"Advanced cyber actor" took advantage of vulnerability allowing malware to penetrate phones using the app's voice calling function

Synopsis

In May 2019, the company warned its users that a vulnerability in its service could have left its 1.5 billion users exposed to hackers. Attackers placed malicious code on users' devices simply by making a call. The malware spread to 1,400 mobile phones. It fixed the vulnerability and requested all users install an update to their app to be safe.

In October 2019 it was announced that their parent company is taking the spyware vendor to court over allegations that the firm helped to deploy malware that was used to target their users.

Analyst

Courtenay Brammar

Experienced global enterprise risk and governance professional. Previously Vice President at Morgan Stanley, Deloitte Risk Advisory practitioner and PRMIA steering committee member in both London and New York.

Additional services

We offer a range of cost-effective, fixed-price training programmes and consultant services derived from the unique insights gained from all our case study data.

If you'd rather we did the heavy lifting in developing a cyber incident response plan or lessons learnt training for your organisation underpined by our unique insight into the challenges faced and strategies implemented by organisations countering today's cyber security threats then please contact us here.