- Sputnik International
Get the latest news from around the world, live coverage, off-beat stories, features and analysis.

The Truth Behind NSO's Malicious Malware Attack on Mansoor

© Photo : PixabayOnline data
Online data - Sputnik International
Ahmed Mansoor, human rights activist and lawyer jailed in 2011 for signing a petition calling for the formation of an elected government in the United Arab Emirates, has made headlines around the world for exposing a malicious hack attack at the hands of Israeli cyberwarfare company, NSO Group.

Dark web - Sputnik International
NSO, Who Are You? Secret Software Group Behind iPhone Hack Scrutinized
How? By not opening a text message on his iPhone from a number he didn't recognize. 

On 10 August, Ahmed Mansoor received a text message to his iPhone promising to reveal "secrets" about people allegedly being tortured in UAE state prisons.

Mansoor, the target of a major security attack by NSO Group was instructed to click on the link to find out more. 

However, Mansoor knew better than to click on the link, having been a repeated target by government hackers before, and forwarded the link to Bill Marczak, a researcher at Citizen Lab.

Infiltrated, Stolen & Exploited

Mansoor's hunch was correct, the link would not have afforded him any more information on who was being held in UAE state jails, rather than it would have exploited three unknown vulnerabilities in Apple's iOS operating system.

As he clicked on the link in the text message, "Mansoor's phone would have become a digital spy in his pocket, capable of employing his iPhone's camera and microphone to snoop on activity in the vicinity of the device," a statement from Internet watchdog Citizen Lab revealed.

"Recording his WhatsApp and Viber calls, logging messages sent in mobile chat apps, and tracking his movements."

Had the hackers got through, every inch of Mansoor communications and data could be infiltrated, stolen and exploited.

'Sophisticated Cyberespionage'

According to Citizen Lab:

"It's one of the most sophisticated pieces of cyberespionage software we've ever seen."

The malware can create a backdoor to every inch of communications data stored on an iPhone.

The cyberattack on Mansoor, thwarted by his sense not to open a suspect link on his iPhone hasn't only exposed vulnerabilities on an iPhone that Apple have had to quickly fix, but the truth behind the Israeli cyber security company behind what could be a state sponsored attack.

'Cyber Arms Dealer'

Mike Murray, Lookout's vice president of research told Motherboard that NSO Group is "basically a cyber arms dealer."

"We realized that we were looking at something that no one had ever seen in the wild before. Literally a click on a link to jailbreak an iPhone in one step…[it's] one of the most sophisticated pieces of cyberespionage software we've ever seen."

Human rights activist Ahmed Mansoor speaks to Associated Press journalists in Ajman, United Arab Emirates, on Thursday, Aug. 25, 2016. - Sputnik International
Ahmed Mansoor: The Man Behind the iPhone Hack by Secret Israeli Cyber Firm
That's quite an accolade for a relatively small and previously inconspicuous cyber security company which claims to be "a unique company in the field of Internet security software solutions and security research."

The information offered by the Israeli-based firm on its LinkedIn page is more like a Wikipedia entry, putting anyone sniffing around for some state sponsored espionage off the scent. That's until Ahmed Mansoor decided not to click on a link allowing the NSO Group full access to his iPhone, instead giving the world full access to what the company is really capable of.

NSO Group's malware, codenamed "Pegasus", surreptitiously and stealthily infects an iPhone, stealing all its data.

"It intercepts every call, it intercepts every text message, it steals all the emails, the contact, the FaceTime calls. It also basically backdoors every communications mechanism you have on the phone," Murray told Motherboard.

"It steals all the information in the Gmail app, all the Facebook messages, all the Facebook information, your Facebook contact, everything from Skype, WhatsApp, Viber, WeChat, Telegram — you name it."

Now the world is more aware of what a little known cyber security firm based in Israel is developing and it's a lot more complex than just Internet security; more like malware never been seen before — until now.

To participate in the discussion
log in or register
Заголовок открываемого материала