French Government Ministers Bugged

The mobile phones of at least five French ministers and a diplomatic advisor to President Emmanuel Macron have been found to infected by the Israeli-made Pegasus spyware. The five ministers targeted are Education Minister Jean-Michel Blanquer, Territorial Cohesion Minister Jacqueline Gourault, Agriculture Minister Julien Denormandie, Housing Minister Emmanuelle Wargon and Overseas Territories Minister Sebastien Lecornu, Mediapart said.

This comes two months after it was revealed that the phone numbers of Macron, other government ministers and top French officials appeared in a leaked database being invesigated  by  journalists at Mediapart.

There is no evidence that the phones of the five cabinet members were successfully hacked, but the Mediapart allegations indicate that the devices were targeted with the powerful spyware known as Pegasus, which is made by NSO Group. The Israeli company is now at the center of an international spying scandal with suspicions that the Israeli government may also play a role.

Pegasus can switch on a phone’s camera or microphone and harvest its data, and was at the center of a storm in July after a list of about 50,000 potential surveillance targets worldwide including Heads of State became known. 

The NSO Group claims it has no connection to the leaked database and that the tens of thousands of numbers contained in the list are not the targets of NSO’s customers, which includes numerous governments around the world. It has also denied that Macron was ever targeted by Pegasus spyware and in a statement NSO Group said: “We stand by our previous statements regarding French government officials. They are not and have never been Pegasus targets. We won’t comment on anonymous source allegations.”

Although NSO Group say that the purpose of this powerful spyware is to investigate serious crime, not to target members of civil society, the Mediapart investigation has revealed that global clients of NSO Group have used their syware to hack human rights activists, journalists and lawyers. Forensic analysis of their devices at the end of July had revealed the presence of “suspect traces” of the spyware, according to a report by French state intelligence services.  

The alleged victims have not responded for requests to comment and some of them are understood  to have referred Mediapart investigators to France’s Secretariat-General for defence and national security (SGDSN), which also declined comment. The Élysée Palace also said it would not comment on “long and complex investigations which are still ongoing”.

In July, Le Monde newspaper reported that evidence of an attempted hacking was found on the phone of the former French  environment minister Francois de Rugy, with the attempt allegedly originating in Morocco and  Morocco's intelligence services were also accused of being behind the hacking of journalists in France.

The Israeli cybersecurity industry's exports were valued at $6.85 billion in 2020 and includes a number of world leading companies who have access to a trained talent pool from the nation's secretive military' intelligence units who are adept at transfering their know-how to the private sector.

France 24:      Mediapart:           TimesofIsrael:       Guardian:       TimesofIndia:     NPR:   Sada ElBalad

You Might Also Read: 

Apple's Emergency Patch For NSO Hack:

 

« Phishing Scam - Attackers Impersonate US Dept. of Transport
Medical Devices Need Better Cyber Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Global Secure Solutions (GSS)

Global Secure Solutions (GSS)

Global Secure Solutions is an IT security and risk consulting firm and authorised ISO training partner for the PECB.

Cipher Security

Cipher Security

Cipher Security provides unique robustness tests and penetration tests, as well as customizable development services for vendors and providers.

Openminded (OPMD)

Openminded (OPMD)

Openminded is a French security and network services company.

Cybercrypt

Cybercrypt

Cybercrypt is a world leading system provider in robust cryptography. Protecting critical assets, applications and sensitive data.

Bio-Morphis

Bio-Morphis

Bio-Morphis Reflex solution is a paradigm shift in the approach to information systems security.

DeepCyber

DeepCyber

DeepCyber supports its customers, with an “intelligence-driven” approach, to improve their proactive detection and response "capability" of cyber threats.

Broadcom

Broadcom

Broadcom is a global technology leader that designs, develops and supplies a broad range of semiconductor and infrastructure software solutions.

Kontron

Kontron

Kontron offers a combined portfolio of secure hardware, middleware and services for Internet of Things (IoT) and Industry 4.0 applications.

Identity Management Institute (IMI)

Identity Management Institute (IMI)

Identity Management Institute (IMI) provides professional training and certification in cyber security with a focus on identity and access management, identity theft, and data protection.

eCapital

eCapital

eCAPITAL is a leading venture capital firm that provides early to growth stage funding to technology companies in fields including software & information technology, cybersecurity and industry 4.0.

Dig Security

Dig Security

Dig Security offers the first data detection and response (DDR) solution, providing real-time visibility, control and protection of your data assets across any cloud.

Tarlogic

Tarlogic

Tarlogic works to protect and defend your security with the highest quality technical team with next generation solutions to achieve the best protection.

Quantum Security Services

Quantum Security Services

Quantum Security Services is a specialist information security firm providing a range of risk, compliance and technical security services.

Eventus Security

Eventus Security

Eventus, are a team of highly skilled professionals who are committed to deliver excellence in next generation cyber security services and customized solutions for your enterprise.

Mobb

Mobb

Mobb's AI-powered technology automates vulnerability remediations to significantly reduce security backlogs and free developers to focus on innovation.

RightSec

RightSec

RightSec is an emerging market leader and solution provider for cybersecurity and digital resiliency. We provide end to end solutions to suit your specific business lifecycle.