Meta accused Israeli spyware firm NSO Group on Monday of violating a court order restricting phishing attempts on WhatsApp, asking a federal court to hold the company in contempt for alleged ties to hacking campaigns targeting users of the messaging platform.
The technology company said it "successfully disrupted" spear phishing attempts that were flagged by users on the platform. According to Meta, attackers used tactics similar to previously reported 1-click phishing campaigns linked to NSO, attempting to trick users into clicking malicious links that would drive them to external websites outside WhatsApp. The company also detected and removed test accounts and groups created by actors associated with NSO.
NSO Group is the maker of Pegasus, a powerful hacking tool capable of accessing smartphones through exploiting vulnerabilities in mobile software. A federal court issued a permanent injunction against NSO last year, ordering the spyware company to cease its efforts to break into WhatsApp using the surveillance technology.
"1-click" attacks allow hackers to steal data or compromise an account with a single opened link, representing a significant threat to user privacy and security on messaging platforms.
Meta emphasized that WhatsApp's end-to-end encryption remains intact despite the attempted breaches. The company encouraged users to report suspicious activity and said it has contributed to the Spyware Accountability Initiative, a fund supporting organizations across the globe addressing spyware technology abuses.
What the Right Is Saying
NSO Group has maintained that its technology is designed to help law enforcement and intelligence agencies combat serious crime and terrorism. The company sells its products exclusively to government clients under strict licensing agreements that require users to operate within legal frameworks.
Supporters of targeted surveillance tools argue they have legitimate national security applications, including preventing terrorist attacks and disrupting organized criminal networks. They contend that restricting such technology puts law enforcement at a disadvantage against sophisticated adversaries.
Some conservative commentators have expressed concern about what they characterize as tech companies' expanding power over digital infrastructure. They note that Meta's legal action comes from a company that itself faces ongoing regulatory scrutiny over its market dominance and content moderation practices.
NSO Group has not yet publicly responded to The Hill's request for comment on the contempt filing.
What the Left Is Saying
Civil liberties advocates have long argued that commercial spyware poses an existential threat to human rights and democratic institutions worldwide. Human rights organizations including Amnesty International and Citizen Lab have documented cases where Pegasus was used to surveil journalists, activists, lawyers, and dissidents in countries including Mexico, Saudi Arabia, and India.
"The scale of this problem demands sustained legal pressure," Meta said in its statement, noting that 12 prominent civil rights organizations have filed amicus briefs supporting the company's efforts to fight NSO's appeal of the permanent injunction. "This work is demanding, often dangerous, and consistently under-resourced compared to the spyware industry that continues to develop new exploits."
Privacy advocates argue that companies like NSO operate in a regulatory gray zone that enables human rights abuses by authoritarian governments. They have called for stronger international controls on surveillance technology exports and greater corporate accountability.
What the Numbers Show
The Biden administration sanctioned NSO Group in 2021, citing the company's "engaging in activities that are contrary to the national security or foreign policy interests of the United States." This marked a significant escalation in U.S. efforts to hold commercial spyware vendors accountable.
Meta reported detecting and disrupting spear phishing attempts that were linked to NSO infrastructure through user reports and internal monitoring systems. The company did not disclose the number of accounts targeted or compromised.
The permanent injunction issued against NSO last year represented a rare legal victory against commercial spyware makers, setting precedent for holding foreign technology companies accountable for actions targeting U.S.-based platforms and users.
The Bottom Line
Meta's motion asking the federal court to hold NSO in contempt could result in significant financial penalties if granted. Courts have broad discretion in civil contempt proceedings, including imposing daily fines until compliance is demonstrated.
The case highlights ongoing tensions between technology companies seeking to protect their platforms and spyware vendors operating across international boundaries. It also underscores the challenges of enforcing legal orders against foreign-based firms whose operations span multiple jurisdictions.
WhatsApp has more than 2 billion users globally, making it a high-value target for sophisticated surveillance operations. The company's continued vigilance against NSO-linked activity reflects broader industry efforts to counter threats from state-sponsored and commercially available hacking tools.