A sophisticated npm package, 'lotusbail', exploited developer trust to steal WhatsApp messages and credentials from thousands. By mimicking legitimate functionality and deploying advanced obfuscation, it marks a chilling evolution in supply chain attacks.
A rogue npm package named Lotusbail, posing as a WhatsApp API library, was downloaded over 56,000 times and covertly siphoned sensitive user data. The sophisticated attack highlights vulnerabilities in open-source supply chains.
Russia’s escalating restrictions on WhatsApp signal a dramatic shift toward national digital sovereignty, raising urgent questions about the future of global internet freedom and connectivity.
A US federal judge has temporarily barred NSO Group from exploiting WhatsApp to deploy its Pegasus spyware, following damning evidence of unauthorized surveillance. The ruling marks a pivotal moment in the battle over digital privacy and the accountability of surveillance tech vendors.
A seemingly legitimate npm package secretly stole WhatsApp messages, authentication tokens, and linked rogue devices to user accounts, impacting over 56,000 downloads. Discover how this sophisticated supply chain attack operated and what it means for open-source security.
Attackers are exploiting WhatsApp’s device linking feature to hijack accounts in a campaign dubbed GhostPairing. By tricking users into linking a rogue device, criminals gain full access to private chats and can impersonate victims. Learn how the attack works, why it’s spreading, and how to defend your account.
A new tool reveals a WhatsApp and Signal vulnerability that lets attackers map your daily behavior—sleep, homecomings, travels—using only your phone number. Here’s how it works and why it matters.
Meta faces EU antitrust scrutiny over new WhatsApp AI rules, which block rivals like ChatGPT and Copilot and raise big questions about digital competition.
#Meta | #WhatsApp | #Antitrust
Russia restricts WhatsApp, citing crime and espionage, in a sweeping move to control digital communication and push domestic alternatives. The crackdown signals growing digital isolation.
A forensic expert uncovers how WhatsApp messages can secretly store your location data, even without sharing. Discover the privacy risks hidden in your phone’s metadata.