1M WhatsApp Hack Flops – Only Low-Risk Bugs Disclosed to Meta After Pwn2Own Withdrawal
Category:Mobile / Vulnerability Disclosure
SecurityWeek reports that the planned $1M WhatsApp exploit demonstration at Pwn2Own 2025 was withdrawn, with researchers disclosing only low-risk bugs to Meta. The event highlighted Meta’s improved security posture for WhatsApp’s mobile clients.
CORTEX Protocol Intelligence Assessment
Business Impact: No active exploitation confirmed, but the case demonstrates the value of coordinated disclosure. Technical Context: Researchers identified minor logic bugs without remote code execution capabilities.
Strategic Intelligence Guidance
- Maintain bug bounty engagement to surface minor vulnerabilities early.
- Ensure transparency and recognition for coordinated vulnerability disclosure.
- Monitor for similar findings across companion mobile applications.
- Communicate resolved bug details in compliance reports.
Vendors
Threats
Targets
Intelligence Source: 1M WhatsApp Hack Flops – Only Low-Risk Bugs Disclosed to Meta After Pwn2Own Withdrawal | Oct 26, 2025