WhatsApp is Full of Spies—and Trump Officials. What Could Go Wrong?

One expert has “zero doubt” White House communications have been hacked.

Stefan Rousseau/AP

Fight disinformation: Sign up for the free Mother Jones Daily newsletter and follow the news that matters.

The phones of senior government and military officials in multiple US-allied countries were targeted with a hacking tool via WhatsApp, a popular encrypted messaging application, according to a new Reuters report. Multiple Trump administration officials are known to have used WhatsApp to carry out sensitive conversations, raising the prospect that their communications have been intercepted.

The report, by Reuters’ Chris Bing and Raphael Satter, comes in the wake of a lawsuit filed by WhatsApp and its parent company, Facebook, against NSO Group, an Israeli technology firm that specializes in developing tools that allow governments to hack and collect intelligence. The lawsuit, filed Tuesday in a California federal court, alleges that the firm used WhatsApp servers and technology to target roughly 1,400 users between January 2018 and May 2019, including human rights activists, journalists, and politicians. WhatsApp released a fix for the vulnerability in May, addressing a flaw that allowed attackers to surreptitiously access a victim’s text messages, contacts, emails, and other sensitive information. NSO Group denies the accusation, and says it will “vigorously fight them.”

In March, the late Rep. Elijah Cummings, a Maryland Democrat, revealed that Jared Kushner, the president’s son-in-law and one of his most trusted associates, was using WhatsApp to “communicate with foreign leaders.” Kushner has had extensive dealings with political figures throughout the middle east. Gordon Sondland, Trump’s ambassador to the European Union and a key figure in in the administration’s campaign to pressure Ukraine to launch investigations that would benefit the president, communicated with other US diplomats about the effort over WhatsApp. During Trump’s run for the presidency campaign chairman Paul Manafort regularly sent polling data to a Russian associate via the app.

I have zero doubt that over time at least some of Kushner’s communications were swept up,” says Jake Williams, the founder of Rendition Infosec and a former NSA hacker. “It’s important to consider that even if Kushner wasn’t a direct target, he could have been targeted indirectly by compromising those he communicates with.”

The growing revelations about the WhatsApp vulnerability come after a number of prominent cybersecurity missteps from the president’s team. Last week, Axios reported on an October resignation letter from Dimitrios Vastakis, a White House computer security official, warning that the building’s systems were vulnerable to intrusion after a series of management changes and personnel departures. A year ago, the New York Times reported that Trump was still using an insecure iPhone to talk with friends and associates. And just today, NBC News revealed that Rudy Giuliani, one of the president’s private attorneys and a likely target of every capable intelligence agency, took his personal iPhone into an Apple store in San Francisco in 2017 after he’d locked himself out of it; the article revealed that a copy of his phone’s data was stored on a cloud server.

FOLLOW THE MONEY

Corporations and billionaires don’t fund journalism like ours that exists to shake things up. Instead, support from readers allows Mother Jones to call it like it is without fear, favor, or false equivalence.

And right now, a longtime friend of Mother Jones has pledged an incredibly generous gift to inspire—and double—giving from online readers. That's huge! Because you can see that our fall fundraising drive is well behind the $325,000 we need to raise. So if you agree that in-depth, fiercely independent journalism matters right now, please support our work and help us raise the money it takes to keep Mother Jones charging hard. Your gift, and all online donations up to $94,000 total, will be matched and go twice as far—but only until the November 9 deadline.

$400,000 to go: Please help us pick up the pace!

payment methods

FOLLOW THE MONEY

Corporations and billionaires don’t fund journalism like ours that exists to shake things up. Instead, support from readers allows Mother Jones to call it like it is without fear, favor, or false equivalence.

And right now, a longtime friend of Mother Jones has pledged an incredibly generous gift to inspire—and double—giving from online readers. That's huge! Because you can see that our fall fundraising drive is well behind the $325,000 we need to raise. So if you agree that in-depth, fiercely independent journalism matters right now, please support our work and help us raise the money it takes to keep Mother Jones charging hard. Your gift, and all online donations up $94,000 total, will be matched and go twice as far—but only until the November 9 deadline.

$400,000 to go: Please help us pick up the pace!

payment methods

We Recommend

Latest

Sign up for our free newsletter

Subscribe to the Mother Jones Daily to have our top stories delivered directly to your inbox.

Get our award-winning magazine

Save big on a full year of investigations, ideas, and insights.

Subscribe

Support our journalism

Help Mother Jones' reporters dig deep with a tax-deductible donation.

Donate