WhatsApp says it disrupted spear-phishing and social engineering campaigns linked to NSO Group after user reports, including attempts to lure targets to external sites with malicious links. Meta says the activity involved test accounts, groups, and domains such as ikhwancast[.]com, ghazacast[.]com, and fr24cast[.]com, despite prior court action and U.S. sanctions against NSO Group. #NSOGroup #WhatsApp #Meta #Pegasus
Keypoints
- WhatsApp stopped NSO-linked spear-phishing campaigns after investigating user reports.
- The attackers used malicious links to redirect targets to external websites.
- Meta said the activity resembled earlier one-click phishing campaigns linked to NSO Group.
- Meta also removed test accounts and groups created for the operation.
- WhatsApp urged users to update apps and operating systems for better protection.