| Category | Details |
|---|---|
| Threat Actors | NSO Group (developer of Pegasus spyware) |
| Campaign Overview | NSO exploited vulnerabilities in WhatsApp to infect devices of 1,400 users, including activists and officials. |
| Target Regions/Victims | Journalists, human rights activists, political dissidents, diplomats, senior foreign officials worldwide. |
| Methodology | Exploited a bug in WhatsApp systems, used a “WhatsApp Installation Server” (WIS) to install Pegasus spyware. |
| Product Targeted | |
| Malware Reference | Pegasus |
| Tools Used | WhatsApp Installation Server (WIS), custom malware exploits. |
| Vulnerabilities Exploited | Specific WhatsApp system bug(s) (not detailed in the text). |
| TTPs | Continuous tweaking of exploits, server-side installation of spyware, data extraction through WhatsApp servers. |
| Attribution | Northern California federal court held NSO Group liable under CFAA and CDAFA. |
| Recommendations | Spyware companies should take accountability; improved security infrastructure and legal actions are essential. |
| Source | The Record |
Read full article: https://therecord.media/judge-rules-nso-group-liable-for-hack-of-1400-whatsapp-users
The above summary has been generated by an AI language model
Related posts:
Smuggler’s Gambit: Uncovering HTML Smuggling Adversary in the Middle Tradecraft | Huntress
'PopeyeTools' marketplace for stolen credit cards disrupted by feds
Security News This Week: Andrew Tate’s ‘Educational Platform’ Was Hacked
Krispy Kreme Cyber Attack Disrupted Online Ordering in the US
Leave a Reply