Cyber Sleuths Find Traces of Infamous iPhone and Android Spyware 'Pegasus' in 45 Countries

Security researchers have found evidence that a piece of malware peddled as "lawful intercept" software to government agencies has been deployed against victims located in 45 countries, a number that far outweighs the number of known operators, meaning that some of them are conducting illegal cross-border surveillance. The findings come from a report published by Citizen Lab, a digital rights watchdog at the University of Toronto's Munk School of Global Affairs. ZDNet: The malware, known as Pegasus (or Trident), was created by Israeli cyber-security firm NSO Group and has been around for at least three years -- when it was first detailed in a report over the summer of 2016. The malware can operate on both Android and iOS devices, albeit it's been mostly spotted in campaigns targeting iPhone users primarily. On infected devices, Pegasus is a powerful spyware that can do many things, such as record conversations, steal private messages, exfiltrate photos, and much much more. Citizen Lab's researchers explained how they were able to arrive at the conclusion. They said they identified 1,091 IP addresses that matched their fingerprint for NSO's spyware. Then, they clustered the IP addresses into 36 separate operators with traces in 45 countries where these government agencies "may be conducting surveillance operations" between August 2016 and August 2018. Motherboard adds: Some of the countries where the researchers spotted Pegasus in democratic countries, such as the United States, France, and the UK, but there's also countries with questionable human rights records such as the United Arab Emirates, Bahrain, Mexico, Turkey, and Yemen. There's a caveat though. In some cases, the researchers aren't sure if the traces they found indicate an infection -- thus a target that may have been hacked from a foreign country -- or an operator. [...] "I can only hope that our research is causing these companies to think twice about sales where there is the potential for spyware abuse, causing potential customers to think twice about being associated with a company dealing with repressive governments, and causing potential investors to think twice about the inherently risky business of selling spyware to dictators." The report includes a corroboration of sorts from security firm Lookout, which noted that it had detected "three digits" Pegasus infections around the world.

It will be hard to infect my phone

It's one of those analog brick phones from the 1980s!

Too bad I haven't been able to get a signal for a couple of decades or more.

Re:c6gunner = "Run, Forrest: RUN!!!"... apk

That's no news. Everyone knows c6gunner is the bullshit artist loser you proved he is.

nothing to see here goy

Move along, refinance, and dont forget to pay your insurance premium for our bulletproof corrupt healthcare system or I'll send you to rehab.

Re:c6gunner = "Run, Forrest: RUN!!!"... apk

It's a wonder c6gunner hasn't left or changed his fakename after embarassing himself demanding proof of others but failing to do it when he was confronted fairly.

Re:c6gunner = "Run, Forrest: RUN!!!"... apk

Once more: It's a wonder c6gunner hasn't left or changed his fakename after embarassing himself demanding proof of others but failing to do it when he was confronted fairly.

c6who?

Should I care about who "c6runer" is? Nobody is talking about the topic of the article, just a lot of emotional butt-hurt about ... reputation? cyber-identity on slashdot? Is this just a couple of basement-dweller slugging it out or is this an actual important member of /. that needs some ... concern? support? I don't know how to feel about these two c6 guys. Can someone fill in details, or do I just ignore?

Re:c6who?

Only basement dweller I see is whose name is on this post as the submitter https://linux.slashdot.org/com... impersonating apk and changing slashdotters quotes.

Isn't it nice

[Plumpaquatsch]

Isn't it nice that Islamic countries use Israeli software to spy on their extremists?

Re:Isn't it nice

The Islamic world isn't really that great at innovating and creating new things (even if it's phone malware), so this is no surprise.

Re:Isn't it nice

When boring nazi faggots repeat the same old dull tropes everyone's heard a billion times from their retarded obese red-state assholes, is that actually innovating though? You're just another cloned boring faggot nazi about to die.

You didn't build anything and you keep getting your ass handed to you by antifa lol. It must be hard trying to convince anyone you're the master race or something when you're such retarded bitches lol, even Zuckerberg owns you.
And he's jewish.

Your ideology is getting flushed down the toilet faster than Trump's legal chances.

Re: Isn't it nice

1. The Nazis were leftwing nutcases.

2. The nazis killed faggots.

At least try to be historically accurate with your insults.

Re:Isn't it nice

It's poetic justice. Israel is notoriously deceptive and violent. Hopefully the Arabs and the rest of the world will use Israeli spy technology to defeat the Apartheid state once and for all.

Re:Isn't it nice

Bet they didn't pay for it :-D

Re:Isn't it nice

Spotted the butthurt Muslim...

meaning that some of them are conducting illegal..

Or, that someone other than "them" have access to the spyware. Gee, that has never happened before.

What it is

[rtb61]

Here is some interesting information about Pegasus and the POS firm that develops and sells it, of course it has to be Israeli, who else and the source https://www.kaspersky.com/blog..., no wonder a US government controlled by the Mossad wanted to ban them, just wont join the Israeli games of a forever expanding Israel, until the rest of the world is either consumed or destroyed.

They purposefully made use of zero day exploits, which makes them criminally negligent and they should be prosecuted but of course the Israeli government wont do it because Mossad, oh and yeah, the software did not just spy for the people who bought and deployed it, you gumbys, you were also facilitating Israel espionage and further penetration of security.

APK pretends people support him

it's a wonder that APK still pretends people support him.

c6gunner = "Run, Forrest: RUN!!!"... apk

c6gunner shot himself down w/ his FAKEname on a post impersonating me https://linux.slashdot.org/com... & w/ c6gunner altering /. user's words there.

All since I challenged c6gunner to show better work than mine he did & you can't c6gunner "ne'er-do-well"!

Right after you tried to mock me 1st https://linux.slashdot.org/com... for no good reason & I didn't bug you @ all!

YOU DEMAND PROOF OF OTHERS "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

I DEMANDED IT OF YOU & YOU FAILED!

* You're FAKENAME trash you childish dishonest punk + YOU are a DO-NOTHING "ne'er-do-well" CHATTERING dolt w/ ZERO to show for yourself!

APK

P.S.=> You say hosts are shit here https://slashdot.org/comments.... ?

50++ /.ers & security pros + RESULTS SAY DIFFERENT:

Proof's here from /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... from SECURITY PROS https://slashdot.org/comments.... & REAL RESULTS w/ hosts working vs. threats https://slashdot.org/comments.... so EAT YOUR WORDS... apk

Blatant antisemitism

You may be thinking that this is a scummy piece of software written by scummy people for scummy purposes, but what if I started shrieking accusations of antisemitism at you? You'd soon change your fucking tune wouldn't you?

Honestly though, what choice would you have?