Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

India Seeks Answers From WhatsApp After Cyberespionage

India demanded answers from WhatsApp over a snooping scandal Thursday after coming under fire from critics who accused authorities of using malware installed on the Facebook-owned messaging service to spy on citizens.

India demanded answers from WhatsApp over a snooping scandal Thursday after coming under fire from critics who accused authorities of using malware installed on the Facebook-owned messaging service to spy on citizens.

WhatsApp has filed a lawsuit in the United States against Israeli technology firm NSO Group, accusing it of using the hugely popular instant messaging platform to conduct cyberespionage on nearly 1,400 journalists, diplomats, dissidents and human right activists worldwide.

The Israeli firm has denied journalists and activists were targeted and said that it only licenses its software to governments for “fighting crime and terror”.

Nearly two dozen activists, lawyers and journalists were targeted in India — WhatsApp’s biggest market with some 400 million active users — according to Indian media reports.

The Indian Express reported WhatsApp confirmed a number of Indian users had been targeted by the Pegasus spyware, which installed itself on their devices and relayed back data to the hackers.

New Delhi has asked Whatsapp to “explain the kind of breach and what it is doing to safeguard the privacy of millions of Indian citizens,” information and technology minister Ravi Shankar Prasad wrote on Twitter, denying the government had used the malware to spy on its citizens.

But opposition leaders accused the government of invading citizens’ privacy.

“A government that spies on journalists/activists/Opposition leaders and treats its own citizens like criminals has lost the right to lead in our democracy,” main opposition Congress party spokesperson Randeep Surjewala said in a tweet.

Indian media reports said 20 activists, lawyers and journalists were informed by WhatsApp recently that their phones were compromised for two weeks in May.

Rights activists and dissidents in India have accused the Prime Minister Narendra Modi’s Hindu nationalist government of intimidating them over their critism of policies.

Since Modi’s ascent to the top post in 2014, it has banned hundreds of non government organisations and stopped funding of many more.

Rupali Jadhav, an activist, and one of those contacted by WhatsApp said she suspected that she was targeted for her work on caste, class and gender rights.

“We are told India is a democracy. But if our right to privacy is violated, doesn’t that raise questions?” she told an Indian online outlet.

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Ransomware

US government reminds the public that a reward of up to $10 million is offered for information on cybercriminals, including members of the Hive...

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Ransomware

The Hive ransomware website has been seized as part of an operation that involved law enforcement in 10 countries.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Cybercrime

No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.