NSO Group hacks Palestinian activists’ mobile phones – Report


An investigation by the Dublin-based human rights group, Front Line Defenders (FLD), showed that the mobile phones of six Palestinian human rights defenders were previously hacked by sophisticated spyware made by the NSO Group.

Some of the six Palestinians have worked for organisations that were recently – and controversially – accused by Israel of being terrorist groups.

The mobile phones of Salah Hammouri, a Palestinian rights defender and lawyer whose Jerusalem residency status has been revoked, and five others were hacked using Pegasus, NSO’s signature spyware. In one case, the hacking was found to have occurred as far back as July 2020.

FLD’s findings were independently confirmed with “high confidence” by technical experts at Citizen Lab and Amnesty International’s security lab, the world’s leading authorities on such hacks.

UN human rights experts have called the designation of the groups as terror organisations a “frontal attack” on the Palestinian human rights movement and on human rights everywhere, and said it appeared to represent an abuse of the use of anti-terrorism legislation by Israeli authorities.

Investigations by the Guardian and other media outlets have found multiple cases of governments using NSO spyware to target journalists and human rights advocates who are perceived as threats, often by autocratic regimes such as Saudi Arabia that have been sold the technology.

Targets in the past have included the fiancee and wife of the murdered journalist Jamal Khashoggi, as well as Carine Kanimba, the daughter of the jailed Rwandan dissident Paul Rusesabagina.

NSO has said it investigates all allegations of abuse and that its technology is meant to be used by governments to fight terrorism and other serious crimes.

The case of the six Palestinians also raises new questions about how Israel itself may use spyware to target critics of the government or others who are seen as threatening the country.

The Biden administration placed NSO on a US blacklist last week, a move that will make it exceedingly difficult for the Israeli company to buy any US-originating technology or services. The administration said it took the decision after it found evidence that the Israeli spyware maker had acted “contrary to the foreign policy and national security interests of the US”.

There is no technical evidence confirming that the state of Israel ordered the hacks of the six Palestinians, but three of the six individuals work for organisations that have been targeted and accused of crimes by Israeli authorities.

NSO has said it sells its spyware only to government clients for the purposes of fighting serious crime and terrorism, and the company is closely regulated by the Israeli ministry of defence.

A spokesperson for NSO Group said: “Due to contractual and national security considerations, we cannot confirm or deny the identity of our government customers. As we stated in the past, NSO Group does not operate the products itself; the company licence approved government agencies to do so, and we are not privy to the details of individuals monitored.

The Israeli government did not immediately respond to a request for comment by the Guardian. The Israeli prime minister’s office and the defence ministry denied that Pegasus had been used to hack the Palestinians’ phones, according to the New York Times.

The groups concerned are known to document allegations of human rights abuses by Israel and the Palestinian Authority. The six are Al-Haq, Addameer, Defense for Children International – Palestine, the Bisan Center for Research and Development, the Union of Palestinian Women’s Committees, and the Union of Agricultural Work Committees.

Three of the six activists who were hacked agreed to be identified. They are Hammouri, who is also a French national, Ubai Al-Aboudi, the executive director at the Bisan Center, who is also a US citizen, and GhassanHalaika, a researcher for Al-Haq. (Source: The Guardian)