Skip to main content

NSO has carried out 'unlawful' surveillance to target Amnesty staff members, HRDs


Counterview Desk
Following the exposure that Israeli spyware Pegasus, manufactured by NSO Group, has been used as a surveillance tool on smartphones used by about 1,500 human rights defenders (HRDs), journalists and activists, including in India, the top rights body, Amnesty International India, has appealed to those who have received a notification immediately to get in touch with Amnesty Tech at share@amnesty.tech for support.
An Amnesty release on November 2 said that the rights body could also be contacted “on Signal or WhatsApp at +44 7492 882216”, adding, “We would be keen to provide support to HRDs, who have been targeted, to ensure they take defensive security measures immediately, as well as to understand more about the attacks and investigate possible infections.”
Meanwhile, Amnesty has put out questions and answers for HRDs, activist, or journalist based in India to understand NSO Group’s spyware Pegasus especially the WhatsApp targeting.

Text:

Q: What do we know about the NSO Group and its ‘Pegasus’ Spyware?
A: ‘NSO Group’ is an Israeli spyware manufacturer that claims to sell its surveillance tools – the most well-known being its Pegasus spyware – exclusively to governments and government agencies ‘to combat terror and crime’.
Its products have been misused multiple times to conduct unlawful surveillance against human rights defenders. In the past, it has been used to target an Amnesty International staff member, HRDs, activists, and journalists from Saudi Arabia, UAE, Mexico, Morocco, and Rwanda.
Q: How does Pegasus work?
A: If infected by the Pegasus spyware, the user’s Smartphone is compromised. It can track keystrokes, take control of the phone’s camera and microphone, and access contact lists and encrypted messages.
Until now, Pegasus is known to be delivered through SMS messages carrying malicious links and through exploiting a zero-day vulnerability on WhatsApp. In the latter, intrusive spyware could be delivered on to the target’s mobile device without the targeted person having to click on a malicious link. The targeted person would simply see a missed call on WhatsApp.
In addition to this, Amnesty International has also found evidence of network injection attacks that could also be attributed to NSO Group. Network injection attacks are generally called “man-in-the-middle” attacks. Through this, an attacker with access to a target’s mobile network connection can monitor and opportunistically hijack web traffic and silently re-route the web browser to malicious exploit pages.
Q: How did the targeting via WhatsApp work?
A: NSO Group exploited a security vulnerability in WhatsApp until May 2019. In order to exploit this, the digital attack initiated WhatsApp calls to the target’s device. Attackers may have tried to exploit this issue by making calls multiple times during the night when the target was likely to be asleep and not notice these calls. Successful infection of the target’s device may result in the app crashing. There is a possibility that the attacker may also remotely erase evidence of these calls from the device’s call logs. Evidence of failed attacks may appear as missed calls from unknown numbers in your WhatsApp call log.
Q: If I didn’t receive a notification from WhatsApp, does this mean I wasn’t targeted by NSO Group’s tools?
A: NSO Group’s Pegasus tool is used for targeted attacks and by design, is not meant for mass surveillance. This means that only select individuals would have been targeted. However, if you are a high risk user, i.e., an activist, journalist, or HRD involved in politically sensitive activism, you cannot presume that you have not been targeted simply because you haven’t received a notification from WhatsApp.
The attack was delivered by exploiting a vulnerability in WhatsApp. However, NSO Pegasus infections can also be delivered through other means. Based on information revealed by our own investigations, an Amnesty International staffer was targeted using SMS messages. One HRD in Morocco was targeted both before and after the attacks using the WhatsApp exploit, but not with the WhatsApp exploit itself. Both of them were targeted using SMS messages containing malicious links and network injection attacks that could also be attributed to NSO Group’s tools. This indicates that NSO Group has the documented capability to deliver infections through means other than WhatsApp.
Q: If WhatsApp was targeted, can’t I just switch to another encrypted platform?
A: No. A vulnerability in the WhatsApp software was exploited to deliver the spyware. All complex software can have these types of vulnerabilities. This vulnerability was not a flaw in WhatsApp’s end-to-end encryption protocol.
This also does not mean that only the Whatsapp data of the target was compromised. If the attack attempt was successful, the spyware would gain full access to the device. Any other data on the device including encrypted platforms such as Signal or Telegram could then also have been accessed.
Q: Can Pegasus plant data into my devices?
A: Based on publicly available information, planting data is not a feature of NSO Group’s Pegasus spyware.
Q: What steps can I take to protect myself?
A: None of the security best practices offer complete and foolproof protection. However, it is a good practice to install the latest software updates of operating systems and encrypted messaging applications on your mobile device.
Pegasus remains a relatively uncommon threat and standard digital hygiene steps are still important. Keep your devices software up-to-date. Use a unique password for each service that you use and store these passwords in a secure password manager. Enable two-factor authentication on all accounts where it is available.

