A researcher withdrew from demonstrating a $1 million WhatsApp exploit at Pwn2Own Ireland 2025, raising questions about the exploitβs viability. Despite the withdrawal, the findings are being privately analyzed by Meta, with no immediate risk identified for users. #WhatsApp #Pwn2OwnIreland2025
Keypoints
- A $1 million WhatsApp exploit demonstration was canceled at Pwn2Own Ireland 2025.
- The researcher, Eugene from Team Z3, withdrew citing insufficient preparation for public release.
- The findings from the research are being privately disclosed to Meta engineers for review.
- WhatsApp officials stated that the vulnerabilities identified are low risk and not useful for arbitrary code execution.
- The cybersecurity community expressed disappointment over the withdrawal and questioned the exploitβs technical feasibility.