DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
DigitalCIO
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
No Result
View All Result
Digitalcio
No Result
View All Result
Home Archive

How Pegasus Spyware Infected Phones through WhatsApp Servers

DigitalCIO Bureau by DigitalCIO Bureau
November 14, 2019
in Archive
0
74
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter

Recently, Pegasus spyware used WhatsApp servers to infect phones to steal data. Read on to know more about this spyware…

On October 29, US-based messaging platform WhatsApp dragged to court the NSO Group, an Israeli cyber-intelligence technology firm. Pegasus, which is capable of attacking both Android and iOS, has been around for three years and is considered one of the most sophisticated spyware in the market.

In the first lawsuit of its kind, WhatsApp has alleged that the NSO Group’s highly sophisticated spyware, Pegasus, infected 1,400 phones in 20 countries, including those of more than 100 human rights activists and journalists. According to Amnesty International, Pegasus has been targeting journalists in Mexico, Saudi dissidents and Amnesty’s own researchers since 2017.

About 40 people in India, most of whom are academics, journalists and activists, have since been identified as victims of this cyberattack.

Modus Operandi
In this particular attack using Pegasus spyware, the Israeli group used sophisticated tools. The hackers created WhatsApp accounts using telephone numbers registered in countries during January 2018 and May 2019. They used these numbers as launch pads to send a malicious code to target devices in April and May 2019.

In complaint against the hackers that was filed in a US Court, WhatsApp said that phone numbers were registered in countries like Cyprus, Israel, Brazil, Indonesia, Sweden, and the Netherlands.

“They leased servers and internet hosting services in different countries, including the United States, in order to connect the target devices to a network of remote servers intended to distribute malware and relay commands to the target devices,” WhatsApp has explained.

Working Mechanism
Pegasus spyware begins work after the user clicks on the infected link sent by the attacker. After an installation process that requires no permission from the user, the spyware begins to contact the phone’s control servers, allowing it to gather data from the infected device.

Pegasus gained access to their devices through missing WhatsApp video calls. Thereon it managed to receive and share with the attackers personal files such as messages, photos and contacts for a 14-day period starting April this year.

Looking to steal passwords, contacts, messages, calendar information and other private data, Pegasus also has the ability to hack the phone’s camera, microphone and GPS location. This time, the spyware attacked a vulnerability in the WhatsApp VoIP (Voice Over Internet Protocol), which is used to make video and audio calls.

It is so flexible that it could be customized for different purposes, including to intercept communications, capture screenshots, and copy browsing history and contacts from the device. Pegasus has been used in the past to take over a target’s device by simply asking users to click on a link packaged under a fake offering.

Damage Control
WhatsApp discovered cyber-attacks on its systems in May and rolled out various fixes and updates. With the help of The Citizen Lab at the University of Toronto, a six-month-long investigation led to the discovery of Pegasus. According to reports, The Citizen Lab then contacted the suspected targets and warned them that their devices might have been compromised.

But most users did not take it seriously. Eventually, WhatsApp contacted these users through a verified account. Meanwhile, WhatsApp users are scrambling to install the latest versions of their phones’ operating systems and of the app as this is the only cited preventive measure against Pegasus.

Share30Tweet19
DigitalCIO Bureau

DigitalCIO Bureau

Recommended For You

Data Recovery Experts Expand their Cloud and Security Skills at VeeamON Tour India

by DigitalCIO Bureau
September 1, 2023
0
Data Recovery Experts Expand their Cloud and Security Skills at VeeamON Tour India

Veeam Software flagged off its highly anticipated VeeamON Tour India 2023 in Mumbai today, delivering a rich experience to over 600 registrants. This month-long tour comes as an...

Read more

Dell Technologies Announces Intent to Acquire Moogsoft

by DigitalCIO Bureau
August 20, 2023
0
Dell Technologies Announces Intent to Acquire Moogsoft

Dell Technologies (NYSE: DELL) announced it has signed a definitive agreement to acquire Moogsoft, an AI-driven provider of intelligent monitoring solutions that support DevOps and ITOps.This transaction will further enhance...

Read more

Government Technology Agency of Singapore concludes third HackerOne bug bounty programme

by DigitalCIO Bureau
August 20, 2023
0

GovTech Singapore resolved 33 security weaknesses and awarded global hacker community over US$30,800 for contributing to a more secure and resilient smart nation HackerOne and Singapore's Government Technology...

Read more

XProtect(R) on Amazon Web Services Now Available in AWS Marketplace

by DigitalCIO Bureau
August 20, 2023
0

Customers with a cloud-first strategy and those looking for a hybrid VMS solution can now deploy a pre-configured XProtect as an elastic solution available globally with high flexibility...

Read more

OurCrowd Pandemic Innovation Conference to host global leaders, startups and investors online

by DigitalCIO Bureau
August 20, 2023
0

June 22 forum features tech solutions to global crisis, $100m OurCrowd Pandemic Innovation Fund OurCrowd will host the OurCrowd Pandemic Innovation Conference on June 22 to explore the...

Read more
Next Post

AI tool to predict life expectancy in heart failure patients

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Related News

NPTEL collaborates with IBM

July 9, 2018

SBI General launches cyber defence insurance for businesses

April 22, 2019
DigiCert Introduces Comprehensive Digital Trust Management For Indian Customers

DigiCert Introduces Comprehensive Digital Trust Management For Indian Customers

September 15, 2023

Browse by Category

  • Appointment
  • Archive
  • Artificial Intelligence
  • CIO Interviews
  • Cloud
  • Datacenter
  • Events and Conferences
  • Market Insights
  • News
  • Opinion and Analysis
  • Resources
  • Security
  • Storage
  • Tech News
Digitalcio

Welcome to DigitalCIO, your ultimate source for staying ahead in the ever-evolving world of technology and business.

CATEGORIES

  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources
  • Archive

BROWSE BY TAG

Acquisition AI AIOps Appointment artificial intelligence Artificial Intelligence and Machine Learning Big Data and Analytics Blockchain CISCO Cloud Computing Cloudflare CommScope CrowdStrike Customer Experience Cybersecurity Deloitte Digital Transformation E-books ESG Everest Group Gartner Generative AI IDC Infographics Infosys Internet of Things (IoT) Nessus Expert Netskope New Relic Nextiva o9 Solutions Oracle Panel Discussion Public cloud ransomware Redington Limited Salesforce software Sophos Sustainability Tenable Veeam Software Webinars WeWork India Whitepaper

NAVIGATION

  • Home
  • About Us
  • Advertise with Us
  • Contact Us

© 2023 digitalcio.in - All rights reserved.

No Result
View All Result
  • Home
  • Tech News
  • Market Insights
  • CIO Interviews
  • Events and Conferences
  • Opinion and Analysis
  • Resources

© 2023 digitalcio.in - All rights reserved.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?