WhatsApp said on August 29, 2025, that it uncovered an advanced cyberespionage campaign leveraging a chain of vulnerabilities in its app and Apple platforms, with notifications sent to fewer than 200 targeted users worldwide, including members of civic groups and civil society, and patches now issued by both WhatsApp (CVE-2025-55177) and Apple (CVE-2025-43300) to close the exploit chain used in the zero-click spyware operation over the past several months. Amnesty International’s Security Lab confirmed it has begun collecting forensic evidence from potential victims, noting that both iPhone and Android users appeared to be affected and warning that other apps may also have been compromised, while urging at-risk individuals to update devices and consider lockdown-style protections. Meta said warning notifications were issued over the last 90 days, declined to attribute the campaign, and emphasized its remediation steps, as independent reports echoed the limited scale of impact but high sophistication of the intrusion aimed at data theft from Apple devices via WhatsApp as a delivery vector.