Researchers Confirm Journalists Targeted with Paragon Spyware

Two European journalists have been confirmed to be targeted with government spyware developed by Israeli surveillance tech provider Paragon, according to new research.

Confirmation of Paragon Infections

A recent report from The Citizen Lab revealed that Italian journalist Ciro Pellegrino and another prominent European journalist were both hacked by the same Paragon customer, based on evidence found on their iPhones. This marks the first known instances of Paragon infections, shedding light on a growing spyware scandal primarily focused on the Italian government’s use of such technology.

These findings come after WhatsApp notified around 90 users in multiple European countries, including journalists, about being targeted with Paragon spyware known as Graphite. Among those targeted were Pellegrino’s colleague Francesco Cancellato and nonprofit workers aiding migrant rescues at sea.

New Forensic Evidence Emerges

The Citizen Lab’s investigation uncovered that the European journalist received a notification from Apple indicating a spyware infection through a zero-click attack via iMessage. The attack was invisible to the victim and exploited a vulnerability mitigated in a recent iOS update. The report also indicates that Pellegrino’s device showed signs of a similar attack, linking both hacks to a common Paragon operator.

Other Graphite Victims Identified

In addition to Pellegrino and the unnamed journalists, two individuals associated with the Italian nonprofit Mediterranea Saving Humans, Luca Casarini and Beppe Caccia, were also targeted with Paragon spyware. Further individuals, such as David Yambio and Mattia Ferrari, have reported spyware notifications, with ongoing investigations to determine the source of these attacks.

The Citizen Lab continues to analyze these cases, highlighting the need for accountability and transparency in addressing these concerning breaches of privacy.