Friday, July 10, 2026
  • Login
Techstory Australia
  • Home
  • News
  • AI
  • Social Media
  • Technology
  • Markets
No Result
View All Result
  • Home
  • News
  • AI
  • Social Media
  • Technology
  • Markets
No Result
View All Result
Techstory Australia
No Result
View All Result
Home Social Media

WhatsApp Fixes Critical Security Flaw Exploited in iPhone and Mac Spyware Attacks

The security loophole involved a weakness in WhatsApp’s linked-device feature, which enables users to access their account across multiple devices.

Sara Jones by Sara Jones
August 31, 2025
in Social Media, Technology
0
WhatsApp Banned on House Staffers’ Devices Over Security Concerns

PHOTO CREDITS : Verdict

75
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter

WhatsApp has patched a critical security vulnerability in its iOS and macOS applications that was actively exploited to deliver zero-click spyware to iPhone and Mac users. The flaw, discovered earlier this year, allowed attackers to remotely compromise devices without any interaction from the victim — a hallmark of sophisticated cyber-espionage campaigns.

You might also like

Apple Inks Over $30 Billion Broadcom Deal to Make Billions of US-Made Chips Through 2031

New York to Ban Smart Glasses From All Courthouses in Push for Stronger Privacy and Security

Mark Zuckerberg’s Biggest Legal Nightmare Yet Could Cost Meta $1.4 Trillion

The security loophole involved a weakness in WhatsApp’s linked-device feature, which enables users to access their account across multiple devices. According to engineers involved in the investigation, attackers were able to abuse this function to send specially crafted synchronization messages. These messages bypassed normal verification checks and triggered malicious content processing on the target’s device.

WhatsApp fixes security flaw used in iPhone, Mac spyware hacks

What made this vulnerability particularly dangerous was that it could be exploited silently. Victims did not need to click on links, open files, or engage with suspicious messages. The exploit chain used the WhatsApp flaw in conjunction with a separate vulnerability in Apple’s operating system, affecting the ImageIO framework, which handles the rendering of image files. By combining the two weaknesses, attackers were able to achieve remote code execution, allowing them to install spyware without alerting the user.

WhatsApp has since rolled out updates for its iOS and Mac apps to address the flaw. The patched versions are now available on the App Store and WhatsApp’s official website. Users running older versions of the app are strongly advised to update immediately, particularly those who believe they may be high-risk targets — such as journalists, human rights defenders, political activists, or members of civil society organizations.

While the full scope of the attack is still under investigation, it is believed that fewer than 200 individuals were targeted globally. The nature of the victims and the stealth of the operation suggest that the exploit was used in a highly selective espionage campaign. Meta, WhatsApp’s parent company, has taken steps to notify affected individuals and provide them with guidance on securing their devices.

According to cybersecurity experts familiar with the case, the spyware delivered through this attack had advanced capabilities. Once installed, it could silently access the microphone, camera, messages, photos, and other sensitive data. In some cases, it could even monitor encrypted communications in real time — all without triggering any system alerts or visual indicators.

This incident marks the latest in a series of zero-click attacks targeting mobile messaging platforms. These types of exploits are among the most dangerous in the cybersecurity landscape, as they bypass traditional defenses and exploit vulnerabilities in apps or operating systems at a deep technical level. They are often developed and deployed by private surveillance companies or state-sponsored actors.

WhatsApp emphasized that the vulnerability was addressed swiftly upon detection. The company’s security team collaborated with external researchers and incident response partners to analyze the exploit and release the fix. Although no official attribution has been made, internal investigations are ongoing, and law enforcement agencies in several countries have been notified.

Apple has also released updates for its operating systems, addressing the vulnerability in ImageIO that was used in conjunction with the WhatsApp flaw. Users are urged to install these updates immediately to prevent any further exploitation.

This case underscores the evolving threat landscape for mobile devices, particularly those used by high-profile individuals. While platforms like iOS and WhatsApp are considered secure, no system is entirely immune to novel attack methods. The incident also highlights the importance of maintaining regular software updates and adopting strong security practices, especially for individuals who may be targeted due to their work or affiliations.

Countries question WhatsApp's role in surveillance as digital tensions rise  - Türkiye Today

Security experts advise that those who suspect they may have been targeted by such an attack take proactive measures. These include updating to the latest versions of both WhatsApp and their operating system, enabling automatic updates, and performing a full device reset if they’ve received a threat notification or detect unusual behavior.

In addition, users in sensitive professions are encouraged to use features like Lockdown Mode on iPhones — a protective setting designed to limit potential attack vectors from highly targeted exploits. Tools like this can help reduce exposure, although they may come with some trade-offs in user experience.

The incident has reignited concerns about the proliferation of commercial spyware and the lack of global oversight in its development and distribution. Human rights organizations have repeatedly warned about the misuse of surveillance tools, which often end up in the hands of repressive regimes or are sold to entities with limited accountability.

