WhatsApp has issued a warning to its users, revealing that nearly 100 individuals across more than two dozen countries were targeted by a sophisticated hacking tool. The spyware, which was developed by Israeli company Paragon Solutions, specifically targeted journalists and members of civil society, making this an alarming breach of privacy. The hacking tool is believed to have been used by government clients, who claim to use it for crime-fighting and national security purposes.

Zero-Click Hack: No User Interaction Needed

Paragon Solutions’ spyware is a particularly concerning piece of technology, as it operates using a “zero-click” hack. This means that victims do not need to click on any malicious links or attachments for their devices to be compromised. Once infected, the spyware has full access to the phone, including encrypted messages, highlighting the severity of the attack.

WhatsApp confirmed that approximately 90 users were affected by this hack, though the company has not disclosed the identities of those targeted. The victims were sent malicious electronic documents that required no interaction to infiltrate their devices, a stark reminder of how stealthy and invasive this type of spyware can be.

WhatsApp Responds

The attack was initially detected in December, and WhatsApp has since been working to notify the affected users. While the company has not revealed the exact methods it used to trace the hack back to Paragon Solutions, it has confirmed that law enforcement and industry partners are involved in the ongoing investigation.

A WhatsApp spokesperson told Reuters, “We are continuing to protect people’s ability to communicate privately” and emphasized that a cease-and-desist letter had been sent to Paragon Solutions.

Researchers like John Scott-Railton from Citizen Lab have expressed concern over the proliferation of such spyware, calling it a “reminder that mercenary spyware continues to proliferate” and noting the recurring patterns of misuse. Natalia Krapiva, a senior tech-legal counsel, highlighted the broader implications of these attacks, saying, “This is not just a question of some bad apples—these types of abuses are a feature of the commercial spyware industry.”

Paragon Solutions Declines to Comment

Paragon Solutions, which was recently acquired by AE Industrial Partners, declined to comment on the matter. While the company positions itself as offering ethical tools for combating intractable threats, the revelations surrounding its spyware suggest a darker side to the industry’s growing reliance on commercial surveillance technologies.WhatsApp has assured users that it is taking all necessary steps to protect their privacy and prevent further breaches.