"WhatsApp on Friday accused the commercial surveillance company Paragon of targeting about 90 of its users with spyware.

The Meta-owned messaging platform said it believes the targets include journalists and members of civil society. The company said it had disrupted the attack vector, which involved a malicious PDF file that was sent to intended victims.

WhatsApp determined Paragon, which was founded by former Israeli intelligence officers, was responsible for the attempted intrusions, and the company said it had contacted those targeted to make them aware of the incident. It also said it has sent Paragon a cease-and-desist letter.

“This is the latest example of why spyware companies must be held accountable for their unlawful actions,” a WhatsApp spokesperson said in a statement.

The company has aggressively pursued spyware companies targeting its users, and in December a California federal judge ruled that NSO Group, the manufacturer of the spyware Pegasus, was liable for having infected mobile devices of about 1,400 WhatsApp users in 2019."

https://therecord.media/whatsapp-paragon-spyware-targeting-users

#CyberSecurity #Spyware #Paragon #Surveillance #WhatsApp #Israel

  • Miguel Afonso Caetano@tldr.nettime.orgOP
    4·
    3 days ago

    "An Italian investigative journalist who is known for exposing young fascists within prime minister Giorgia Meloni’s far-right party was targeted with spyware made by Israel-based Paragon Solutions, according to a WhatsApp notification received by the journalist.

    Francesco Cancellato, the editor-in-chief of the Italian investigative news outlet Fanpage, was the first person to come forward publicly after WhatsApp announced on Friday that 90 journalists and other members of civil society had been targeted by the spyware.

    The journalist, like dozens of others whose identities are not yet known, said he received a notification from the messaging app on Friday afternoon.

    WhatsApp, which is owned by Meta, has not identified the targets or their precise locations, but said they were based in more than two dozen countries, including in Europe.

    WhatsApp said it had discovered that Paragon was targeting its users in December and shut down the vector used to “possibly compromise” the individuals. Like other spyware makers, Paragon sells use of its spyware, known as Graphite, to government agencies, who are supposed to use it to fight and prevent crime."

    https://www.theguardian.com/technology/2025/jan/31/italian-journalist-whatsapp-israeli-spyware

    • Miguel Afonso Caetano@tldr.nettime.orgOP
      2·
      3 days ago

      "Paragon’s spyware was allegedly delivered to targets who were placed on group chats without their permission, and sent malware through PDFs in the group chat. Paragon makes no-click spyware, which means users do not have to click on any link or attachment to be infected; it is simply delivered to the phone.

      It is not clear how long Cancellato may have been compromised. But the editor published a high-profile investigative story last year that exposed how members of Meloni’s far-right party’s youth wing had engaged in fascist chants, Nazi salutes and antisemitic rants.

      Fanpage’s undercover reporters – although not Cancellato personally – had infiltrated groups and chat forums used by members of the National Youth, a wing of Meloni’s Brothers of Italy party. The outlet published clips of National Youth members chanting “Duce” – a reference to Benito Mussolini – and “sieg Heil”, and boasting about their familial connections to historical figures linked to neo-fascist terrorism. The stories were published in May."