Cambridge University Rejects £400m Over Pegasus Hacking

Britain’s Cambridge University has abandoned plans to strike a £400m partnership with the United Arab Emirates (UAE) after the state allegedly used controversial hacking software. Professor Stephen Toope, Cambridge's vice-chancellor, said it was now "on hold" and told Varsity, the university’s student newspaper that the UAE’s links to the use of Pegasus spyware prompted the University to reconsider the proposal

The proposed UAE-Cambridge Institute of Innovation was said to have been a 10-year collaboration between Cambridge and “several educational, government and business partners” in the UAE, according to documents leaked in July.

The university has now broken off talks after the Gulf State was accused of using Pegasus hacking software which works by secretly taking control of a person’s phone using their IP address to collect data. 

Cambridge University’s outgoing vice-chancellor Stephen Toope said talks have ceased amid accusations by Pegasus.

Mr Toope told Varsity: “There were other revelations about Pegasus that really made us decide it was not the right time to pursue these kinds of really ambitious plans with the UAE. “ Toope said he had not met with the ruling Prince of the UAE and had not held meetings with anyone from the state. “There are existing relationships across the university at a departmental and individual academic level, but there are no conversations about a major project... We are aware of the risks of dealing with many states around the world, but we think it’s worth having the conversation.”

A spokesperson for the university told The Guardian: “We will be thinking over the next few months before further evaluating our long-term options with our partners and with the university community.”

The University told Varsity: “The University of Cambridge has numerous partnerships with governments and organisations around the world...  It approached the United Arab Emirates as it does all potential partnerships: with an open mind, and rigorously weighing the opportunities to contribute to society, through collaborative research, education and innovation, against any challenges.” The statement continues: “These are always finely balanced assessments. We will be reflecting over the next few months before further evaluating our long term options with our partners and with the University community.”

A spokesperson for the Cambridge Ethical Affairs Campaign told Varsity that they welcome the news that the deal is on pause: "The campaign has been fighting this collaboration since its announcement, launching a petition over summer against it, on the basis of ongoing human rights abuses in the UAE and threats to academic freedom.  
“Nevertheless, it is regrettable that the university only cancelled the deal when revelations emerged about the UAE’s use of Pegasus Spy Software, and not because of the existing moral concerns harboured by staff and students."

In July, shortly after the Cambridge-UAE partnership was announced, the Pegasus Project revealed that more than 400 UK mobile phone numbers appeared in a leaked list of numbers identified by government clients of NSO Group between 2017 and 2019. 

Varsity:        BBC:         Bharat Express:    Guardian:     GCC:      Telegraph:    Anadolu Agency

You Might Also Read:

Indian Cyber Security Firm Linked To Spyware:

 

« British Spies Trust Amazon With Their Secrets
CISA, FBI & NSA Issue Ransomware Warning Alert »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

XBOSoft

XBOSoft

XBOSoft is a software QA and testing company. We cover the entire QA and testing life cycle including software and application security.

Nimbusec

Nimbusec

Nimbusec scans your website around the clock and informs immediately if it has been hacked or manipulated

Intrasoft International

Intrasoft International

Intrasoft International is a leading European IT Solutions and Services Group offering a full range of IT services including Information Security.

Virtru

Virtru

Virtru's Data Protection platform protects and controls sensitive information regardless of where it's been created, stored or shared.

Arkose Labs

Arkose Labs

Arkose Labs' Fraud and Abuse Platform combines Telemetry and adaptive Enforcement Challenges to break down the ROI of fraudsters and protect digital businesses.

Delfigo Security

Delfigo Security

Delfigo Security, a pioneer in intelligent authentication, provides a strong, multi-factor authentication solution to prevent identity theft and reduce fraud.

Hong Kong Broadband Network (HKBN)

Hong Kong Broadband Network (HKBN)

HKBN are a leading integrated telecom and technology solutions provider that offers a comprehensive range of premier ICT services to both the enterprise and residential markets.

Enea

Enea

Enea is one of the world’s leading specialists in software for telecommunications and cybersecurity. Our products are used to enable services for mobile subscribers, enterprise customers and IoT.

ITProTV

ITProTV

ITProTV is part of the ACI Learning family of companies providing Audit, Cyber, and IT learning solutions for enterprise and consumer markets.

Plante Moran

Plante Moran

Plante Moran is a leading audit, tax, consulting, and wealth management firm. Areas of consulting expertise include cybersecurity.

Fullstack Academy

Fullstack Academy

A trailblazer in bootcamp education, Fullstack Academy prepares students for fulfilling careers in tech through our NYC campus, online learning, and university partnerships.

Association for Uncrewed Vehicle Systems International (AUVSI)

Association for Uncrewed Vehicle Systems International (AUVSI)

AUVSI is the world's largest nonprofit organization dedicated to the advancement of uncrewed systems and robotics. Focus areas include cyber security for uncrewed systems and robotics.

Security Discovery

Security Discovery

Stay ahead of cyber threats with Security Discovery. We offer expert consulting, comprehensive services, and a powerful vulnerability monitoring SaaS platform.

SolidityScan

SolidityScan

SolidityScan is an advanced smart contract scanning tool designed to uncover vulnerabilities and proactively address risks within your code.

SteelGate

SteelGate

SteelGate’s core capabilities are centered around architecture design and engineering of network, systems, and cybersecurity solutions.

Soteria LLC

Soteria LLC

Soteria LLC are a client-focused organization providing expert advisory, consulting services, and tailored solutions to prevent, detect, and respond to cybersecurity incidents.