WhatsApp Fixes Zero Click Vulnerability That Allowed Hackers to Target iPhones and Macs

WhatsApp has rolled out an urgent security fix for a serious vulnerability that was being used by hackers to secretly target iPhones and Macs. The flaw, identified as CVE 2025 43300, allowed attackers to install spyware on specific devices without any action from the victim. This means users did not need to click on a link or open a file for their device to be compromised, making it one of the most dangerous forms of cyberattacks.

What Happened

The vulnerability was found in WhatsApp for iOS and Mac, including WhatsApp Business. According to Meta, fewer than 200 people were notified of being affected, but the attack was highly sophisticated. Amnesty International’s Security Lab described it as part of an advanced spyware campaign that had been running over the past 90 days.

The issue was patched in the latest versions of WhatsApp, including iOS version 2.25.21.73, WhatsApp Business for iOS version 2.25.21.78, and WhatsApp for Mac version 2.25.21.78. If you have not updated your app yet, now is the time to do so.

Apple Involved Too

Interestingly, WhatsApp was not the only service impacted. Apple also reported a similar vulnerability, labeled CVE 2025 55177, which could be exploited when processing malicious image files. The company confirmed that this bug may have been used in attacks on targeted individuals as well. Together, these flaws could have given hackers a dangerous opening into users’ personal data.

Apple has since patched the issue, urging users to update their devices immediately.

Why Zero Click Attacks Are So Dangerous

Unlike traditional scams that require a click or download, zero click attacks give victims no chance to protect themselves. They can silently bypass security measures and compromise devices without warning. This makes them a favorite tool for highly advanced spyware campaigns that often target journalists, activists, and high profile individuals.

How WhatsApp and Apple Responded

Both WhatsApp and Apple acted quickly to fix the vulnerabilities once they were discovered. Meta said the flaw was patched a few weeks ago, and affected users were notified. Apple has also reinforced its device security with the latest update.

Cybersecurity experts stress that while these companies can issue patches, user awareness and prompt updates are critical. If you use WhatsApp or an Apple device, make sure you have installed the latest versions to protect yourself.

The Bigger Picture

The incident is a reminder that no platform is immune to cyber threats, even ones as popular as WhatsApp and Apple’s ecosystem. With hackers deploying increasingly advanced methods, companies will continue to face challenges in keeping users safe. For everyday users, the most important step remains simple: keep your apps and devices updated.

Stay ahead in the world of technology and cybersecurity. Follow Tech Moves on Instagram and Facebook for the latest updates, insights, and breaking news on the gadgets and apps you use every day.