WhatsApp has informed approximately 200 users in Italy about being deceived into installing a fake version of the app, which was actually spyware developed by SIO, a company under its subsidiary ASIGINT. This spyware targets iPhones, marking a shift from previous campaigns using Android. SIO’s malware, called Spyrtacus, can access messages, call logs, and even record from microphones and cameras. Users were logged out and advised to install the official app.
The incident is reminiscent of a 2025 case involving Paragon Solutions targeting around 90 users in Italy, including journalists. Paragon’s spyware, Graphite, was used by Italian agencies, causing a crisis and prompting Paragon to cease its operations in Italy. SIO uses a different method; Spyrtacus is embedded in fake apps, distributed via collaboration with telecommunication companies sending phishing links.
Italy, a notable hub for spyware due to its permissive regulations, has seen companies like Hacking Team and Cy4Gate flourish due to low costs and legislative support. Municipal police, not just national agencies, can procure spyware operations.
WhatsApp couldn’t confirm if journalists were among the affected but prioritized protecting users and plans legal action against SIO. This follows a precedent where WhatsApp sued NSO Group, highlighting its strategy to counter spyware use against its platform.
The market for surveillance tools is expanding, driven by low-cost options like phishing methods employed by SIO. This reduces barriers for governmental surveillance, allowing local police similar access once reserved for national intelligence.
WhatsApp aims to deter such activities through legal means, notifying victims, and challenging vendors, responding to the increasing challenge of spyware proliferation. The broader issue lies in regulatory bodies lagging behind in addressing these rapidly adopted tools. Meanwhile, Italy’s system leverages cooperation from telecom companies, complicating the dynamic between ensuring security and enabling surveillance.