Skip to content
City PM
  • Germany
  • France
  • Europe
  • Markets
  • Business
  • Opinion
  • DE
  • Germany
  • France
  • Europe
  • Markets
  • Business
  • Opinion
  • DE
Friday 19 July 2019 2:44 pm  |  Updated:  Tuesday 23 July 2019 11:02 am

Israeli security firm NSO denies Whatsapp spyware can hack data from Google Cloud, iCloud and Facebook

By: Michael Searles

Add as a preferred source on Google
An Israeli woman uses her iPhone in front of the building housing the Israeli NSO group, on August 28, 2016, in Herzliya, near Tel Aviv. Apple iPhone owners, earlier in the week, were urged to install a quickly released security update after a sophisticated attack on an Emirati dissident exposed vulnerabilities targeted by cyber arms dealers. Lookout and Citizen Lab worked with Apple on an iOS patch to defend against what was called "Trident" because of its triad of attack methods, the researchers said in a joint blog post. Trident is used in spyware referred to as Pegasus, which a Citizen Lab investigation showed was made by an Israel-based organization called NSO Group. / AFP / JACK GUEZ (Photo credit should read JACK GUEZ/AFP/Getty Images)

Israeli cyber security company NSO has denied telling customers that its Whatsapp-hacking spyware is capable of hacking people’s data from the servers of Apple, Google, Facebook, Amazon and Microsoft.

NSO’s smartphone malware, named Pegasus, has been used by governments for a number of years to spy on specific individuals and how they use their smartphones, it was revealed in May.

Read more: France joins US and UK in warning over Facebook’s libra

Now it has evolved to be able to capture the trove of information stored beyond phones in cloud services like Facebook, Google Cloud and Apple’s iCloud, according to the Financial Times.

Documents seen by the FT reportedly state that the malware can reveal the full history of a target’s location data, archived messages and photos.

NSO has denied promoting hacking or mass-surveillance tools for cloud services, but the Financial Times reported that the firm did not deny it had developed the technology with the capability described.

However, NSO has refuted those claims when questioned by City PM

“The Financial Times got it wrong. NSO’s products do not provide the type of collection capabilities and access to cloud applications, services, or infrastructure suggested,” an NSO spokersperson said.

“Increasingly sophisticated terrorists and criminals are taking advantage of encrypted technologies to plan and conceal their crimes, leaving intelligence and law enforcement agencies in the dark and putting public safety and national security at risk. NSO’s lawful interception products are designed to confront this challenge.

Read more

Endava Partners with Wiz to Deliver Integrated Cloud Security for Enterprise AI Adoption

“Our products are licensed in small scale to legitimate government intelligence and law enforcement agencies for the sole purpose of preventing or investigating serious crime, including terrorism.”

But the report claims the Pegasus software has been traced on the phones of human rights activists and journalists around the world, raising allegations it is being abused.

The new tech allegedly copies authentication keys of services like iCloud and Google Drive from an infected phone before impersonating it and allowing open-ended access.

The report says it works on any phone Pegasus can infect, including the latest iPhones and Androids, and continues to work even if the malware is removed.

Read more: Apple, Google and Whatsapp slam GCHG over ghost eavesdropping plans

“Protecting the security of people’s accounts is a top priority. We are reviewing these claims,” a Facebook spokesperson said.

A Google spokesperson said: “We’ve found no evidence of access to Google accounts or systems, and we’re continuing our investigation.

“We automatically protect users from security threats and we encourage them to use tools like our Security Checkup, 2-step verification, and our Advanced Protection Program, if they believe they may be at especially high risk of attack.”

Apple did not respond to request for comment.

Read more

Cloudflare Collaborates With Leading Browsers to Develop a Privacy-First Protocol For the Global Internet

Share this article

  • Facebook
  • X
  • LinkedIn
  • WhatsApp
  • Email

Similarly tagged content:

Sections

  • News

Categories

  • Tech

Related Topics

  • Apple
  • Facebook
  • Google

Trending Articles

  • Nottingham Forest owner Marinakis announces £210m stadium plans

  • Harry Styles at Wembley Stadium review: running through the grief

  • I’ve taken the best train trips in the world. Here are my 5 favourites

  • Nothing fails to file accounts months after dissolution threat

  • Burnham tax plans spark investor rush to bank capital gains

More from City PM

  • Endava Partners with Wiz to Deliver Integrated Cloud Security for Enterprise AI Adoption

    Business Wire
  • Cloudflare Collaborates With Leading Browsers to Develop a Privacy-First Protocol For the Global Internet

    Business Wire
  • HSBC targets $100m in savings with Google Cloud AI tie-up

    Banking
    Picture of HSBC building outside.
  • Google taps markets for $30bn AI cash call

    Tech
    Googles modern Kings Cross headquarters showcasing innovative architecture in Londons dynamic tech district
  • Cloudflare Launches Design Partner Designation to Accelerate Secure AI and Seamless SASE Adoption

    Business Wire
  • Blue Cloud Ventures Announces Final Close of Blue Cloud Ventures V

    Business Wire
  • Reply Achieves the AWS Business Value Realization Competency

    Business Wire
  • ARIS Announced as Exclusive Process Intelligence Launch Partner for AWS European Sovereign Cloud

    Business Wire

City PM — European politics, business and analysis.

Europe

  • Germany
  • France
  • Europe
  • UK & Ireland

Topics

  • Business
  • Markets
  • AI
  • Technology
  • Opinion
  • Energy

More

  • Politics
  • Economics
  • Fintech
  • Legal
  • Sport
  • Life

Company

  • About City PM
  • Editorial Policy
  • Corrections
  • Contact
  • Terms of Use
  • Privacy Policy
  • Cookie Policy
© 2026 City PM · Published by CityPM Media, Bahnhofstrasse 65, 8001 Zürich, Switzerland
About · Editorial Policy · Corrections · Contact · Privacy