WhatsApp has warned around 200 users after discovering they were tricked into installing a fake version of its iOS app that contained spyware, reigniting concerns over digital surveillance and user privacy.
The company said it identified nearly 200 affected users, most of them in Italy, who may have downloaded an unofficial and malicious version of WhatsApp. According to the firm, the counterfeit app was designed to secretly install spyware, potentially exposing personal data and private communications.
In a statement shared with TechCrunch, WhatsApp accused Italian spyware maker SIO of developing the fake application. The company said its security teams acted proactively to detect the threat and limit its spread.
WhatsApp confirmed it logged affected users out of their accounts and sent direct alerts warning them of potential privacy and security risks. Users were advised to immediately delete the fake app and reinstall the official version from trusted sources.
Company spokesperson Margarita Franklin said WhatsApp cannot yet disclose further details about the victims, including whether journalists or members of civil society were among those targeted.
Legal Action Planned
WhatsApp said it plans to issue a formal legal notice to halt the alleged malicious activities connected to the spyware firm. The company stressed that protecting users who may have unknowingly installed the compromised app remains its top priority.
The incident was first reported by Italian newspaper La Repubblica and news agency ANSA, which highlighted growing concerns over the use of fake apps in surveillance operations.
History of Spyware Campaigns
Earlier investigations by TechCrunch revealed that SIO had previously been linked to multiple malicious Android applications carrying spyware known as Spyrtacus. These included fake versions of WhatsApp and counterfeit customer support tools posing as apps from mobile service providers.
Security experts note that fake apps are a common surveillance tactic in Italy, often paired with phishing links sent through telecom providers on behalf of authorities. SIO reportedly develops government spyware through its subsidiary ASIGINT.
Neither Apple nor SIO responded to requests for comment regarding the latest allegations.
A Pattern of Surveillance Concerns
The latest case follows a similar incident last year when WhatsApp notified about 90 users who were targeted using spyware developed by Paragon Solutions. Those targets included journalists and pro-immigration activists, sparking widespread controversy in Italy.
After public backlash, Paragon reportedly cut ties with Italian intelligence agencies, which had been among its clients. The new revelations suggest that concerns over digital surveillance and the misuse of spyware tools in Italy remain far from resolved.
