A major security vulnerability has been discovered in WhatsApp and apple devices. Known as the Zero-Click Vulnerability, this bug allowed hackers to access users’ devices without clicking any link or opening any file. Both companies have now released updates to fix this flaw, and users are strongly advised to update immediately.

1. What is the Zero-Click Vulnerability?

Zero-click attacks are among the most dangerous types of cyberattacks. Unlike typical attacks:

Users don’t need to click a link

No files need to be opened

Hackers can directly infiltrate devices and steal sensitive data

Because users have no direct interaction, prevention is extremely difficult, making updates and security patches crucial.

2. WhatsApp’s CVE-2025-43300 Bug

Meta (WhatsApp) confirmed the CVE-2025-43300 vulnerability in:

WhatsApp iOS versions before v2.25.21.73

WhatsApp business iOS before v2.25.21.78

WhatsApp Mac before v2.25.21.78

This bug may have been used in sophisticated attacks on selected users. Meta reports that patches have been applied and over 200 users were notified about potential exploitation.

3. Apple’s CVE-2025-55177 Bug

Apple also patched a similar flaw: CVE-2025-55177.

Triggered by processing malicious image files

Could lead to memory corruption

Previously exploited in high-level spyware attacks, particularly affecting iphone users

Apple users are advised to update iOS immediately to ensure protection.

4. How the Bug Was Detected

The vulnerability was reported by Donncha O Cearbhaill from the Amnesty international Security Lab. Key findings include:

Part of an advanced spyware campaign

Both iPhone and Android users targeted in the last 90 days

Many victims were civil society activists, highlighting the severity

The discovery emphasizes the need for constant vigilance against cyber threats.

5. Why This Bug is Dangerous

Zero-click vulnerabilities are extremely critical because:

Hackers gain access without user action

Sensitive data, including personal messages and files, can be stolen silently

Hard to prevent without software updates

The bug’s stealth nature makes it one of the riskiest cybersecurity threats today.

6. What Users Should Do

To protect your devices:

Update WhatsApp to the latest iOS or Mac version

Update iOS devices to the latest security patch

Avoid unknown links and files, even if the bug is patched

Keep all apps and software regularly updated

Install security updates immediately when notified

Following these steps will help secure your devices from potential cyberattacks.

Final Word

The whatsapp and apple Zero-Click vulnerability is a serious threat that highlights the importance of keeping apps and operating systems up to date. Updating immediately and maintaining regular security practices is the best defense against advanced cyberattacks.