Meta (META) Takes Legal Action: WhatsApp Accuses NSO Group of Injunction Breach

Key Takeaways

• WhatsApp’s parent company Meta has filed contempt charges against NSO Group, claiming the Israeli surveillance firm breached a court-ordered permanent ban.
• The messaging platform identified and blocked fresh spear-phishing operations connected to NSO designed to redirect targets to harmful websites.
• The U.S. government has placed NSO Group on its blacklist due to concerns about national security and foreign policy implications.
• Federal judges previously mandated NSO cease all WhatsApp-related operations, with the firm claiming such restrictions threaten its survival.
• The social media giant removed experimental accounts and communities established by NSO, while a dozen advocacy groups back its legal challenge.

Meta Platforms initiated contempt proceedings in federal court on Monday against NSO Group, charging the Israeli surveillance technology firm with breaching a permanent ban preventing it from accessing WhatsApp and its user base.

Shares of META were hovering around $692 when the announcement emerged on Monday.

Meta Platforms, Inc., META

This action intensifies an ongoing legal confrontation that previously delivered a significant victory for Meta. Federal courts ruled last year that NSO must pay $4 million in damages — substantially reduced from the original $167 million judgment — and issued a permanent injunction prohibiting the company from accessing WhatsApp.

Despite the court’s prohibition, Meta alleges NSO continued its operations.

WhatsApp’s security teams uncovered fresh “spear phishing” operations attributed to NSO within the past several weeks. These sophisticated attacks sought to manipulate users into activating malicious links that would route them to compromising websites — what Meta characterizes as a “1-click phishing” scheme, where one tap can infiltrate a device or account without requiring credential input.

According to Meta, WhatsApp discovered and eliminated testing accounts and communities that NSO allegedly established within the platform. NSO Group has not provided comment when contacted.

The Mechanics Behind the Phishing Operations

The assault tactics resembled NSO’s documented strategies from prior incidents. Targets received malicious links designed to deploy surveillance technology with a single click, bypassing traditional authentication requirements.

NSO’s primary offering, Pegasus spyware, sits at the heart of these allegations. Meta and WhatsApp have previously charged NSO with exploiting a platform security flaw to deploy Pegasus across more than 1,400 devices worldwide. Documented victims have included members of the press, political figures, and human rights workers.

U.S. authorities have officially blacklisted NSO Group, pointing to operations that conflict with American national security objectives and foreign policy goals. NSO has previously stated that the permanent injunction poses an existential threat to its business operations.

Advocacy Groups Rally Behind Meta’s Legal Strategy

Last month, a coalition of 12 civil liberties organizations joined Meta in opposing NSO’s appeal of the permanent injunction. This alliance comprises cybersecurity researchers, privacy protection groups, and digital freedom advocates who submitted amicus briefs supporting Meta’s legal stance.

Meta has characterized commercial spyware as a “national security threat” and emphasized that individual corporations cannot combat surveillance-for-hire operations in isolation.

This contempt motion represents Meta’s most recent effort to uphold the judicial order and prevent NSO from accessing its services. Federal courts will now review the new allegations.