Jeff Bezos hack: what is malware and are you vulnerable?
Experts say cyberattack like that on Amazon CEO’s phone is ‘horribly easy to do’

Reports that Jeff Bezos’ phone was hacked by malware in a WhatsApp message sent by the Saudi crown prince has fuelled fears of similar attacks on tech users worldwide.
The message sent to the billionaire Amazon boss is believed to have included an infected video file that infiltrated the device, according to The Guardian. “Large amounts of data were exfiltrated from Bezos’s phone within hours,” the newspaper says.
Computer expert Professor Alan Woodward told the BBC that such a hack is “horribly easy to do”. But just how great is the threat, and what can you do to protect yourself?
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
What is malware?
Malicious software, commonly known as malware, is “software developed by cyberattackers with the intention of gaining access or causing damage to a computer or network”, explains tech news site ZDNet.
In many cases, the victim “remains oblivious to the fact there’s been a compromise”, the site says.
Malware is “often created by teams of hackers”, says cybersecurity company AVG, which adds: “Usually, they’re just looking to make money, either by spreading the malware themselves or selling it to the highest bidder on the dark web.”
Some criminals use malware to demand a ransom for stolen sensitive personal data, while others are seeking access to information such as credit card numbers.
What malware was used to attack Bezos?
The specific malware used in the Bezos hack has not been determined, but some experts believe it may have been Pegasus, which The Times describes as a “highly sophisticated malware created by NSO Group, an Israeli cybersurveillance firm”.
In October, WhatsApp urged its 1.5 billion users to install an app update immediately, after the company discovered that Pegasus had been installed on thousands of phones via the messaging service.
“Once in the target’s phone, spyware lets a hacker access almost everything, including all messages, emails and incoming or outgoing calls, as well as pictures, cameras, microphones and location data,” says the newspaper.
How can you protect yourself from attacks?
Cybersecurity firm Kaspersky says that the answer to keeping gadgets malware-free “has two parts”: antivirus software packages and personal vigilance.
When it comes to the latter, be “wary of emails that ask you to provide passwords”, or “emails that seem to be from friends, but have only a message such as ‘check out this cool website!’ followed by a link”, says the company.
In the reported Bezos hack, the message is believed to have included a photograph and a crypitc message that said: “Arguing with a woman is like reading the Software Licence Agreement. In the end you have to ignore everything and click I agree.”
The Times says users should also beware of unexpected links posted in messaging groups, and “should also use a different password for every app and service, and where possible, enable two-step authentication”.
Ensuring that software is “patched and up to date”, and that “all operating system updates are applied as quickly as possible after they’re released”, will help too, adds ZDNet.
Sign up for Today's Best Articles in your inbox
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
-
Nashville dining: Far more than barbecue and hot chicken
Feature A modern approach to fine-dining, a daily-changing menu, and more
-
Music Reviews: Coco Jones and Viagra Boys
Feature "Why Not More?" and "Viagr Aboys"
-
Visa wants to let AI make credit card purchases for you
The Explainer The program will allow you to set a budget and let AI learn from your shopping preferences
-
What happens if tensions between India and Pakistan boil over?
TODAY'S BIG QUESTION As the two nuclear-armed neighbors rattle their sabers in the wake of a terrorist attack on the contested Kashmir region, experts worry that the worst might be yet to come
-
Why Russia removed the Taliban's terrorist designation
The Explainer Russia had designated the Taliban as a terrorist group over 20 years ago
-
Blue Origin all-female flight: one giant leap back for womankind?
Talking Point 'Morally vacuous' celeb space crew embody defeat for feminism
-
Inside the Israel-Turkey geopolitical dance across Syria
THE EXPLAINER As Syria struggles in the wake of the Assad regime's collapse, its neighbors are carefully coordinating to avoid potential military confrontations
-
'Like a sound from hell': Serbia and sonic weapons
The Explainer Half a million people sign petition alleging Serbian police used an illegal 'sound cannon' to disrupt anti-government protests
-
The arrest of the Philippines' former president leaves the country's drug war in disarray
In the Spotlight Rodrigo Duterte was arrested by the ICC earlier this month
-
Ukrainian election: who could replace Zelenskyy?
The Explainer Donald Trump's 'dictator' jibe raises pressure on Ukraine to the polls while the country is under martial law
-
Why Serbian protesters set off smoke bombs in parliament
THE EXPLAINER Ongoing anti-corruption protests erupted into full view this week as Serbian protesters threw the country's legislature into chaos