Arnon Grunberg
Words
About
Now
Blog
RecentBlog Archive
CalendarNews

Tequila

Byword

April 20 2023, New York, United States

On advanced spyware - Natalie Kitroeff and Ronen Bergman in NYT:

‘The Israelis had come to Mexico to clinch a major sale: The Mexican military was about to become the first client ever to buy their product, the world’s most advanced spyware.
But before they could close the deal, an argument erupted over price and how quickly the spy tool could be delivered. A Mexican general overseeing the negotiations called for a pause until later that evening, according to two people present and a third with knowledge of the talks.
“We’ll pick you up at your hotel and make sure to arrange a better atmosphere,” they recalled the general saying.
That night, a convoy of cars arrived at the Israeli executives’ hotel and took them to a new spot for the fateful negotiations: a strip club in the heart of Mexico City.’

(…)

‘It was in that dark cabaret in March 2011, among women dancing onstage and shots of tequila, that the most powerful cyberweapon in existence got its start.
The spyware, known as Pegasus, has since become a global byword for the chilling reach of state surveillance, a tool used by governments from Europe to the Middle East to hack into thousands of cellphones.
No place has had more experience with the promise and the peril of the technology than Mexico, the country that inaugurated its spread around the globe.
A New York Times investigation based on interviews, documents and forensic tests of hacked phones shows the secret dealings that led Mexico to become Pegasus’ first client, and reveals that the country grew into the most prolific user of the world’s most infamous spyware.’

(…)

‘In fact, Mexico’s military is not only Pegasus’ longest-running client, the four people say, but it has also targeted more cellphones with the spyware than any other government agency in the world.’

(…)

‘The Israeli defense ministry declined requests for comment. The Mexican defense ministry would not discuss the recent hack but said it followed the government’s position, which asserts that intelligence gathering is “in no way aimed” at invading the private life of political, civic and media figures.
This was the second wave of attacks on the phone of Santiago Aguirre, one of the human rights defenders. He had been targeted with Pegasus during the previous administration, too, Citizen Lab found.
“This government made so many promises that things would be different,” Mr. Aguirre said. “Our first reaction was to say, ‘This can’t be happening again.’” A spokesman for the Mexican president declined to comment. In a statement, NSO Group said it “adheres to strict regulation and cannot disclose the identity of its customers.” The company challenged the conclusiveness of Citizen Lab’s forensic analyses, while Citizen Lab said it had no doubts about its findings.
To verify whether Pegasus hacked the two Mexican human rights advocates in recent months, NSO Group said it would need to be “given access to the data.” But the advocates said they were not willing to give the government’s spying partner any more of their private information.’

(…)

‘n September 2011, about 30 NSO employees, most of the company’s staff, flew to Mexico to set up Pegasus, test it and instruct a team of about 30 Mexican soldiers and officers how to operate the technology, according to three people familiar with the installation. The Mexican unit chosen to operate it was called the Military Intelligence Center, a secretive arm of the army about which little has been made public.
Once the Mexicans were ready to run Pegasus on their own, a short ceremony took place that December as a way of “handing over the keys,” two of the people said.’

(…)

‘Condemnation came swiftly from at home and abroad, and the scandal clung to Mr. Peña Nieto for the rest of his presidency. In all, Mexico has spent more than $60 million on Pegasus, according to Mexican officials, citing spending by past administrations.’

(…)

‘“Apple believes you are being targeted by state-sponsored attackers who are trying to remotely compromise the iPhone associated with your Apple ID,” said the message, which was reviewed by The Times. “These attackers are likely targeting you individually because of who you are or what you do.” In 2021, Apple announced it would begin sending warnings like this to users whose cellphones had been hacked by sophisticated spyware. The email went on to say that “sensitive data” on Mr. Aguirre’s phone may be compromised, “even the camera and microphone.”’

Read the article here.
So Pegasus has been used in Mexico since 2011 and in Israel since when?

As far as I can see the first time NYT has reported about it was in 2016, see here.

The warning of Apple is also a bit dubious. What does Apple know exactly?

The best option is no phone, Bin Laden didn’t use a phone, but even that didn’t help him in the end.

And probably Pegasus is the top of the iceberg, or at least just a small part of it.

discuss on facebook