As mobile devices become more central to personal and professional life, their security remains a high priority. Companies like Meta and Apple continue to invest heavily in defending against emerging threats, but this latest attack serves as a reminder that the digital arms race between attackers and defenders is ongoing.

For everyday users, the best defense remains vigilance: keeping software up to date, limiting exposure to unknown links or files, and watching for signs of unusual activity on devices. For organizations and individuals at elevated risk, enhanced measures — such as threat monitoring tools and partnerships with digital security nonprofits — can provide critical protection.

In the wake of this attack, WhatsApp reaffirmed its commitment to user security and privacy. The company stated it would continue working with the broader security community to identify and neutralize emerging threats, while advocating for greater transparency and accountability in the spyware industry.

Tags: Critical Security FlawiPhone and MacSpyware AttackstechstorywhatsappWhatsApp newsWhatsApp updates
Share30Tweet19
Sara Jones

Sara Jones

Recommended For You

Apple Inks Over $30 Billion Broadcom Deal to Make Billions of US-Made Chips Through 2031

by Sara Jones
July 9, 2026
0
Apple’s Upcoming iPhone Could Have OpenAI’s Generative AI Tech: Report

Apple has entered into a landmark semiconductor supply agreement worth more than $30 billion with Broadcom to manufacture billions of chips in the United States through 2031. The...

Read more

New York to Ban Smart Glasses From All Courthouses in Push for Stronger Privacy and Security

by Sara Jones
July 8, 2026
0
New York to Ban Smart Glasses From All Courthouses in Push for Stronger Privacy and Security

New York is set to introduce a statewide ban on smart glasses in all courthouses, marking a significant step toward strengthening privacy and courtroom security as wearable technology...

Read more

Mark Zuckerberg’s Biggest Legal Nightmare Yet Could Cost Meta $1.4 Trillion

by Sara Jones
July 8, 2026
0
Mark Zuckerberg’s Biggest Legal Nightmare Yet Could Cost Meta $1.4 Trillion

Meta Platforms is facing what could become the most expensive legal battle in corporate history, with four U.S. states seeking an extraordinary $1.4 trillion in civil penalties over...

Read more

Scotland Weighs Moratorium on New Data Centres, Raising Questions Over UK’s AI Growth Strategy

by Sara Jones
July 7, 2026
0
Scotland Weighs Moratorium on New Data Centres, Raising Questions Over UK’s AI Growth Strategy

The Scottish government is considering a proposal to temporarily halt the construction of new data centres, a move that could have far-reaching implications for the United Kingdom's ambitions...

Read more

Samsung’s Chip Division Set for Historic Profit Milestone as AI Boom Fuels Record Earnings

by Sara Jones
July 7, 2026
0
Former Samsung Executives Arrested for Allegedly Stealing Memory Tech to Build Chip Factory in China

Samsung Electronics is witnessing one of the most remarkable financial achievements in its history, with its semiconductor division on course to generate more operating profit in a single...

Read more
Next Post
Justin Sun Backs Historic 60% TRON Fee Cut to Drive Network Growth

Justin Sun Backs Historic 60% TRON Fee Cut to Drive Network Growth

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Related News

Apple iPhone 16 Pro Users Report Unresponsive Touchscreens, Prompting Company Response

Apple iPhone 16 Pro Users Report Unresponsive Touchscreens, Prompting Company Response

September 23, 2024
Microsoft Confirms Windows 11 Automatic Deletions: Take Action Now To Protect Yourself

Microsoft Confirms Windows 11 Automatic Deletions: Take Action Now To Protect Yourself

June 24, 2025
U.S. and European Union Reach Agreement on 15% Import Tariff

U.S. and European Union Reach Agreement on 15% Import Tariff

July 31, 2025

Browse by Category

  • AI
  • Archives
  • Business
  • Crypto
  • Finance
  • Investing
  • Markets
  • News
  • Social Media
  • Technology

Techstory.com.au

Tech, Crypto and Financial Market News from Australia and New Zealand

CATEGORIES

  • AI
  • Archives
  • Business
  • Crypto
  • Finance
  • Investing
  • Markets
  • News
  • Social Media
  • Technology

BROWSE BY TAG

amazon apple apple news apple updates Artificial intelligence Artificial Intelligence news Artificial Intelligence updates australia Australia news Australia updates Chatgpt china China news China updates Donald Trump Donald Trump news Donald Trump updates Elon musk elon musk news Elon Musk updates google google news Google updates meta meta news meta updates Microsoft microsoft news microsoft updates OpenAI OpenAI news OpenAI updates Social media tech news technology Technology news technology updates techstory tech story Tesla tesla news tesla updates united States united States news United States updates

© 2023 Techstory Media. Editorial and Advertising Contact : hello@techstory.com.au

No Result
View All Result
  • Home
  • News
  • Technology
  • Markets
  • Business
  • AI
  • Investing
  • Social Media
  • Finance
  • Crypto

© 2023 Techstory Media. Editorial and Advertising Contact : hello@techstory.com.au

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?