WhatsApp has identified a spyware campaign targeting approximately 90 individuals, including journalists and civil society members, linked to the Israeli firm Paragon Solutions.
The attack, occurring in December 2024, exploited malicious PDF files distributed via WhatsApp groups, triggering a zero-click exploit that compromised devices without user interaction. WhatsApp has notified affected users, issued a cease-and-desist letter to Paragon, and is considering legal action. Paragon, acquired by AE Industrial Partners, has not responded to the allegations.
Expert Analysis:
Paragon claims to sell its spyware exclusively to “democratic and rule-of-law-abiding” governments, yet its tools are now implicated in attacks on journalists and civil society. The irony is striking but not surprising—spyware firms have long justified their existence under the guise of lawful surveillance, only to see their products weaponized against those exposing abuses of power. WhatsApp’s intervention may temporarily disrupt this campaign, but the reality remains: as long as commercial spyware operates in a legal gray zone, it will continue to be a tool of oppression, conveniently disguised as security.
Read the full article here.