WhatsApp urges users to act after cyber surveillance attack on app

(c) Sky News 2019: <a href="http://news.sky.com/story/whatsapp-confirms-surveillance-attack-by-advanced-cyber-actor-11719463">WhatsApp urges users to act after cyber surveillance attack on app</a>
 

WhatsApp has urged users around the world to update the messaging app after it was targeted by a cyber surveillance attack.

Dozens of WhatsApp users, including human rights organisations and a UK-based lawyer, are thought to have been targeted after hackers exploited a major vulnerability in the app in an attempt to take over the operating system.

The attackers were able to install spyware through WhatsApp's voice call function, even if the user did not pick up the call, the company confirmed.

The breach was discovered in early May and has since been fixed but WhatsApp, which claims to have more than 1.5 billion users, has urged people to update the app to the latest version.

The company said it was targeted by an "advanced cyber actor" and worked with Citizen Lab in Toronto to roll out a patch to fix the issue.

Engineers said that people who were targeted may have had one or two missed calls from a number they did not know.

But the targets did not have to answer the call in order for the code to be "shipped" and in some cases a missed call notification was wiped.

WhatsApp said the attack was discovered when it put additional security enhancements on their voice calls.

Meanwhile, Citizen Lab said an attacker attempted to exploit the app, and was blocked, as recently as Sunday evening.

"There's nothing a user could have done here, short of not having the app," a Citizen Lab researcher said.

The Financial Times reported the spyware was developed by NSO Group, an Israeli cybersecurity and intelligence company.

:: Listen to the New Lines podcast on Apple podcasts , Google Podcasts , Spotify , Spreaker

However, NSO Group said in a statement: "Under no circumstances would NSO be involved in the operating or identifying of targets of its technology, which is solely operated by intelligence and law enforcement agencies.

"NSO would not, or could not, use its technology in its own right to target any person or organisation, including this individual (the UK lawyer)."

WhatsApp has not confirmed who developed the spyware but has not disputed reports blaming the NSO Group.

The NSO Group's spyware has repeatedly been found deployed to hack journalists, lawyers, human rights defenders and dissidents.

The spyware was implicated in the killing of journalist Jamal Khashoggi last year.

Alleged targets, including a friend of Khashoggi and several Mexican civil society figures, are suing NSO in an Israeli court.

WhatsApp said the latest incident carried the hallmarks of a private company which reportedly works with governments to deliver spyware that takes over the functions of mobile phone operating systems.

Users should also make sure their phone's operating system is up to date as that provides separate security.

Danna Ingleton, deputy director of Amnesty International Tech, tweeted: "Just to reiterate, this means 'zero click' targeting is actually happening. Now, more than ever, we need some accountability from this company and better Due Diligence processes in the industry."

Amnesty is backing legal action against the Israeli Ministry of Defence and demands it revokes the Group's export licence.

Ms Ingleton added: "NSO Group sells its products to governments who are known for outrageous human rights abuses, giving them the tools to track activists and critics."