New court documents reveal that Israeli spyware firm NSO Group allegedly exploited a previously unknown vulnerability even after facing legal action from the messaging platform.
According to recently unsealed court filings, NSO Group discovered and utilized a new WhatsApp zero-day vulnerability in 2019, shortly after WhatsApp's parent company Meta (formerly Facebook) filed a lawsuit against them for a prior security breach.
The documents suggest NSO Group continued developing exploits targeting WhatsApp's infrastructure despite being embroiled in ongoing litigation. This revelation adds another layer to the complex legal battle between the two companies that began when WhatsApp accused NSO Group of compromising approximately 1,400 user accounts through their Pegasus spyware.
WhatsApp's legal team argues this behavior demonstrates NSO Group's persistent attempts to breach the platform's security measures, even while facing serious legal consequences. The messaging company maintains that NSO Group's actions violated both user privacy and platform terms of service.
NSO Group, known for selling surveillance technology to government clients worldwide, has consistently defended its practices, stating that its products help legitimate law enforcement efforts against crime and terrorism.
The court documents highlight growing tensions between technology companies and surveillance software vendors, while raising questions about the balance between national security interests and user privacy protection.
Industry experts note this case exemplifies the ongoing challenges messaging platforms face in protecting user communications against sophisticated state-sponsored attacks. The legal proceedings continue as both parties await further court decisions on this matter.