← Back to blog

EU Lawmaker Probing Spyware Targeted with Pegasus

A European Parliament member investigating commercial surveillance tools was himself targeted with NSO Group's Pegasus spyware. Forensic analysis confirms repeated compromises of his mobile device.

TL;DR

  • Former MEP Stelios Kouloglou was hacked with Pegasus spyware
  • Attacks occurred while he investigated surveillance tool abuses
  • Citizen Lab confirmed device compromises through forensic analysis
  • Pegasus enables full device access including messages and calls
  • Attack highlights risks to officials probing cyber surveillance

A former Member of the European Parliament has been identified as a target of sophisticated spyware attacks using NSO Group's Pegasus malware. Stelios Kouloglou's mobile device was repeatedly compromised while he served on a parliamentary committee investigating the misuse of commercial surveillance technologies within the EU.

The Citizen Lab research group conducted forensic analysis of Kouloglou's device and confirmed evidence of multiple successful infections. The timing of the attacks raises serious concerns about the targeting of officials who are actively working to regulate and investigate surveillance tool abuses.

Surveillance During Investigation

  • Kouloglou was serving on the parliament's committee examining commercial surveillance tool misuse when attacks occurred
  • Forensic analysis revealed attackers could have accessed all device data including messages, contacts, and location
  • Pegasus spyware provides complete device control and can extract data without user knowledge
  • The targeting suggests possible retaliation against oversight efforts of surveillance technology
  • Citizen Lab's investigation provides technical evidence of the compromise attempts

Implications for Democratic Oversight

  • Attack demonstrates risks faced by officials investigating cybersecurity and surveillance matters
  • Use of sophisticated spyware against lawmakers threatens democratic oversight processes
  • Previous Pegasus targeting has included journalists, activists, and government officials globally
  • EU institutions may need enhanced security measures for members handling sensitive investigations
  • Incident highlights ongoing challenges in regulating commercial surveillance technology exports

Sources

Sources

Security email updates

One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.

EU Lawmaker Probing Spyware Targeted with Pegasus — Agent Breach Blog | Agent Breach