MERCENARY SPYWARE -
DEFENCE AND SECURITY
News: Mercenary spyware: Apple says
iPhone users in India and 91 other countries were likely victims of a spyware
What's in the news?
●
Recently, Apple sent out warnings to iPhone users
in India and 91 other countries, informing them that their devices might be
under attack by a type of spyware known as mercenary spyware, including one
called Pegasus.
Spyware and Malware:
●
Spyware and malware are types of harmful software
designed to infiltrate and damage
computers or devices.
●
They operate with distinct purposes.
Spyware:
●
Spyware focuses on spying on a user's activities, such as browsing habits, keystrokes,
or personal information, without their consent. Key points include:
●
It gathers data for advertising purposes or
identity theft.
●
Spyware aims to monitor users' movements and
communications without their knowledge.
Malware:
●
Malware, short for malicious software, encompasses a broader range of harmful
programs, including viruses, worms, and
ransomware.
●
Malware aims to disrupt, damage, or gain unauthorized access to computer systems or
networks.
●
It includes various types like viruses, worms, and
ransomware.
Mercenary Spyware
Attacks:
●
Mercenary spyware attacks are highly complex and target specific individuals with exceptional
resources.
Key Features of
Mercenary Spyware Attacks:
●
These attacks are difficult to detect and prevent due to substantial investment and
short lifespan.
●
They are among the most sophisticated digital
threats globally.
●
Governments, intelligence agencies, and law enforcement bodies reportedly
utilize mercenary spyware to target political opponents
and activists.
Examples of Mercenary
Spyware:
Companies producing mercenary spyware include the NSO Group, FinFisher, and
Hacking Team.
●
NSO Group's Pegasus spyware remotely infiltrates
devices and accesses calls, emails, and messages.
●
Finfisher's FinSpy captures keystrokes and
activates microphones and cameras without permission.
●
Hacking Team's Galileo (RCS) captures keystrokes,
records video calls, and accesses cameras and microphones.
Go back to basics:
Pegasus Spyware:
●
Pegasus, developed by Israel’s NSO Group, is a malware/spyware suite designed to access
any smartphone through zero-click vulnerabilities. Key points include:
●
It can access
entire data on infiltrated smartphones, including emails, texts, and calls.
●
Pegasus has real-time access to the smartphone's
camera and sound recording capabilities.
Zero-click Exploit:
●
A zero-click exploit installs malicious software on a device without the owner’s consent
or any actions from the owner. Key points include:
●
The exploit used in the present case involving
Indian journalists is called BLASTPAST.
● It operates in two phases, attempting to establish a link with Apple HomeKit and delivering the full spyware payload via iMessage.