:

EU SPYWARE INVESTIGATOR HACKED WITH PEGASUS

SECURITY DESK2 MIN READ
FRI, JUL 3, 2026

■ AI-SUMMARIZED FROM 3 SOURCES ▸ TIMELINE

A European politician investigating the spyware industry had his phone compromised with Pegasus spyware, deployed by a government customer of NSO Group while he served on an EU committee examining the company.

The breach represents a stark irony: a lawmaker actively scrutinizing abuses of surveillance technology became a target of the exact tool under investigation. The incident underscores ongoing concerns about NSO Group's Pegasus spyware, which has been used by government agencies worldwide to infiltrate phones of journalists, activists, and political figures. The targeting of the investigator reveals how surveillance tools designed for security purposes have been weaponized against oversight mechanisms. NSO Group, an Israeli cybersecurity firm, markets Pegasus as a tool for combating terrorism and serious crime. However, investigations by journalists and human rights organizations have documented widespread misuse, including surveillance of individuals with no connection to criminal activity. The EU has increased pressure on NSO Group following multiple revelations about Pegasus deployments. Various member states have faced public criticism over their use of the spyware, and EU officials have called for stricter regulations on surveillance technology exports. The politician's phone compromise is particularly significant given the committee's role in examining the spyware industry. Such targeting of oversight officials raises questions about whether governments are using surveillance tools to intimidate or monitor those investigating them. NSO Group has previously acknowledged that its tools can be misused by customers but maintains responsibility lies with governments purchasing the software. The company claims it has mechanisms to prevent abuse, though critics argue these safeguards are inadequate. This incident adds pressure on EU policymakers to strengthen regulations around surveillance technology sales and use within the bloc. It also highlights the vulnerability of high-profile targets, even those with security awareness and resources.

■ SOURCES

TechCrunchBloomberg TechWired

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

3H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

3H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

6H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

8H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.