A recent threat scan of 2,500 mobile phones has revealed seven new Pegasus spyware infections targeting journalists, government officials, and corporate executives. Researchers from iVerify discovered these variants in five unique malware types across iOS and Android devices, with infections detected on Apple iPhone iOS versions 14, 15, and 16.6.
The investigation found that the notorious spyware, developed by Israel’s NSO Group, has been used to intercept and transmit messages, emails, media files, passwords, and location information without a user’s knowledge or interaction. This raises concerns about the prevalence of mobile spyware, particularly Pegasus, which was previously thought to be highly targeted.
The discovery suggests that state-sponsored actors may be using mobile spyware in a wider range than initially thought, not just targeting high-profile individuals but also low-risk populations. Researchers emphasize the need for traditional security measures to fail and for device users themselves to take an active role in detecting malware.
To prevent spyware infections, experts recommend regularly updating devices to the latest OS, using endpoint detection and response tools, educating employees about mobile security risks, and implementing proactive threat-hunting strategies.
Source: https://www.darkreading.com/endpoint-security/pegasus-spyware-infections-ios-android-devices