AI Generated Content

This may include content generated using AI tools. Glance teams are making active and commercially reasonable efforts to moderate all AI generated content. Glance moderation processes are improving however our processes are carried out on a best-effort basis and may not be exhaustive in nature. Glance encourage our users to consume the content judiciously and rely on their own research for accuracy of facts. Glance maintains that all AI generated content here is for entertainment purposes only.
Feedpost Specials    •    5 min read

WhatsApp Alerts Users to Sophisticated Spyware Hidden in Fake App

WHAT'S THE STORY?

Discover how a cunning tactic by a spyware firm led to fake apps tricking hundreds of users. Learn about WhatsApp's swift action to protect its community and prevent further compromise.

Malicious App Detected

WhatsApp recently identified and alerted around 200 individuals, primarily located in Italy, who had inadvertently downloaded a deceptive imitation of

AD

the popular messaging application. This counterfeit app was engineered by an Italian entity specializing in government spyware, with the intent to infiltrate users' devices and monitor their communications. The company's security teams were instrumental in proactively discovering this threat, which was disguised as the legitimate WhatsApp service for iOS devices. Upon detection, WhatsApp took immediate steps to secure these affected accounts by logging users out, issuing crucial warnings about the inherent risks associated with unofficial application clients, and strongly advising the removal of the malicious software in favor of the genuine application.

Spyware Firm Identified

The entity responsible for the creation of this deceitful application has been identified as an Italian firm known for its involvement in developing government surveillance tools. This particular spyware, potentially identified within its code as 'Spyrtacus,' had previously been linked to a series of malicious Android applications. These included fake versions of popular services like WhatsApp, as well as simulated customer support applications designed to mislead users of mobile carriers. This past activity demonstrates a pattern of deceptive practices aimed at deploying surveillance technology through seemingly harmless software. The company has indicated its intention to pursue legal avenues, planning to issue formal demands to cease these harmful activities directed at the spyware firm.

Broader Surveillance Tactics

The use of counterfeit applications as a method to target individuals for surveillance is a recognized tactic, particularly in certain regions where authorities may collaborate with mobile providers. This collaboration can involve the distribution of phishing links to customers, ostensibly on behalf of law enforcement agencies, which can then lead to the installation of spyware. This incident with WhatsApp echoes similar past events where users were targeted with sophisticated spyware. For example, approximately a year prior, WhatsApp notified around 90 users, including journalists and activists, about being targeted by spyware from a different surveillance technology maker. That situation led to significant repercussions, including the involved company severing ties with Italian intelligence agencies that were its clients, highlighting the sensitive nature and broad implications of such surveillance operations.

AD
More Stories You Might Enjoy

WhatsApp warns of fake iPhone app spreading spyware, 200 users targeted

whatsapp alerted users to advanced spyware delivered via a fake ios app, primarily impacting individuals in italy. the malicious app, linked to an italian surveillance firm, accessed sensitive data like messages and recordings. whatsapp removed affected users and urged them to uninstall unofficial apps, planning legal action against the firm. this follows prior spyware incidents targeting journalists and activists.

AI Generated Content
AD

Beware! WhatsApp Warns Of Fake App Laced With Spyware, Warns 200 Users

meta alerted around 200 iphone and android users to a malicious whatsapp imitation, linked to italian firm asigint. users were tricked into installing the fake app through social engineering, compromising their devices. whatsapp swiftly disabled accounts and warned users, emphasizing the incident didn't involve a platform vulnerability, but user manipulation via unofficial channels.

AI Generated Content

WhatsApp alerts 200 users hit by spyware via fake iPhone app, blames Italian firm

around 200 whatsapp users, primarily in italy, were tricked into installing a malicious app disguised as the messaging service. the attack, likely orchestrated by an italian surveillance firm, exploited user trust through social engineering, bypassing app store safeguards. meta took action, warning affected users and pursuing legal steps against the suspected developer, emphasizing vigilance against deceptive links and verifying download sources.

AI Generated Content

Italian Firm's Spyware Trick: WhatsApp Users Fooled into Downloading Malware

an italian company, asigint (a subsidiary of sio), tricked roughly 200 users into installing malware disguised as whatsapp. the deceptive app allowed for surveillance, bypassing typical security measures through social engineering. this marks the second spyware incident linked to italy in 15 months, raising privacy concerns and prompting questions about oversight.

AI Generated Content
AD

WhatsApp malware alert: Simple file can hack your PC, Says Microsoft

microsoft researchers identified a malware campaign spreading via whatsapp, exploiting user trust with seemingly harmless files. the attack uses social engineering and existing system tools, disguising malicious activity by utilizing trusted cloud platforms like aws and tencent cloud. once active, it gains admin control, weakens system defenses, and installs remote access tools, ultimately compromising the system. user caution is vital.

AI Generated Content

DoT extends SIM binding deadline to December 2026 for messaging

the department of telecommunications (dot) has extended the sim binding deadline to december 2026. this delay allows messaging apps like whatsapp, telegram, and signal more time to comply with the rule requiring account linking to specific sim cards. technical challenges from apple and meta, along with concerns about dual-sim users, prompted the extension.

AI Generated Content

Instagram DMs: Navigating Privacy Shifts Post-Encryption Rollback

instagram is altering dm encryption, prioritizing safety monitoring and user convenience over absolute privacy. this shift, driven by regulatory pressure and limited adoption of encryption, allows the platform to access messages for content moderation and safety reasons, though not necessarily through human review. users should now be cautious about sharing sensitive information via instagram dms and consider alternative, more secure messaging apps.

AI Generated Content
AD

SIM Binding Deadline Extended: Why Messaging Apps Need More Time

messaging platforms like whatsapp, signal, and telegram, along with tech giants like apple and google, have received an extension for complying with sim binding regulations. initially slated for february 2026, the deadline is now the end of the year due to implementation challenges. the directive, aimed at bolstering national security and reducing fraud by linking user accounts to sim cards, faces technical hurdles and concerns about user experience.

AI Generated Content

Messaging App Security Boosted: SIM Linking Deadline Extended to December

Messaging apps like WhatsApp, Telegram, and Signal face a December deadline to link user accounts with SIM cards, an extended security measure to combat digital fraud. This government-mandated upgrade, initially for Feb 2026, aims to bolster online safety, starting with Android devices, while minimizing user disruption.

AI Generated Content

SIM Binding rulesface delay as Tech firms flag challenges

india's plan to link messaging apps to sim cards is facing delays due to technical challenges reported by companies like whatsapp, signal, and telegram. the government is now considering a phased rollout, potentially extending the deadline to december. the aim is to reduce fraud and misuse by requiring apps to verify accounts via sim cards, potentially necessitating frequent re-authentication. android compliance is expected sooner than ios.

AI Generated Content
AD