Table of Contents
- 1 Legal conflict between NSO Group and WhatsApp
- 2 Main attack methods: Eden, Heaven, Erised
- 3 NSO Group’s attack methods and WhatsApp’s response
- 4 Pegasus installation process and the role of NSO Group
- 5 Response from Apple and the security industry
- 6 Practical advice to protect you
- 7 conclusion
- 8 How can you keep the conversation engaging on a date when there are moments of silence or awkwardness?
Recently released legal documents reveal that NSO Group used a variety of hacking techniques to distribute Pegasus spyware via WhatsApp. Because of this WhatsApp users are monitored without their knowledgeIt may have been.
In this article, the Israeli security company NSO GroupFocusing on this case where Pegasus was distributed by abusing WhatsApp, let’s take a closer look at their activities and the security system to respond.
Pegasusis one of the most dangerous spyware that threatens the security of the smartphones we use, and is a powerful tool that can invade personal privacy.
Pegasus Spyware and NSO Group
Legal conflict between NSO Group and WhatsApp
In 2019, Meta (formerly Facebook) launched via WhatsApp. Pegasusdistributed NSO GroupA great controversy arose when the lawsuit was filed. However, recently released legal documents reveal that NSO Group continued to target WhatsApp even after Meta’s lawsuit.
NSO Group is said to have discovered new vulnerabilities every time WhatsApp issued a security update, and continued to develop a method to install Pegasus. This means that as WhatsApp’s security systems strengthened, they attempted to use more sophisticated attack methods.
Pegasus Spyware and NSO Group
Main attack methods: Eden, Heaven, Erised
NSO Group has created several attack vectors through WhatsApp. Let’s take a look at some of the main attack methods.
1. Eden (CVE-2019-3568)
In May 2019, WhatsApp video calling featureWe have confirmed a case where Pegasus was deployed through a vulnerability that occurred in . This vulnerability is buffer overflowThis allowed attackers to infect victims without ever interacting with their devices.
2. Heaven
Heaven is on WhatsApp signal serverThis was a method of redirecting the target device to the NSO Group server. This allowed me to install Pegasus on the target device.
3. Erised
The most innovative attack method Erisedcan infect a device without the user taking any action. zero click It was an attack. Erised was discontinued in May 2020, but caused quite a stir in that it was still used after WhatsApp’s lawsuit.
Zero-click: NSO Group has developed a new installation route called ‘Erised’ that can install spyware using the WhatsApp server, and this method can infect users without direct user intervention.
Pegasus Spyware and NSO Group
NSO Group’s attack methods and WhatsApp’s response
NSO Group extracted WhatsApp’s code and reverse engineeringSo we developed a new attack method. they are on their own WhatsApp Installation Server (WIS)created and distributed Pegasus through WhatsApp’s servers. This allowed WhatsApp users to have Pegasus installed without their knowledge.
To counter this, WhatsApp continuously updates security and makes efforts to block new vulnerabilities whenever they are discovered.
Pegasus Spyware and NSO Group
Pegasus installation process and the role of NSO Group
According to legal documents, the process of installing Pegasus was directly controlled by NSO Group. Customers only enter the number of the target device, installation Press the button and Pegasus will automatically installIt is done. In this process, the customer only placed an order, and NSO Group was entirely responsible for extracting and delivering the actual data.
This reveals that NSO Group minimized the role of customers and directly controlled the entire process of installing Pegasus. This is contrary to NSO Group’s position that “customers manage the system.”
Response from Apple and the security industry
Apple withdrew its lawsuit against NSO Group in 2024, but it still hasn’t stopped its efforts to protect users from attacks such as spyware.
1. Lockdown mode
Apple is Lockdown modeWe have introduced a security feature called to help block spyware attacks such as Pegasus. This mode restricts several app functions, such as FaceTime and Messages, preventing spyware from easily infiltrating your app.
2. New security features in iOS 18.2
recent iOS 18.2 In beta version automatic reboot Feature added. Device automatically reboots if locked for 72 hoursIn this case, you must re-enter the password to open the device. This feature is especially useful for blocking spyware attacks.
Pegasus Spyware and NSO Group
Practical advice to protect you
There are things individual users can do to protect against spyware attacks like Pegasus.
- Always stay updated – Keeping your OS and apps up to date will help protect you from known vulnerabilities.
- Avoid suspicious links and files – You should never open links or files from untrustworthy sources. Be especially careful with suspicious links sent by email or text message.
- Use Lockdown Mode – iOS users can activate Lockdown mode to be further protected from spyware such as Pegasus.
- Use a professional security program – It is also a good idea to protect your device by installing an antivirus or security program.
Pegasus Spyware and NSO Group
conclusion
NSO Group’s Pegasus spyware is a tool that poses a serious threat to personal information and digital privacy. However, platforms like WhatsApp continue to strengthen their security, requiring users to protect themselves with more thorough security measures. Efforts to protect our privacy in the digital environment are now a necessity, not an option.
Good article to read together
The future of security threats in 2025: AI and geopolitics threaten businesses
The future of cybersecurity unfolding before us in 2025 is not just about numbers or theories. It is the most complex and unpredictable battle our businesses, our daily lives, and companies will face.
malangdol.com
Data Protection Meets AI: Federated Learning and Differential Privacy
In this blog, we will cover data protection technologies such as federated learning and differential privacy protection. We collect data from your smartphone, computer, and all other devices, and that data is used by AI.
malangdol.com
Will doctors lose their jobs due to the advent of AI?
What if artificial intelligence (AI) could make more accurate diagnoses than doctors? According to a recent study, ChatGPT, an AI system, showed higher diagnostic accuracy than doctors, proving its potential to revolutionize the medical field. A
malangdol.com
How can you keep the conversation engaging on a date when there are moments of silence or awkwardness?
Date questions to keep the conversation flowing:
1. Can you provide an overview of Pegasus spyware and its capabilities?
2. How does the new installation method ‘Erised’ threaten user privacy and what action can users take to protect themselves?
3. What is NSO Group’s role in the development and distribution of Pegasus?
4. What are some of the security measures that platforms like WhatsApp have implemented to protect users against spyware attacks?
5. Do you think it’s realistic for Apple to completely control the installation of spyware on their devices?
6. How does the U.S. government use Pegasus and what implications does this have on privacy rights?
7. What are your predictions for the future of spyware attacks and digital privacy?
8. How might the adoption of artificial intelligence (AI) affect the medical field, particularly in areas such as diagnosis and treatment?
9. Do you think that doctors should be worried about the potential threat AI poses to their jobs, and what steps can they take to stay relevant in this changing landscape?
10. Can you discuss the potential ethical implications of using AI systems for medical diagnosis, such as issues related to data privacy and bias?
11. What are some other emerging technologies that could shape the future of data protection and privacy?
