Tech Giants Take a Stand Against Proliferating Spyware
In a significant move for digital privacy, Apple and WhatsApp have publicly committed to continuing their practice of alerting users whose mobile phones are targeted by government-grade hacking software. This pledge comes as two prominent spyware manufacturers, both founded in Israel and now under American ownership, are actively seeking to expand their operations within the United States, finding a receptive audience in the Trump administration.
The Spyware Firms and Their US Ambitions
The situation involves two key players: Paragon Solutions and the NSO Group. In September 2025, Paragon, the creator of the sophisticated Graphite spyware, finalised a deal with the Trump administration. This agreement granted US Immigration and Customs Enforcement (ICE) access to its powerful hacking tools, following the Department of Homeland Security's decision to lift a freeze on a $2 million contract.
Simultaneously, NSO Group, which was sanctioned by the Biden administration in 2021 for activities contrary to US interests, announced that David Friedman, the former US ambassador to Israel under Trump, had agreed to become executive chairman of its holding company. This signals a strategic push for legitimacy and access within US power structures.
Both companies produce spyware capable of completely taking over a phone without the user's knowledge, enabling the surveillance of texts, calls, and location, and even turning the device into a remote listening device or camera. While they argue their products are designed to combat serious crime and terrorism, their tools have repeatedly been abused by government clients to secretly monitor journalists, business leaders, and human rights activists.
A History of Resistance and New Concerns
For years, Apple and Meta-owned WhatsApp have been at the forefront of disrupting the global spyware industry. They have sent threat notifications to thousands of users worldwide, including in Italy, Spain, and India, when potential hacking attacks were detected. In a landmark legal victory in October 2025, a US court sided with WhatsApp, banning NSO Group from ever targeting its users again after six years of litigation.
However, the close relationship both tech giants maintain with the Trump administration raised concerns about whether they would maintain this protective stance for users within the US. Both companies have now unequivocally stated that geographic location will not influence their policy.
An Apple spokesperson confirmed, "Threat notifications are designed to inform and assist users who may have been individually targeted by mercenary spyware and geographic location is not a factor in who they are sent to." A WhatsApp spokesperson echoed this, stating their priority is to protect users "no matter where they are in the world."
Legal Grey Areas and a 'Silent Spyware Epidemic'
The potential domestic use of such tools in the US is fraught with legal questions. Christopher Wray, the former FBI director, testified that the bureau tested NSO's Pegasus spyware but ultimately decided against deploying it. Experts highlight that laws prohibiting the targeted surveillance of Americans create a significant legal barrier.
The situation is particularly alarming for critics of ICE. Democratic Senator Ron Wyden expressed extreme concern, stating, "I’m extremely concerned about how ICE will use spyware, facial recognition and other technology to further trample on the rights of Americans and anyone who Donald Trump labels as an enemy."
John Scott-Railton, a senior researcher at the University of Toronto's Citizen Lab, issued a stark warning: "Nobody is protected... American businesses aren’t ready to start detecting and defending against this kind of threat at home. Nor is anybody else... The last thing America needs right now is a silent spyware epidemic."
The Italian Precedent: A Cautionary Tale
The dangers are not theoretical, as evidenced by a major surveillance scandal in Italy involving Paragon's Graphite software. In January 2025, WhatsApp revealed that 90 people, including journalists and civil society members, had been targeted by the spyware.
Subsequent reports detailed how Italian journalists, business executives—including the CEO of a major bank—human rights activists, and a political strategist were all hacked in 2024. The government of Prime Minister Giorgia Meloni acknowledged some use against activists but denied responsibility for other high-profile targets.
Matteo Renzi, the former Italian Prime Minister, called the affair "the Italian Watergate," stating, "This is a tool only a government can use... I am not the best friend of journalists, but the freedom of the press is a priority in a liberal democracy. For me, it is unacceptable to use this tool against journalists." Paragon subsequently terminated its relationship with the Italian government, suggesting its terms of service had been violated.
As these powerful cyberweapons find their way into the hands of more government agencies, the firm stance taken by Apple and WhatsApp marks a critical line in the sand for consumer privacy and democratic accountability in the digital age.