Comments

Post a Comment

TRENDING

Countrywide protest by gig workers puts spotlight on algorithmic exploitation

By A Representative   A nationwide protest led largely by women gig and platform workers was held across several states on February 3, with the Gig & Platform Service Workers Union (GIPSWU) claiming the mobilisation as a success and a strong assertion of workers’ rights against what it described as widespread exploitation by digital platform companies. Demonstrations took place in Delhi, Rajasthan, Karnataka, Maharashtra and other states, covering major cities including New Delhi, Jaipur, Bengaluru and Mumbai, along with multiple districts across the country.
Post a Comment
»

Swami Vivekananda's views on caste and sexuality were 'painfully' regressive

By Bhaskar Sur* Swami Vivekananda now belongs more to the modern Hindu mythology than reality. It makes a daunting job to discover the real human being who knew unemployment, humiliation of losing a teaching job for 'incompetence', longed in vain for the bliss of a happy conjugal life only to suffer the consequent frustration.
59 comments
»

CFA flags ‘welfare retreat’ in Union Budget 2026–27, alleges corporate bias

By Jag Jivan  The advocacy group Centre for Financial Accountability (CFA) has sharply criticised the Union Budget 2026–27 , calling it a “budget sans kartavya” that weakens public welfare while favouring private corporations, even as inequality, climate risks and social distress deepen across the country.
Post a Comment
»

'Gandhi Talks': Cinema that dares to be quiet, where music, image and silence speak

By Vikas Meshram   In today’s digital age, where reels and short videos dominate attention spans, watching a silent film for over two hours feels almost like an act of resistance. Directed by Kishor Pandurang Belekar, “Gandhi Talks” is a bold cinematic experiment that turns silence into language and wordlessness into a powerful storytelling device. The film is not mere entertainment; it is an experience that pushes the viewer inward, compelling reflection on life, values, and society.
Post a Comment
»

Budget 2026 focuses on pharma and medical tourism, overlooks public health needs: JSAI

By A Representative   Jan Swasthya Abhiyan India (JSAI) has criticised the Union Budget 2026, stating that it overlooks core public health needs while prioritising the pharmaceutical industry, private healthcare, medical tourism, public-private partnerships, and exports related to AYUSH systems. In a press note issued from New Delhi, the public health network said that primary healthcare services and public health infrastructure continue to remain underfunded despite repeated policy assurances.
Post a Comment
»

The Epstein shock, global power games and India’s foreign policy dilemma

By Vidya Bhushan Rawat*  The “Epstein” tsunami has jolted establishments everywhere. Politicians, bureaucrats, billionaires, celebrities, intellectuals, academics, religious gurus, and preachers—all appear to be under scrutiny, even dismantled. At first glance, it may seem like a story cutting across left, right, centre, Democrats, Republicans, socialists, capitalists—every label one can think of. Much of it, of course, is gossip, as people seek solace in the possible inclusion of names they personally dislike. 
Post a Comment
»

Gujarat No 1 in Govt of India pushed report? Not in labour, infrastructure, economy

By Rajiv Shah A report by a top Delhi-based think tank, National Council of Applied Economic Research (NCAER), prepared under the direct leadership of Amitabh Kant, ex-secretary, Department of Industrial Policy and Promotion (DIPP), Government of India, has claims that Gujarat ranks No 1 in the NCAER State Investment Potential Index (N-SIPI), though there is a dig. N-SIPI has been divided into two separate indices. The first one includes five “pillars” based on which the index has been arrived it. These pillars are: labour, infrastructure, economic conditions, political stability and governance, and perceptions of a good business climate. It is called N-SIPI 21, as it includes a survey of 21 states out of 29.
Post a Comment
»

Gujarat agate worker, who fought against bondage, died of silicosis, won compensation

Raju Parmar By Jagdish Patel* This is about an agate worker of Khambhat in Central Gujarat. Born in a Vankar family, Raju Parmar first visited our weekly OPD clinic in Shakarpur on March 4, 2009. Aged 45 then, he was assigned OPD No 199/03/2009. He was referred to the Cardiac Care Centre, Khambhat, to get chest X-ray free of charge. Accordingly, he got it done and submitted his report. At that time he was working in an agate crushing unit of one Kishan Bhil.
Post a Comment
»

Planning failures? Mysuru’s traditional water networks decline as city expands

By Prajna Kumaraswamy, Mansee Bal Bhargava   The tropical land–water-scape of India shapes every settlement through lakes, ponds, wetlands, and rivers. Mysuru (Mysore) is a city profoundly shaped by both natural and humanly constructed water systems. For generations, it has carried a collective identity tied to the seasonal rhythms of the monsoon, the life-giving presence of the Cauvery and Kabini rivers , and the intricate network of lakes and ponds that dot the cityscape. Water transcends being merely a resource; it is part of collective memory, embedded in place names, agricultural heritage, and the very land beneath our feet. In an era of rapid urbanization and climate-induced land–water transformations, understanding this profound relationship with the land–water-scape is strategic for sustainability, resilience, and even survival.
1 comment
»