WhatsApp has revealed that an Italian surveillance firm targeted around 200 users with spyware disguised as a fake version of the messaging app.
The platform, owned by Meta Platforms, said the campaign relied on social engineering tactics to trick victims into downloading malicious software that impersonated WhatsApp.
According to the company, the operation was carried out by ASIGINT, a subsidiary of Italy-based SIO, which advertises cyber intelligence solutions for law enforcement and government agencies.
WhatsApp described the attack as “highly targeted,” noting that victims were primarily located in Italy. It did not disclose specific identities.
The company said the malicious application was designed to infiltrate users’ devices and extract sensitive data, including communications and personal information.
SIO did not immediately respond to requests for comment, while Italy’s Interior Ministry referred inquiries to police authorities, who also did not comment.
The disclosure marks the second time in just over a year that Meta has disrupted spyware-related activity linked to Italy. In early 2025, a separate surveillance operation involving spyware developed by U.S.-based firm Paragon was exposed, prompting a fallout between the company and Italian authorities.
The incident underscores ongoing concerns over the proliferation of commercial spyware tools and their use in targeted surveillance campaigns, even as technology companies continue efforts to detect and dismantle such threats.
