A number of US officials have been reportedly been contacted by Apple informing them that their iPhones have been hacked by NSO Group.
Early efforts have led investigators to believe that the hack was carried out using the Pegasus tool developed by Israel-based NSO Group. The company was only recently added to the US’ entity list.
The attacks targeted US State Department staff either working in Uganda or focusing their work on matters related to the African country, according to Reuters which first reported the story.
The attacks are believed to have taken place over the past few months and initial reporting revealed at least nine staff were successfully targeted, with other reports suggesting the number might be slightly higher at 11.
NSO Group published a statement on Friday saying it plans to investigate the situation and terminate the contract it has with whatever country is found to have misused the Pegasus tool.
“Last night, following an inquiry we received alleging Ugandan phone numbers used by US government officials were hacked, we immediately shut down all the customers potentially relevant to this case, due to the severity of the allegations, and even before we began the investigation,” said NSO Group.
“This termination took place despite the fact that there is no indication the phones were targeted by NSO’s technology. The claims of all involved parties specifically mentioned there is no indication, let alone proof, that it was NSO’s tools that were used by these customers.”
IT Pro contacted the US State Department and Apple for comment but neither replied at the time of the publication. Both have declined to comment to other media.
NSO Group has faced numerous challenges in the previous few months. Most recently, Apple filed a lawsuit against the company for allegedly hacking Apple users and violating US laws.
Since the group was linked to Pegasus, the highly invasive spying tool made by NSO Group and licensed to other countries with approval from the Israeli government, many western countries have turned their backs on the company.
The US government added NSO Group to its entity list which heavily restricts the business opportunities of those on the list with the US.
RELATED RESOURCE
It was this development that led newly appointed CEO Isaac Benbenisti to quit the post before he even started at the company.
As well as reportedly being faced with significant financial difficulty, NSO Group has continually battled the allegations fielded to it, that it helps rogue nations attack activists, journalists, and other individuals deemed to be threats.
Notable victims of the Pegasus spyware include Jamal Khashoggi, a prominent critic of the Saudi Arabian government, whose phone was found to have Pegasus installed on it after he was murdered in Istanbul in 2018.
NSO Group remains firm on its stance that Pegasus is not a tool to be used for malicious purposes and instead Pegasus is bought and used by governments for good, like combatting terrorism.
The company has said it installed security controls in Pegasus which prevent spying on innocent targets. For example, Pegasus cannot be used on US phone numbers, those beginning with a +1 country code.
The US officials found to have Pegasus on their iPhones were using Ugandan-registered phones, reports indicate, which means the country code would have been different and perhaps not included in the security controls for innocents.
-
Should AI PCs be part of your next hardware refresh?AI PCs are fast becoming a business staple and a surefire way to future-proof your business
-
Westcon-Comstor and Vectra AI launch brace of new channel initiativesNews Westcon-Comstor and Vectra AI have announced the launch of two new channel growth initiatives focused on the managed security service provider (MSSP) space and AWS Marketplace.
-
Greek intelligence allegedly uses Predator spyware to wiretap Facebook security stafferNews The employee’s device was infected through a link pretending to confirm a vaccination appointment
-
North Korean-linked Gmail spyware 'SHARPEXT' harvesting sensitive email contentNews The insidious software exfiltrates all mail and attachments, researchers warn, putting sensitive documents at risk
-
Young hacker faces 20-year prison sentence for creating prolific Imminent Monitor RATNews He created the RAT when he was aged just 15 and is estimated to have netted around $400,000 from the sale of it over six years
-
European company unmasked as cyber mercenary group with ties to RussiaNews The company that's similar to NSO Group has been active since 2016 and has used different zero-days in Windows and Adobe products to infect victims with powerful, evasive spyware
-
Mysterious MacOS spyware discovered using public cloud storage as its control serverNews Researchers have warned that little is known about the 'CloudMensis' malware, including how it is distributed and who is behind it
-
Apple launching Lockdown Mode with iOS 16 to guard against Pegasus-style spywareNews Apple breaks its bug bounty record with $2 million top prize, alongside $10 million grant funding, as it launches industry-first protections for highly targeted individuals
-
El Salvador becomes latest target of Pegasus spywareNews The list of nations with access to Pegasus is growing, with evidence pointing to potential links between 35 confirmed Pegasus cases and the Salvadoran government
-
Egyptian exiles targeted with Predator spyware resembling NSO Group's PegasusNews A high-profile politician and journalist have been targeted with spyware likely spread using WhatsApp messages
