20 WhatsApp Users’ Data May Have Been Accessed: Prasad on Pegasus
Image used for representational purposes. 
Image used for representational purposes. (Photo: The Quint)

20 WhatsApp Users’ Data May Have Been Accessed: Prasad on Pegasus

The government on Wednesday, 4 December, said the personal data of 20 WhatsApp users out of the 121 users targeted using Pegasus spyware may have been accessed by the attacker.

Facebook-owned WhatsApp had said that Indian journalists and human rights activists were among those globally spied upon by unnamed entities using Pegasus spyware.

“WhatsApp continues to review the available information. It also mentioned that WhatsApp believes it is likely that personal data within the WhatsApp app of approximately 20 users may have been accessed out of approximately 121 users in India whose devices the attacker attempted to reach,” Ravi Shankar Prasad said in Lok Sabha.

On 20 May, WhatsApp reported an incident to country's cyber security watchdog CERT-In, stating that it had identified and promptly fixed a vulnerability that could enable an attacker to insert and execute code on mobile devices.

Also Read : Whatsapp Expresses ‘Regret’ Over Pegasus Snooping Row


WhatsApp also told CERT-In that the vulnerability could no longer be exploited to carry out attacks.

Prasad said the government is committed to protecting fundamental rights of citizens, including the Right to Privacy.

“The government operates strictly as per provisions of law and laid down protocols. There are adequate safeguards to ensure that no innocent citizen is harassed or his privacy breached.”
Ravi Shankar Prasad, Union Minister

Also Read : ‘WhatsApp Didn’t Mention Vulnerability in System’: Prasad in RS

In response to another question on malicious mobile apps stealing user data, the minister said the propagation of such applications, targeting mobile phones, are being reported globally.

“Such malicious applications could be used for stealing data from infected mobile phones for further misuse by cyber criminals,” Prasad said.

The government has taken several measures to check malicious apps which, including issuing alerts and advisories about threats and vulnerabilities affecting mobile phones, along with counter-measures by the Indian Computer Emergency Response Team (CERT-In), he said.

Also Read : WhatsApp Pegasus Snooping: Everything You Need to Know

“Security tips have been published to enable users to secure their mobile and smart phones by CERT-In. Government has operationalised the Cyber Swachhta Kendra (CSK) to enable detection and cleaning of malicious code including from mobile and smartphones,” Prasad added.

(Make sure you don't miss fresh news updates from us. Click here to stay updated )

Follow our India section for more stories.