Key Points
- WhatsApp’s parent company has initiated contempt proceedings against NSO Group, claiming the spyware developer violated a court-ordered ban.
- Recent spear-phishing operations connected to NSO were intercepted by WhatsApp, attempting to redirect targets to harmful domains.
- The U.S. administration has placed NSO on a blacklist due to concerns about national security and foreign policy implications.
- Federal courts previously mandated NSO cease all WhatsApp-related operations, with the firm claiming such restrictions threaten its survival.
- The social media giant removed testing profiles and communities allegedly established by NSO, receiving backing from a dozen civil liberties organizations.
Meta Platforms initiated federal contempt proceedings against NSO Group this Monday, claiming the Israeli surveillance technology company breached a court-imposed permanent ban prohibiting it from accessing WhatsApp or its user base.
META stock was hovering near $692 when the announcement emerged Monday.
This action intensifies an ongoing legal confrontation that previously delivered a significant victory for Meta. Last year, a U.S. federal court mandated NSO pay $4 million in penalties — down from an originally proposed $167 million — and issued a permanent prohibition against targeting the messaging platform.
Yet according to Meta, NSO allegedly continued its activities.
WhatsApp’s security teams uncovered fresh “spear phishing” operations attributed to NSO during recent weeks. These schemes aimed to manipulate targets into accessing dangerous URLs that diverted them to compromised external sites — what Meta characterizes as a “1-click phishing” technique, where merely clicking once can breach a device or profile without requiring credential input.
According to Meta’s statement, WhatsApp located and eliminated testing profiles and communities that NSO purportedly established within the platform. NSO has not issued any statement regarding the allegations.
How the Phishing Schemes Operated
The operations resembled earlier tactics deployed by NSO. Targets received dangerous links; a single click could potentially deploy monitoring software without requiring passwords or authentication.
NSO’s primary offering, Pegasus, remains central to these allegations. Meta and WhatsApp have previously claimed NSO exploited a WhatsApp security flaw to deploy Pegasus across over 1,400 devices. Those reportedly targeted encompassed journalists, public officials, and aid organization personnel.
U.S. authorities have designated NSO Group as a restricted entity, referencing operations incompatible with national security objectives and foreign policy priorities. NSO has previously stated the permanent injunction poses an existential threat to its business operations.
Advocacy Groups Supporting Meta’s Legal Strategy
Last month, a coalition of 12 civil liberties organizations rallied behind Meta’s opposition to NSO’s appeal challenging the permanent ban. This alliance comprises cybersecurity specialists, privacy advocates, and digital freedom defenders who submitted amicus briefs supporting Meta’s stance.
Meta characterized commercial spyware as a “national security threat” and emphasized that individual corporations cannot combat surveillance-for-hire enterprises in isolation.
The contempt motion represents Meta’s newest effort to uphold the judicial ruling and prevent NSO from utilizing its platforms. Federal courts will now review the case.
