Community Edition
Total Tests:
This Week:
Today:
Recent Blog Posts
Four Iranian Hackers Charged With Cyberattacks On American Firms
April 25, 2024
An Ex-Amazon Security Engineer Gets 3 Years In Jail For Hacking And Crypto Theft
April 18, 2024
Hacker Fakes His Own Death To Avoid Child Support Payments
April 11, 2024
ATM Skimming Ring Leader Sentenced To 75 Months In Prison
April 4, 2024
German Authorities Dismantle the Nemezis Market Dark Web Marketplace
March 28, 2024
Stay in Touch

Get exclusive updates and invitations to our events and webinars:


Your data will stay confidential Private and Confidential

ImmuniWebInternational Media Coverage

Pegasus Spyware Targets Jordanian Civil Society in Wide-Ranging Attacks

By Robert Lemos for Dark Reading
Monday, February 5, 2024

The individuals are the latest to be targeted by governments with the NSO Group's surveillance software. In September, for example, Pegasus spyware was detected on the phone of an exiled Russian journalist, apparently installed with a zero-click exploit (one that requires no action by the user). In December 2022, a group of nearly two dozen journalists in El Salvador sued the NSO Group for its part in surveillance of the reporters.

Governments are using the software to target critics and activists without due process, says Ilia Kolochenko, founder of ImmuniWeb, a penetration testing service provider.

"Journalists and lawyers are commonly protected from overly intrusive investigations by the virtue of criminal procedure or another legislation that was not specifically designed to offer robust protection from cyber investigations," he says, adding: "The Middle East traditionally had less privacy related legislation; however, now the situation [is] rapidly changing."

Policy Needed, But Technology Can Help

The NSO Group spokesperson points to its 2023 Transparency and Responsibility Report to highlight its criteria in allowing sales of software to the governments of specific nations.

"We help government intelligence and law enforcement agencies lawfully address their most pressing national security and public safety issues," the report stated, pointing to the terrorist attacks on Israel by Hamas as an example of the type of incident the company is trying to prevent. "Cyber intelligence technology is a critical tool for preventing and investigating terrorism and serious crimes, and for thereby protecting individuals' fundamental rights to life, liberty, and security."

For the most part, better policy is needed to rein in the use of spyware and exploits against individual users. The targeting of journalists, lawyers, and activists for exercising free speech shows that additional protections need to be put in place, says ImmuniWeb's Kolochenko.

"It's a cat-and-mouse game — privacy technologies will continually improve but cybersecurity experts or hackers will continually bypass them," he says. "I would rather implement protection on the legislative layer, ensuring a transparent and efficient supervision of cyber operations by law enforcement agencies that would both protect confidential information about investigations and ensure due process."

While the NSO Group has found ways — and bought exploits on secondary markets — to get around smartphone and computer defenses, keeping devices up-to-date and remaining vigilant of links and attachments can make the devices much harder to compromise, he says. Read Full Article


Previous Media Publications:

SecurityWeek: FTC Orders Blackbaud to Address Poor Security Practices

Radio Lac: Lutte contre les commentaires anonymes: "une fausse bonne idée"

This website uses cookies to provide you with a better surfing experience. To learn more, please visit our Privacy Policy. By continuing to use this website you consent to our use of cookies.

Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a technical question?

Our security experts will answer within
one business day. No obligations.

Have a sales question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
Your data will stay private and confidential