Technology

Thousands of people infected by Pegasus spyware – even iOS 14.6 is vulnerable

Thousands of people infected by Pegasus spyware – even iOS 14.6 is vulnerable

Pegasus is once again at the forefront of the controversy. The well-known Israeli spyware is the focus of an investigation led by The Guardian and The Washington Post with the collaboration of Amnesty International and Forbidden Stories. According to the results of this investigation, the Pegasus spyware would have generated a list with 50,000 tracking targets of high interest. Among them, politicians, journalists, businessmen of large and important companies and activists.

Generated since 2016, this list would have been commissioned by direct clients of the company that owns Pegasus, NSO Group. Among its clients, governments of countries such as Spain or India. Also from Mexico, the country with the most clients according to the investigation; specifically 15,000. Morocco and Emirates would also be the regions with the most listed managers (10,000 each).

According to the details of the report, the list with the details of the 50,000 targets does not imply that they have been spied on or infected with the tracking system. It simply puts them in the spotlight by some contracting organization for NSO Group services.

However, after analysis of the investigation, it was concluded that more than half of the contacts in that list contained traces of infection by Pegasus spyware. The research group points out that this list will be published in the coming days.

For now, they are targeting the most varied profiles. Most of it is concentrated in Algeria, Mexico, France or Turkey. Politicians of all colors and parties, academics, executives and people from their close and family environment. Also journalists from large international media and from El País in Spain . The contact of Cecilio Pineda is included; the Mexican journalist murdered in 2017 whose mobile phone was never found to verify if, indeed, he had been tracked by Pegasus spyware at the request of a client, also Mexican.

Pegasus spyware, an old acquaintance

Photo by Laura Chouette on Unsplash Pegasus spyware is an old dog. Especially since its presence on Android and Apple devices became known in 2016. After that, the NSO Group's flagship product has been linked to the murder of Saudi journalist Jamal Khashoggi, the WhatsApp security breach in 2019 , the espionage of Bezos as well as the use by the National Intelligence Center (CNI) in Spain to spy on Catalan politicians during the process.

Since then, and as a result of this investigation, the position of NSO has always been the same. The software is for purposes of use for national security and criminal investigations . Nothing related to terrorism or crime. However, and as stated in the investigation, some of the data found are related to international criminals . This indicates a breach of contract on the part of the contracting parties and a high permissiveness on the part of the NSO Group. Company that, regarding this leak, points out that does not control the use of its technology by customers since the leak of the list is an exaggeration of events.

If Pegasus enters a device, it ceases to belong to its owner almost instantly

Regarding the vulnerabilities of the system, none of the affected companies have made statements. Apple insists on having the most secure operating system at the moment, except for Pegasus spyware. The details of the investigation suggest that the new version of spyware would have evolved even for the iPhone iOS 14.6. If before you had to make a link to let malicious software enter the system, this it would have evolved to be able to access with a simple message through iMessage. Without the affected person having to make a single click. This indicates that, right now, all iPhones (updated to the latest version of iOS 14.6) are vulnerable to Israeli spyware .

A vulnerability that, in fact, would give almost total access to the affected person's mobile device. From listening to phone calls, browsing history, files, access to the camera or access to all installed applications and the data stored there. Also to the location information with the precision of just a few meters , including speed of movement.

Basically, if Pegasus breaks into a device, the device is no longer owned by its owner almost instantly. Except for devices registered in the United States and Israel. Which, according to the company, are the exception to Pegasus spyware in order to protect the interests of the company.

NSO Group, between silence and controversy

NSO Group, and creator of the most watched software of the moment, is considered one of the successes of entrepreneurship in Israel . Founded by Shalev Hulio, Niv Carmi and Omri Lavie, three agents of the Israel cyber intelligence group, its premise was clear from the start: to give a useful tool to the governments of the world to monitor criminals. And the reality is that little is known about these founders. Unlike their Silicon Valley peers, they could circulate around the world without anyone knowing about them.

The governments of the world were soon attracted by such a large tool. Mexico was the first of them to use Pegasus spyware, still in its infancy, to catch drug lord “El Chapo” Guzmán. After that, the company's popularity soared , as did its valuation and funding rounds. In fact, the founders sold NSO to international funds for 1,000 million, to later buy it later, seeded with controversy.

The idyllic promise of “hunting down the bad guys” was soon dissolved when multiple investigations pointed to the use of NSO technology to investigate activists or opponents of governments. Also of illegal sales of the software through cryptocurrencies or opaque relations with Saudi Arabia to limit human rights in the region. For its part, NSO has given silence in response to these accusations. As well as little data on their movements and clients.

Its power is such that, two years after its founding, Israel considered spyware Pegasus to be a full-blown weapon . As such, it could only be sold to governments with the tacit approval of the state of Israel and the NSO board in order to preserve human rights and the use of the spy platform. A process that, in view of the events, makes waters.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Most Popular

To Top