Overview
- Attackers chained WhatsApp CVE-2025-55177 with Apple’s Image I/O CVE-2025-43300 to deliver spyware without any user interaction.
- Apple and WhatsApp issued fixes in late August, and users are urged to update to the latest iOS, macOS and WhatsApp versions.
- Meta said it sent fewer than 200 in-app threat notifications and advised notified users to perform a full factory reset before restoring.
- Amnesty International reports the advanced zero-click campaign has been active since late May and targeted a small number of high-value individuals.
- Attribution has not been made to any actor or vendor, and investigators continue forensic collection and analysis.