Adonis Diaries

All iPhone Devises Were Exploited by Israeli Spy Tech Firm: The Pegasus Saga

Posted on: September 16, 2021

Report Indicates

September 13, 2021

Israeli malware Pegasus has been used to spy on journalists, activists. (Photo: via Wikimedia Commons)

The digital rights group CitizenLab has discovered a vulnerability that allowed Israeli spyware company NSO Group to implant its Pegasus malware onto virtually every iPhone, Mac, and Apple Watch device.

CitizenLab revealed the vulnerability on Monday, a week after discovering it by analyzing the phone of a Saudi activist that had been infected with the malware. The discovery was announced to the public shortly after Apple rolled out an update to patch the vulnerability

.https://platform.twitter.com/embed/Tweet.html?dnt=true&embedId=twitter-widget-0&features=eyJ0ZndfZXhwZXJpbWVudHNfY29va2llX2V4cGlyYXRpb24iOnsiYnVja2V0IjoxMjA5NjAwLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X2hvcml6b25fdHdlZXRfZW1iZWRfOTU1NSI6eyJidWNrZXQiOiJodGUiLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X3NwYWNlX2NhcmQiOnsiYnVja2V0Ijoib2ZmIiwidmVyc2lvbiI6bnVsbH19&frame=false&hideCard=false&hideThread=false&id=1437499621077655554&lang=en&origin=https%3A%2F%2Fwww.palestinechronicle.com%2Fthe-pegasus-saga-all-iphone-devises-were-exploited-by-israeli-spy-tech-firm-report-indicates%2F&sessionId=f005a2873edc2f723331512be8a377d645946645&theme=light&widgetsVersion=1890d59c%3A1627936082797&width=550px

The vulnerability allowed the NSO Group’s clients to send malicious files disguised as .gif files to a target’s phone, which would then exploit “an integer overflow vulnerability in Apple’s image rendering library” and leave the phone open to the installation of NSO Group’s now-infamous ‘Pegasus’ malware.

The exploit is what’s known as a ‘zero-click’ vulnerability, meaning that the target user would not have to click a suspicious link or file to allow the malware onto their device .

https://platform.twitter.com/embed/Tweet.html?dnt=true&embedId=twitter-widget-1&features=eyJ0ZndfZXhwZXJpbWVudHNfY29va2llX2V4cGlyYXRpb24iOnsiYnVja2V0IjoxMjA5NjAwLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X2hvcml6b25fdHdlZXRfZW1iZWRfOTU1NSI6eyJidWNrZXQiOiJodGUiLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X3NwYWNlX2NhcmQiOnsiYnVja2V0Ijoib2ZmIiwidmVyc2lvbiI6bnVsbH19&frame=false&hideCard=false&hideThread=false&id=1437250818986573827&lang=en&origin=https%3A%2F%2Fwww.palestinechronicle.com%2Fthe-pegasus-saga-all-iphone-devises-were-exploited-by-israeli-spy-tech-firm-report-indicates%2F&sessionId=f005a2873edc2f723331512be8a377d645946645&theme=light&widgetsVersion=1890d59c%3A1627936082797&width=550px

While most Apple devices were vulnerable, according to the researchers, not all of those afflicted by the spyware were breached in this way. Instead, NSO Group sold the use of its malware to clients around the world, who used the tool to spy on the phones of rival politicians, journalists, activists, and business leaders.

News of the malware’s existence was first broken earlier this summer by Amnesty International and Forbidden Stories, a French investigative outlet, and reported by a collection of partner news outlets.

Among those accused of using the Israeli malware are the governments of Azerbaijan, Bahrain, Kazakhstan, Mexico, Morocco, Rwanda, Saudi Arabia, Hungary, India, and the United Arab Emirates (UAE).

https://platform.twitter.com/embed/Tweet.html?dnt=true&embedId=twitter-widget-2&features=eyJ0ZndfZXhwZXJpbWVudHNfY29va2llX2V4cGlyYXRpb24iOnsiYnVja2V0IjoxMjA5NjAwLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X2hvcml6b25fdHdlZXRfZW1iZWRfOTU1NSI6eyJidWNrZXQiOiJodGUiLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X3NwYWNlX2NhcmQiOnsiYnVja2V0Ijoib2ZmIiwidmVyc2lvbiI6bnVsbH19&frame=false&hideCard=false&hideThread=false&id=1437495042961072133&lang=en&origin=https%3A%2F%2Fwww.palestinechronicle.com%2Fthe-pegasus-saga-all-iphone-devises-were-exploited-by-israeli-spy-tech-firm-report-indicates%2F&sessionId=f005a2873edc2f723331512be8a377d645946645&theme=light&widgetsVersion=1890d59c%3A1627936082797&width=550px

A leaked list suggested that as many as 52,000 names were marked as possible targets for surveillance by NSO Group’s customers, and roughly a tenth of these targets were reportedly surveilled.

Pegasus granted users access to calls, messages, photos and files, and allowed them to secretly turn on the target phones’ cameras and microphones.

CitizenLab pinned the latest exploit on NSO Group after discovering a so-called ‘digital artifact’ left behind that matched calling cards left by the company’s other exploits, and similarly-named processes in its code.

https://platform.twitter.com/embed/Tweet.html?dnt=true&embedId=twitter-widget-3&features=eyJ0ZndfZXhwZXJpbWVudHNfY29va2llX2V4cGlyYXRpb24iOnsiYnVja2V0IjoxMjA5NjAwLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X2hvcml6b25fdHdlZXRfZW1iZWRfOTU1NSI6eyJidWNrZXQiOiJodGUiLCJ2ZXJzaW9uIjpudWxsfSwidGZ3X3NwYWNlX2NhcmQiOnsiYnVja2V0Ijoib2ZmIiwidmVyc2lvbiI6bnVsbH19&frame=false&hideCard=false&hideThread=false&id=1437428040192061443&lang=en&origin=https%3A%2F%2Fwww.palestinechronicle.com%2Fthe-pegasus-saga-all-iphone-devises-were-exploited-by-israeli-spy-tech-firm-report-indicates%2F&sessionId=f005a2873edc2f723331512be8a377d645946645&theme=light&widgetsVersion=1890d59c%3A1627936082797&width=550px

The NSO Group has not commented on CitizenLab’s latest research, which comes just one day before Apple’s anticipated unveiling of the iPhone 13 ahead of its launch later this month.

(RT.com, PC, Social Media)

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

adonis49

adonis49

adonis49

September 2021
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
27282930  

Blog Stats

  • 1,482,486 hits

Enter your email address to subscribe to this blog and receive notifications of new posts by email.adonisbouh@gmail.com

Join 813 other followers

%d bloggers like this: