img-banner

published há 15 dias

Israeli spyware Graphite targeted WhatsApp with 0-Click exploit

- Cybersecurity researchers from the Citizen Lab at the University of Toronto have discovered the use of advanced spyware called Graphite, made by the Israeli company Paragon Solutions, to target influential people through WhatsApp. Their study found a previously unknown vulnerability in WhatsApp that allowed attackers to install the spyware using a zero-click exploit, meaning that users did not need to click anything for their devices to be compromised. - Paragon Solutions, which was established in 2019 by figures including former Israeli Prime Minister Ehud Barak, claims to follow ethical standards, unlike other spyware companies such as the NSO Group. However, the Citizen Lab researchers found servers linked to Graphite and identified its use against journalists, human rights defenders, and government critics in countries like Italy, Israel, Canada, Cyprus, Denmark, Australia, and Singapore. Meta, the parent company of WhatsApp, confirmed that about 90 users in 24 countries were targeted. A significant part of the research focused on the Ontario Provincial Police (OPP) in Canada, uncovering connections between Paragon and police services in Ontario that systematically used spyware. - The investigation particularly spotlighted Italy, where forensic examinations of Android devices belonging to individuals alerted by WhatsApp, including journalist Francesco Cancellato and founders of Mediterranea Saving Humans, showed clear signs of Graphite spyware. Researchers identified a distinctive Android forensic artifact called BIGPRETZEL, which proved the spywares presence on these devices. Initially, the Italian government denied involvement but later admitted to having contracts with Paragon. - Additionally, the probe included an iPhone belonging to an associate of Paragon targets. Apple received threat notifications about an attempted spyware infection, which was patched in iOS 18. In response to these findings, Meta, Apple, and Google worked together to fix the security vulnerability. WhatsApp informed the targeted users about potential threats to their devices. - Despite NSO Group being found legally liable for unauthorized access to WhatsApp accounts, reports indicate that they continue developing new malware exploiting WhatsApp vulnerabilities. These findings highlight the ongoing battle between tech companies and malicious entities over user privacy, emphasizing the need for stronger security measures and accountability in the spyware industry to defend digital rights.