Meta Accuses Israeli Spyware Firm ‘Paragon Solutions’ of Targeting WhatsApp Users

• A WhatsApp zero-click exploitation raises alarms as users are targeted with spyware.
• Meta alleges the Israeli spyware company Paragon Solutions targeted WhatsApp users in several countries.
• Among the targeted individuals from multiple regions, including Europe, are journalists.

Meta Platforms has accused Israeli spyware company Paragon Solutions of targeting approximately 90 WhatsApp users, including journalists and members of civil society, across more than two dozen countries. 

A WhatsApp official disclosed these allegations on Friday and confirmed that Paragon had been recently issued a cease-and-desist letter following the hacks.

The parent company of WhatsApp believes the attack utilized a zero-click exploit, a sophisticated hacking method where malicious electronic documents were sent to users and exploited their devices without requiring interaction. This type of hack is particularly concerning for its stealthy nature, as it can compromise devices undetected.

Specific details regarding the targeted individuals were not revealed, though the WhatsApp official noted that the victims span multiple regions, including Europe. WhatsApp has since disrupted the hacking campaign and is working with Citizen Lab, a Canadian internet watchdog group, to assist those affected.

WhatsApp reaffirmed its commitment to user privacy in a statement, emphasizing that the company will "continue to protect people’s ability to communicate privately." Meta has also reported the incident to law enforcement and industry partners but has withheld further specifics on these engagements.

Citizen Lab researcher John Scott-Railton commented on the case, stating that the involvement of Paragon spyware is another reminder of how mercenary spyware continues to proliferate and the recurring instances of its abuse. 

Spyware companies like Paragon typically develop and sell high-end surveillance software to government clients, promoting their tools as essential for combating crime and bolstering national security. 

However, such technologies have drawn significant scrutiny, with repeated discoveries of spyware targeting activists, journalists, political opposition figures, and even U.S. officials.

This latest incident adds to ongoing concerns over the unchecked spread and misuse of advanced surveillance tools. Security experts warn of a repeating pattern where these technologies, marketed for legitimate purposes, are repurposed for problematic activities.

The FBI has declined to comment on the matter so far, as have representatives from Paragon.

In December, Israeli vendor NSO Group was found guilty of distributing Pegasus spyware via WhatsApp. The court ruled that NSO violated WhatsApp's terms of service by using the platform for malicious purposes and reverse engineering.