damages.
  • Earlier in 2025, WhatsApp disrupted another spyware campaign targeting 90 users in Italy, where Paragon’s tools were linked to government use.

Each case highlights how zero-day exploits can compromise even fully updated devices.

What users should know now?

WhatsApp says the vulnerability is patched, and Apple addressed its side of the exploit last week. Still, users are encouraged to keep devices updated, enable automatic patches, and watch for official notifications from Apple or WhatsApp.

While fewer than 200 people were hit this time, the attack shows just how advanced spyware has become and why staying one step ahead matters more than ever.

bug
security
spy
WhatsApp

SDN Comments 0 Comments

Comment

HOW TOAll

Related News

HMD-101-4G-1
HMD 101 4G revives the basics with Snake, AUX, and dual SIM for $22
Asus-ProArt-P16-1
ProArt P16 lands RTX 5090 upgrade and a stunning 4K OLED boost
Nothing Ear 3 unveiled
Nothing Ear 3 unveiled
OpenAI is addressing incorrect AI answers!
OpenAI is addressing incorrect AI answers!

SDN Network

Sihirli Elma Yeşil Robot Tech Inside Pembe Teknoloji Future Flow Life

SDN.net

1250 BORREGAS AVENUE, #40, SUNNYVALE, CA
94089 ShiftDelete.Net LLC

info@shiftdelete.net

Shiftdelete.Net is a member of the Association of Internet Media and IT Reporters.

Desteklio