Americas

Report: US officials’ phones hacked with Israeli spyware

The iPhones of at least nine US state department officials were recently hacked by a government using NSO Group spyware, according to a new report that raised serious questions about the use of Israeli surveillance tools against US government officials around the world.

The claim, which was reported by Reuters, comes just weeks after the Joe Biden administration placed NSO on a US blacklist and said the surveillance company acted “contrary to the foreign policy and national security interests of the US”.

According to Reuters, at least nine state department officials were hacked in the attack over the last several months, and the individuals who were targeted were either based in Uganda or focused on matters concerning the east African country. Reuters said it could not determine which NSO client was behind the attack.

NEWA National Security Council spokesperson stated in response to the Reuters report, “We have been acutely concerned that commercial spyware like NSO Group’s software poses a serious counterintelligence and security risk to US personnel, which is one of the reasons why the Biden-[Kamala] Harris administration has placed several companies involved in the development and proliferation of these tools on the Department of Commerce’s Entity List.”

The news comes just days after Apple launched a lawsuit against NSO and reports emerged that the tech giant was beginning to alert victims around the world who had been compromised by the hacking tool. Once NSO’s spyware – known as Pegasus – is successfully launched, it can hack into a mobile phone and intercept all communications, including encrypted messages. It can also turn any phone into a listening device, because once infected, a user of Pegasus can remotely control a mobile phone’s recorder and camera.

In a statement released in response to the Reuters story, NSO said it had decided to “immediately terminate relevant customers’ access to the system, due to the severity of the allegations”.

Pressed by the Guardian to identify the customers who had been cut off, an NSO spokesperson noted the company would not disclose information about its customers.

NSO added it had not received any information about the specific phone numbers that were targeted in the attack and had no indication that NSO tools were used in this case.

“On top of the independent investigation, NSO will cooperate with any relevant government authority and present the full information we will have,” the company announced. NSO also reiterated that its technologies are blocked from working on US numbers, but said it had “no way to know” who the targets of its customers are and would therefore not have been aware of this case.

Researchers at Citizen Lab at the University of Toronto recently discovered the code behind an NSO exploit that was alleged to have been used to infect iPhones as recently as this July. The exploit, which was then promptly fixed by Apple, used a vulnerability in the company’s iMessage function on all Apple products.

NSO has signalled that it would seek to convince the Biden administration to remove its name from the blacklist. But the latest revelation raises serious doubt that this will occur anytime soon.

Apple said it had no comment on the latest allegations.

While the report alleges the confirmed hack of US officials by a user of NSO surveillance tools, it is not the first time American citizens are believed to have been targeted. In July, the Pegasus Project, an investigation into NSO by the Guardian and other media outlets, which worked in coordination with the French non-profit media group Forbidden Stories, revealed evidence of attacks against American journalists and others.

Among the Americans who were hacked was Carine Kanimba, an activist and daughter of Paul Rusesabagina, the imprisoned Rwandan activist who gained international fame for inspiring the film Hotel Rwanda, about the Rwandan genocide. Kanimba is one of dozens of individuals who it is strongly suspected have been targeted. Rwandan authorities have staunchly denied having access to NSO Group technology, but have long been suspected of being a client of the Israeli firm.

The Pegasus Project also reported that the US phone number of a senior US diplomat, Robert Malley, who currently serves as the Biden administration’s envoy to Iran and was one of the lead negotiators of the Barack Obama administration’s Iran deal, appears to have been selected as a person of interest by an NSO customer. There is no evidence that Malley was hacked and NSO has staunchly denied that the leaked database at the heart of the Pegasus Project was connected to the company or its clients.

NSO has said its government clients are prevented from deploying its software against US numbers because it has been made “technically impossible”.

Reuters reported that the most “victims” who have recently been notified by Apple that they were hacked were “easily identifiable” as US government employees because of their associated email addresses, which ended in state.gov.

A senior Biden administration official, speaking to Reuters on condition that he not be identified, stated the threat to US personnel abroad was one of the reasons the administration was cracking down on companies such as NSO and pursuing new global discussion about spying limits. The official added that they have seen “systemic abuse” in multiple countries involving NSO’s Pegasus spyware.

 

IFP Media Wire

Reports and views published in the Media Wire section have been retrieved from other news agencies and websites, and do not necessarily reflect the opinion of the Iran Front Page (IFP) news website. The IFP may change the headlines of the reports in a bid to make them compatible with its own style of covering Iran News, and does not make any changes to the content. The source and URL of all reports and news stories are mentioned at the bottom of each article.

Recent Posts

Historic all-Women flight lands in Mashhad

For the first time in Iran's aviation history, a flight carrying an all-female crew and…

9 hours ago

Tehran Cyber Police shut down 40 Instagram accounts of harassers

Tehran’s Cyber Police Chief, Brigadier General Davood Moazzami Goudarzi, announced a crackdown on individuals causing…

11 hours ago

Qatar warns may stop gas shipments to EU amid Russia-Ukraine war

Doha will stop gas shipments to the EU if member states enforce new legislation on…

11 hours ago

UK armed forces struggling for recruits: Telegraph

At least 15,000 British soldiers left the country's Armed Forces between November 2023 and October…

11 hours ago

Nearly 85k Russian soldiers killed in Ukraine: Report

Journalists have identified the names of 84,761 Russian soldiers who died during the war in…

15 hours ago

US downs own warplane while bombing Yemen: Pentagon

The United States Navy has inadvertently shot down its own F/A-18 fighter jet in a…

15 hours ago