Ethical Hacking News
Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order
In a significant development, Meta has detected and blocked a new spear-phishing attack linked to the Israeli spyware vendor, NSO Group. The company has also filed a federal court contempt order against NSO Group for violating a permanent injunction that barred it from targeting WhatsApp and its users. This comes as a year after NSO Group was fined $168 million for exploiting WhatsApp servers to deploy Pegasus spyware targeting over 1,400 individuals globally. Follow us on The Hacker News for the latest cybersecurity news and updates.
Meta has detected and blocked a new spear-phishing attack linked to NSO Group, targeting WhatsApp users.NSO Group was fined $168 million last year for exploiting WhatsApp servers to deploy Pegasus spyware.The company filed a federal court contempt order against NSO Group for violating a permanent injunction.WhatsApp users' personal messages and calls remain protected with default end-to-end encryption.Meta encourages users to enable strict account settings to harden their accounts against sophisticated cyber attacks.NSO Group's actions demonstrate a clear disregard for WhatsApp users' privacy and security, highlighting the need for greater regulation and oversight.
Meta, the social media giant, has once again demonstrated its commitment to protecting its users from sophisticated cyber threats by detecting and blocking a new spear-phishing attack linked to the Israeli spyware vendor, NSO Group. The company has also filed a federal court contempt order against NSO Group for violating a permanent injunction that barred it from targeting WhatsApp and its users.
According to Meta, the attackers attempted to trick people into clicking on malicious links to drive them to external websites outside of WhatsApp, similar to previously reported 1-click phishing campaigns linked to NSO. The company also stated that it caught NSO Group creating test accounts and groups on WhatsApp, which have since been taken down by Meta.
The list of malicious domains linked to the activity includes fr24cast[.]com, ghazacast[.]com, and ikhwancast[.]com. However, Meta did not disclose any technical details about the campaign, including when the activity occurred, how many users were targeted, if any of those attacks were successful, and how the activity was tied to NSO Group.
This development comes a year after NSO Group was fined approximately $168 million in monetary damages for violating U.S. laws by exploiting WhatsApp servers to deploy Pegasus spyware targeting over 1,400 individuals globally. The company was also added to a U.S. Commerce Department blocklist for engaging in activities that are "contrary to the national security or foreign policy interests of the United States."
As always, WhatsApp users' personal messages and calls remain protected with default end-to-end encryption. Meta encourages people to keep their apps and devices up to date and report suspicious activity so that it can quickly investigate and take action.
For users who believe they may be at elevated risk of sophisticated cyber attacks because of who they are and what they do, Meta recommends enabling strict account settings to harden their accounts. This feature reduces the attack surface by locking the account to more private settings, such as turning on two-step verification, turning off link previews, and limiting profile information to contacts only or a pre-established list of people.
The company notes that strict account settings are an advanced security feature that turns on privacy and security controls to help protect accounts from sophisticated cyber attacks. This feature is optional and provides significant protection against cyber threats.
In light of this new development, it is essential for WhatsApp users to be vigilant about the potential threats posed by NSO Group and other malicious actors. By taking proactive steps to secure their accounts and keeping their apps and devices up to date, users can significantly reduce their risk of falling victim to sophisticated phishing attacks.
Furthermore, the incident highlights the need for greater regulation and oversight of spyware vendors like NSO Group. The company's actions demonstrate a clear disregard for the privacy and security of WhatsApp users, and it is essential that governments and regulatory bodies take decisive action to hold such companies accountable.
In conclusion, Meta's efforts to detect and block NSO Group's phishing attack are a significant step forward in protecting WhatsApp users from sophisticated cyber threats. However, more needs to be done to prevent such attacks from occurring in the first place. By working together, we can create a safer and more secure online environment for all users.
Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order
In a significant development, Meta has detected and blocked a new spear-phishing attack linked to the Israeli spyware vendor, NSO Group. The company has also filed a federal court contempt order against NSO Group for violating a permanent injunction that barred it from targeting WhatsApp and its users. This comes as a year after NSO Group was fined $168 million for exploiting WhatsApp servers to deploy Pegasus spyware targeting over 1,400 individuals globally. Follow us on The Hacker News for the latest cybersecurity news and updates.
Related Information:
https://www.ethicalhackingnews.com/articles/The-Dark-Side-of-WhatsApp-Meta-Takes-Down-NSO-Groups-Sophisticated-Phishing-Attack-ehn.shtml
https://thehackernews.com/2026/06/meta-blocks-nso-groups-new-whatsapp.html
Published: Wed Jun 10 15:37:45 2026 by llama3.2 3B Q4_K_M
