Particle.news
Download on the App Store
5 ARTICLES
·
45m ago

WhatsApp Fixes Zero-Click Flaw Exploited With Apple Zero-Day, Notifies Fewer Than 200 Users

WhatsApp alerts urge factory resets for those targeted, with researchers describing a 90‑day advanced spyware campaign.

Image
Image
Image
Image

Overview

  • WhatsApp patched CVE-2025-55177 in its iOS and Mac clients, affecting iOS versions before 2.25.21.73, Business for iOS before 2.25.21.78, and Mac before 2.25.21.78.
  • The company says attackers chained the WhatsApp bug with Apple’s CVE-2025-43300, enabling a zero-click exploit capable of stealing data from Apple devices.
  • Meta says it detected and fixed the issue weeks ago and has sent fewer than 200 threat notifications to potentially affected users.
  • Notices warn that devices could remain compromised at the OS level and recommend a full factory reset plus installing the latest OS and app updates.
  • Attribution remains unknown, and Apple previously described exploitation of its flaw as part of an extremely sophisticated attack against specific individuals.