HeadlinesBriefing favicon HeadlinesBriefing.com

Pegasus Spyware Hit MEP Investigating Its Abuses

Hacker News •
×

A former Member of the European Parliament, Stelios Kouloglou, was repeatedly targeted with NSO Group’s Pegasus spyware while serving on a committee that investigated such abuses. Citizen Lab's forensic analysis confirmed infections on October 21, 2022, and again on March 6-7, 2023. These dates coincide with critical periods of the PEGA committee's work.

Kouloglou was a member of the European Parliament's Committee of Inquiry into Pegasus spyware from March 2022 to July 2023. The committee was established following revelations of spyware use against journalists and activists. The timing of the hacks suggests an attempt to gain non-public information about the committee's investigations, potentially breaching parliamentary confidentiality.

While the specific government responsible remains unconfirmed, Citizen Lab noted an overlap with a previous Pegasus campaign targeting exiled journalists and activists in Europe. This suggests a state actor with authorization to operate across multiple European countries deployed the spyware. The infections occurred during sensitive committee deliberations and preparation for country visits.

Kouloglou also received multiple Apple threat notifications regarding mercenary spyware targeting on three separate occasions, though he did not recall receiving them. The analysis points to the PWNYOURHOME zero-click exploit, which Apple has since mitigated in iOS updates.