French Government Ministers Bugged

The mobile phones of at least five French ministers and a diplomatic advisor to President Emmanuel Macron have been found to infected by the Israeli-made Pegasus spyware. The five ministers targeted are Education Minister Jean-Michel Blanquer, Territorial Cohesion Minister Jacqueline Gourault, Agriculture Minister Julien Denormandie, Housing Minister Emmanuelle Wargon and Overseas Territories Minister Sebastien Lecornu, Mediapart said.

This comes two months after it was revealed that the phone numbers of Macron, other government ministers and top French officials appeared in a leaked database being invesigated  by  journalists at Mediapart.

There is no evidence that the phones of the five cabinet members were successfully hacked, but the Mediapart allegations indicate that the devices were targeted with the powerful spyware known as Pegasus, which is made by NSO Group. The Israeli company is now at the center of an international spying scandal with suspicions that the Israeli government may also play a role.

Pegasus can switch on a phone’s camera or microphone and harvest its data, and was at the center of a storm in July after a list of about 50,000 potential surveillance targets worldwide including Heads of State became known. 

The NSO Group claims it has no connection to the leaked database and that the tens of thousands of numbers contained in the list are not the targets of NSO’s customers, which includes numerous governments around the world. It has also denied that Macron was ever targeted by Pegasus spyware and in a statement NSO Group said: “We stand by our previous statements regarding French government officials. They are not and have never been Pegasus targets. We won’t comment on anonymous source allegations.”

Although NSO Group say that the purpose of this powerful spyware is to investigate serious crime, not to target members of civil society, the Mediapart investigation has revealed that global clients of NSO Group have used their syware to hack human rights activists, journalists and lawyers. Forensic analysis of their devices at the end of July had revealed the presence of “suspect traces” of the spyware, according to a report by French state intelligence services.  

The alleged victims have not responded for requests to comment and some of them are understood  to have referred Mediapart investigators to France’s Secretariat-General for defence and national security (SGDSN), which also declined comment. The Élysée Palace also said it would not comment on “long and complex investigations which are still ongoing”.

In July, Le Monde newspaper reported that evidence of an attempted hacking was found on the phone of the former French  environment minister Francois de Rugy, with the attempt allegedly originating in Morocco and  Morocco's intelligence services were also accused of being behind the hacking of journalists in France.

The Israeli cybersecurity industry's exports were valued at $6.85 billion in 2020 and includes a number of world leading companies who have access to a trained talent pool from the nation's secretive military' intelligence units who are adept at transfering their know-how to the private sector.

France 24:      Mediapart:           TimesofIsrael:       Guardian:       TimesofIndia:     NPR:   Sada ElBalad

You Might Also Read: 

Apple's Emergency Patch For NSO Hack:

 

« Phishing Scam - Attackers Impersonate US Dept. of Transport
Medical Devices Need Better Cyber Security »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

EclecticIQ

EclecticIQ

EclecticIQ is a global provider of threat intelligence, hunting and response technology and services.

Tukan IT

Tukan IT

Tukan IT provides a data classification and protection solution.

CARICERT

CARICERT

CARICERT is the National Cyber Emergency Response Team of Curacao in the Caribbean.

Zen360Consult

Zen360Consult

Zen360Consult provides Advisory and Training services in the field of Cyber Resilience, which includes Cyber Security /ISMS and Business Continuity.

Sompo International

Sompo International

Sompo International is a global specialty provider of property and casualty insurance and reinsurance services including Cyber & Network Risk.

NuCrypt

NuCrypt

NuCrypt is developing technology that is applicable to ultrahigh security data encryption as well as key distribution.

Maven Security Consulting

Maven Security Consulting

Maven Security Consulting helps companies secure their information assets and digital infrastructure by providing a wide range of customized consulting and training services.

Opora

Opora

Opora is the leading cybersecurity provider of adversary behavior analytics “ABA” and preemptive security solutions.

Support Link Technologies (SLT)

Support Link Technologies (SLT)

Support Link Technologies are an IT Solutions Company committed to achieving customer satisfaction through excellent customer service.

Securonix

Securonix

Securonix delivers a next generation security analytics and operations management platform for the modern era of big data and advanced cyber threats.

Cygna Labs

Cygna Labs

Cygna Labs is a software developer and one of the top three global DDI (DNS, DHCP, and IP address management) vendors.

Pvotal Technologies

Pvotal Technologies

Pvotal Technologies engineer complex, automated processes aligned with best AIOps, BizDevOps, DevSecOps, CloudOps, and ITOps practices.

Trium Cyber

Trium Cyber

Trium Cyber - Expert Cyber Underwriting and Claims Management. Based in the US and UK. Backed by Lloyd’s of London.

Black Duck Software

Black Duck Software

Black Duck (formerly the Synopsys Software Integrity Group) is the market leader in application security testing (AST).

System Two Security

System Two Security

System Two Security automates detection engineering and threat hunting.

Potech

Potech

Potech provides masterful services in Information & Technology and Cybersecurity to multiple markets across the world.