Malicious WhatsApp version used to distribute spyware, activate cameras, listen to calls

Published: 3 April 2026
Last updated: 3 April 2026
WhatsApp logo reflection on a smartphone's screen, green, white
WhatsApp logo reflection on a smartphone's screen. Samuel Boivin/NurPhoto/Getty.

Meta, the parent company of WhatsApp, has notified users who downloaded a spyware-infected version of WhatsApp.

Key takeaways:
  • Victims, mostly in Italy, were socially engineered into installing a fake WhatsApp loaded with spyware.
  • The malware could steal messages, intercept calls, activate cameras, and listen through microphones.
  • Meta says ASIGINT, a subsidiary of wiretapping company SIO, developed the malicious app.
Key Takeaways by nexos.ai, reviewed by Cybernews staff.

The victims, who are mainly located in Italy, were allegedly tricked into installing a fake version of WhatsApp through social engineering tactics.

ADVERTISEMENT

The fake version contained spyware that could steal text messages, chats, and contact information from WhatsApp, Signal, and Facebook Messenger. In addition, the spyware was able to intercept telephone calls, listen in on the victim’s surroundings by misusing the microphone, and use the camera to take pictures.

The 200 affected users were logged out of their accounts and then warned to uninstall the app and download the official app from the App Store.

woman sits on wooden railing, looks at smartphone, wooden house, black jeans, blue hoody
Woman sits on a wooden railing and looks at her smartphone. Michael Nguyen/NurPhoto/Getty.

“To protect our users from this type of malicious activity, Meta constantly monitors its network for signals attributable to tampered or unofficial clients,” Meta said in a statement to Italian news outlet La Repubblica.

The scam didn’t exploit an inherent vulnerability in WhatsApp’s systems.

“We are not facing a breach of WhatsApp’s official applications, infrastructure, or encryption. Users’ personal communications through our official application continue to be protected by end-to-end encryption and default privacy settings,” the company added to its statement.

According to Meta, ASIGINT, an Italian-based tech company, developed the spyware. ASIGINT is a subsidiary of SIO, a company that’s been associated with wiretapping and surveillance software.

jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Follow us
ADVERTISEMENT

Meta says it has contacted ASIGINT to cease all harmful activities.

This isn’t the first time WhatsApp has had to deal with spyware.

In January 2025, the messaging app had to warn about 90 users that they were targeted with Paragon Solutions’ spyware, Graphite. Paragon declined to comment but claimed to offer its products and services only to governments in stable democratic countries.

The conversation on this topic is live. Join in the discussion.

Back in 2019, WhatsApp sued NSO Group after an eavesdropping campaign that targeted over 1,400 WhatsApp users, including human rights activists, journalists, and government officials.

In May 2025, a jury decided that NSO Group had to pay $167 million in punitive damages. A few months later, in October 2025, the fine was lowered to $4 million.

Unlock more exclusive Cybernews content on YouTube.

ADVERTISEMENT
Share
Post
Share
Share
Share
More from Cybernews
Companies using Fable 5 beware: it’s collecting your data, and there are no exceptions
World’s leading mathematicians ridicule AI hype in high-IQ declaration
Democrats are far more worried than Republicans that AI will take jobs, new poll finds
Europe’s tech revolution feels like Soviet déjà vu
New York demands advertisers use “synthetic performer” label or else
The surprising way Elon Musk is powering your next holiday flight
ADVERTISEMENT