WhatsApp fixed zero-day used to deploy Paragon Graphite spyware

WhatsApp addressed a zero-day vulnerability exploited by Paragon to install Graphite spyware on targeted devices. The campaign, which targeted journalists and civil society members, was disrupted in December 2024, and WhatsApp alerted affected users. Citizen Lab linked Paragon to several IP addresses and a misconfigured certificate, suggesting global spyware operations with potential clients in several countries.