{"id":221177,"date":"2025-08-30T04:11:31","date_gmt":"2025-08-30T09:11:31","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2025\/08\/whatsapp-patches-vulnerability-exploited-in-zero-day-attacks"},"modified":"2025-08-30T04:11:31","modified_gmt":"2025-08-30T09:11:31","slug":"whatsapp-patches-vulnerability-exploited-in-zero-day-attacks","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2025\/08\/whatsapp-patches-vulnerability-exploited-in-zero-day-attacks","title":{"rendered":"WhatsApp patches vulnerability exploited in zero-day attacks"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/whatsapp-patches-vulnerability-exploited-in-zero-day-attacks.jpg\"><\/a><\/p>\n<p>WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks.<\/p>\n<p>The company says this <a href=\"https:\/\/twitter.com\/billmarczak\/status\/1961459546024800260\" target=\"_blank\" rel=\"nofollow noopener\">zero-click flaw<\/a> (tracked as CVE-2025\u201355177) affects WhatsApp for iOS prior to version 2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78.<\/p>\n<p>\u201cIncomplete authorization of linked device synchronization messages in WhatsApp [\u2026] could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target\u2019s device,\u201d WhatsApp said in a <a href=\"https:\/\/www.whatsapp.com\/security\/advisories\/2025\/\" target=\"_blank\" rel=\"nofollow noopener\">Friday security advisory<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks. The company says this zero-click flaw (tracked as CVE-2025\u201355177) affects WhatsApp for iOS prior to version 2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78. \u201cIncomplete authorization of linked device synchronization messages in [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[43,1492],"tags":[],"class_list":["post-221177","post","type-post","status-publish","format-standard","hentry","category-business","category-security"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/221177","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=221177"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/221177\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=221177"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=221177"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=221177"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}