A serious WhatsApp security flaw has been patched after hackers used it to target Apple devices. Meta Platforms, which owns WhatsApp, confirmed the exploit in a blog post. The bug, chained with a weakness in iOS and iPadOS, allowed attackers to steal data from vulnerable devices.
According to Donncha Ó Cearbhaill of Amnesty’s Security Lab, the campaign lasted about 90 days. He warned on X that other apps beyond WhatsApp might also have been affected.
Meta said fewer than 200 users were targeted in the attack. The company notified those impacted and urged everyone to update to the latest app version to stay protected. Meta stressed that the vulnerability only affected specific individuals, not the wider user base.
Apple also acknowledged flaws in its systems. The company quickly rolled out iOS and iPadOS patches to address the issue.
So far, it remains unclear who orchestrated the attack or whether a spyware vendor was involved. The case highlights the growing sophistication of targeted digital surveillance. Both WhatsApp and Apple recommend immediate updates as the best defense.
