French Government Ministers Bugged

The mobile phones of at least five French ministers and a diplomatic advisor to President Emmanuel Macron have been found to infected by the Israeli-made Pegasus spyware. The five ministers targeted are Education Minister Jean-Michel Blanquer, Territorial Cohesion Minister Jacqueline Gourault, Agriculture Minister Julien Denormandie, Housing Minister Emmanuelle Wargon and Overseas Territories Minister Sebastien Lecornu, Mediapart said.

This comes two months after it was revealed that the phone numbers of Macron, other government ministers and top French officials appeared in a leaked database being invesigated  by  journalists at Mediapart.

There is no evidence that the phones of the five cabinet members were successfully hacked, but the Mediapart allegations indicate that the devices were targeted with the powerful spyware known as Pegasus, which is made by NSO Group. The Israeli company is now at the center of an international spying scandal with suspicions that the Israeli government may also play a role.

Pegasus can switch on a phone’s camera or microphone and harvest its data, and was at the center of a storm in July after a list of about 50,000 potential surveillance targets worldwide including Heads of State became known. 

The NSO Group claims it has no connection to the leaked database and that the tens of thousands of numbers contained in the list are not the targets of NSO’s customers, which includes numerous governments around the world. It has also denied that Macron was ever targeted by Pegasus spyware and in a statement NSO Group said: “We stand by our previous statements regarding French government officials. They are not and have never been Pegasus targets. We won’t comment on anonymous source allegations.”

Although NSO Group say that the purpose of this powerful spyware is to investigate serious crime, not to target members of civil society, the Mediapart investigation has revealed that global clients of NSO Group have used their syware to hack human rights activists, journalists and lawyers. Forensic analysis of their devices at the end of July had revealed the presence of “suspect traces” of the spyware, according to a report by French state intelligence services.  

The alleged victims have not responded for requests to comment and some of them are understood  to have referred Mediapart investigators to France’s Secretariat-General for defence and national security (SGDSN), which also declined comment. The Élysée Palace also said it would not comment on “long and complex investigations which are still ongoing”.

In July, Le Monde newspaper reported that evidence of an attempted hacking was found on the phone of the former French  environment minister Francois de Rugy, with the attempt allegedly originating in Morocco and  Morocco's intelligence services were also accused of being behind the hacking of journalists in France.

The Israeli cybersecurity industry's exports were valued at $6.85 billion in 2020 and includes a number of world leading companies who have access to a trained talent pool from the nation's secretive military' intelligence units who are adept at transfering their know-how to the private sector.

France 24:      Mediapart:           TimesofIsrael:       Guardian:       TimesofIndia:     NPR:   Sada ElBalad

You Might Also Read: 

Apple's Emergency Patch For NSO Hack:

 

« Phishing Scam - Attackers Impersonate US Dept. of Transport
Medical Devices Need Better Cyber Security »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Security Weekly

Security Weekly

Security Weekly provides free content within the subject areas of IT security news, vulnerabilities, hacking, and research.

MSAB

MSAB

MSAB is a pioneer in forensic technology for mobile device examination.

Brainwave GRC

Brainwave GRC

Brainwave GRC is a leading European software provider focused on Identity Analytics and intelligence to strengthen IT security and compliance.

Sift

Sift

The Sift Digital Trust Platform protects your business and customers from all vectors of fraud and abuse through our Live Machine Learning, global trust network and automation technologies.

Quokka

Quokka

Quokka (formerly Kryptowire) is the source for mobile security and privacy solutions, staying steps ahead of the threat and delivering peace of mind.

Swiss Accreditation Service (SAS)

Swiss Accreditation Service (SAS)

SAS is the national accreditation body for Switzerland. The directory of members provides details of organisations offering certification services for ISO 27001.

Cyber Threat Alliance

Cyber Threat Alliance

CTA is working to improve cybersecurity of our digital ecosystem by enabling near real-time cyber threat information sharing among companies and organizations in the cybersecurity field.

German Accelerator

German Accelerator

German Accelerator supports high-potential German startups in successfully entering the U.S. and Southeast Asian markets.

MISP Project

MISP Project

The MISP threat sharing platform is a free and open source software helping information sharing of threat intelligence including cyber security indicators.

DDOS-Guard

DDOS-Guard

DDoS-GUARD is one of the leading service providers on the global DDoS protection and content delivery markets.

Citalid

Citalid

The Citalid cyber risk management platform combines threat and business intelligence to identify the risks scenarios you face.

Cybots

Cybots

Cybots is a multinational cyber defence brand founded in Singapore in 2018 to help organizations stay ahead of increasingly sophisticated threats from cyber criminals.

Emtec

Emtec

Emtec’s cyber security team provides advisory, assessment, & managed security services that help you build the cyber security policies, toolsets & best practices to elevate your cyber security posture

OSP Cyber Academy

OSP Cyber Academy

OSP Cyber Academy are a managed service provider of cyber, information security and data protection training.

Technoware Solutions

Technoware Solutions

Technoware Solutions is a global company committed to helping entities navigate the digital waters of modernizing their system processes in an ever changing cybersecurity landscape.

Inoxoft

Inoxoft

Inoxoft delivers IT security consulting, assessment, and protection services to help businesses secure their infrastructure, applications, and sensitive data.