WhatsApp, owned by Meta Platforms, has been designated as a Very Large Online Platform (VLOP) under the European Union’s Digital Services Act (DSA). This follows the platform’s report of approximately 46.8 million average monthly active users in the EU during the latter half of 2024. As a VLOP, WhatsApp is now subject to stricter regulations, including enhanced content moderation, increased transparency, and greater user data protection. (Reuters)
Concurrently, Italy is confronting a significant cybersecurity issue involving WhatsApp. The Italian government has reported that seven individuals within the country were targeted by spyware through the messaging app. The National Cybersecurity Agency (ACN) was alerted by WhatsApp about these confirmed cases, which also affected users in other EU nations. (The Record)
The spyware in question, identified as ‘Graphite’ and developed by Paragon Solutions, is capable of infecting mobile phones without user interaction, granting full access to messages and encrypted chats. In response to these incidents, Italian media groups have filed a criminal complaint with the Rome Public Prosecutor’s Office, seeking to identify those responsible for deploying the spyware against journalists and activists. (The Guardian)
Paragon Solutions has since terminated its contract with Italy, citing breaches of terms that prohibit targeting journalists or members of civil society. (The Guardian) These events underscore the dual challenges WhatsApp faces: adhering to stringent EU regulations as a VLOP and addressing significant security concerns within its platform.
