Zero-Click WhatsApp Account Takeover Hits iPhone Users Running iOS 16. No Linked Devices, No Warning

A zero-click attack on iOS 16 iPhones hijacks WhatsApp accounts without user interaction, exploiting a vulnerability to send unauthorized messages. iPhone users running iOS 16 are affected, with no linked devices or warnings provided. The attack vector is a zero-click vulnerability.

1. The attack exploits a zero-click vulnerability in WhatsApp on iOS 16.
2. Affected devices are iPhone users running iOS 16, with no linked devices or warnings provided.
3. The attack chain involves hijacking WhatsApp accounts without user interaction.
4. Detection opportunities may include unusual WhatsApp activity or unauthorized messages.

T1190 Exploit Public-Facing Application

Update to a patched version of iOS or consider disabling WhatsApp until a patch is available.