[TheRecord] Finland says it found NSO’s Pegasus spyware on diplomats’ phones

The Finnish government said today that the telephones of some of its foreign diplomats were infected last year with Pegasus, a spyware strain developed by controversial Israeli surveillance vendor NSO Group.

Finland’s Ministry of Foreign Affairs said the hacks were discovered in the autumn and winter of 2021–2022 and that the espionage campaign is no longer active.

Officials said that both Android and iPhone phones were infected but that the devices only stored information classified at “level 4,” which they said was their lowest level of classified information.

“However, it is worth noting that even if information is not directly classified, the information itself and its source may be subject to diplomatic confidentiality,” the Finnish Ministry of Foreign Affairs said in a press release today.

In a press conference, officials said they are still investigating the hacks to determine who was behind the espionage attempt.

Since launching the Pegasus surveillance platform in the mid-2010s, NSO Group has sold access to tens of governments across the globe.

While the spyware (and its maker) have become famous for repeatedly being found on the devices of human rights activists, dissidents, and journalists in countries with oppressive regimes, a New York Times report published today claimed that one of its past customers might have also been the US Federal Bureau of Investigations.

In addition, today’s Finnish revelations also come after similar reports of Pegasus being deployed on devices in other European countries, such as Hungary and Poland, suggesting that the Israeli company had a much larger clientele in democratic countries as well.

Reached out for comment on the Finnish government’s press release today, an NSO Group spokesperson provided the following statement:

NSO Group does not know the facts, but can assure that we will be assisting in any investigation on this issue to determine whether a misuse of our products occurred. If and when a misuse by one of our customers would be found, we will take immediate action, including terminating the customer’s system and contract.

The post Finland says it found NSO’s Pegasus spyware on diplomats’ phones appeared first on The Record by Recorded Future.

Source: Read More (The Record by Recorded Future)

You might be interested in …

Daily NCSC-FI news followup 2021-06-07

Siloscape: First Known Malware Targeting Windows Containers to Compromise Cloud Environments unit42.paloaltonetworks.com/siloscape/ In March 2021, I uncovered the first known malware targeting Windows containers, a development that is not surprising given the massive surge in cloud adoption over the past few years. I named the malware Siloscape (sounds like silo escape) because its primary goal […]

Read More

Daily NCSC-FI news followup 2020-08-05

Defending the Oil and Gas Industry Against Cyber Threats securityintelligence.com/posts/oil-gas-security/ The oil and gas industry is one of the most powerful financial sectors in the world, critical to global and national economies. Therefore, this industry is a valuable target for adversaries seeking to exploit Industrial Control Systems (ICS) vulnerabilities. As the recent increase in attacks […]

Read More

[ZDNet] NVIDIA says employee credentials, proprietary information stolen during cyberattack

All posts, ZDNet

The microchip company said it first became aware of the incident on February 23 and added that it impacted its IT resources. Source: Read More (Latest topics for ZDNet in Security)

Read More