InfoWorld

WhatsApp API worked exactly as promised, and stole everything

Malicious npm package posing as a WhatsApp Web API library operated for months as a functional dependency while stealing ...
SecurityWeek

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data

The lotusbail NPM package steals WhatsApp credentials, messages, and contacts, and provides persistent access to the victims’ accounts.

Worrying WhatsApp attack can steal messages and even accounts

The malicious fork, named ‘lotusbail’ has all the same functionality as the legitimate project, but it also steals WhatsApp ...

WhatsApp Begins Testing Support for Viewing Connected Peripherals

WhatsApp's latest feature will inform you about which connected accessories have access to your WhatsApp chats.