CISA has issued a warning about the increasing use of commercial spyware and remote access trojans (RATs) targeting users of messaging apps like WhatsApp and Signal. Threat actors are employing advanced tactics, including social engineering and phishing, to compromise these platforms. The agency noted that these attacks often aim at high-profile individuals, such as government officials and civil society members, particularly in the U.S., Middle East, and Europe. The advisory details various methods attackers use, including phishing messages, malicious QR codes, and even zero-click exploits that can infiltrate devices without user interaction. CISA highlighted specific campaigns, such as Russian-aligned actors abusing Signal's linked-device feature and Android spyware like ProSpy and ToSpy masquerading as legitimate apps in the UAE. Other notable attacks included exploiting flaws in iOS and WhatsApp, affecting fewer than 200 users, and deploying LANDFALL spyware on Samsung devices in the Middle East through a security vulnerability. To combat these threats, CISA recommends consulting its Mobile Communications Best Practices and resources for mitigating cyber threats, especially for users of these messaging apps. The ongoing risks underline the necessity for heightened vigilance and robust security measures among users of popular communication platforms.