@Links
//
Spyware maker Paragon has severed ties with the Italian government following a dispute over an investigation into the alleged hacking of journalist Francesco Cancellato’s phone. Paragon stated that it offered its assistance to determine whether its Graphite system was used against the journalist in violation of Italian law and contractual terms. However, the Italian authorities declined Paragon’s offer to independently verify the matter, leading the company to terminate its contracts in Italy. This marks the first instance of a spyware provider publicly acknowledging ending a contract with a government client due to concerns over potential abuse.
The Italian government, through its Department of Information for Security (DIS), rejected Paragon’s proposal, deeming it an “invasive practice” that was “unverifiable in scope, results and method.” The government also expressed concerns that accepting Paragon’s help would compromise national security and expose confidential data to a foreign private company. Several Italian news outlets reported on the government's decision.
The Parliamentary Committee for the Security of the Republic (COPASIR) conducted its own investigation, acknowledging that Italian intelligence services had used Paragon’s Graphite spyware to target phones belonging to civil society activists. However, the committee found no evidence that Cancellato was specifically targeted using the technology. This incident has raised questions about the use of spyware by governments and the need for greater transparency and accountability in the industry.
References :
- infosec.exchange: NEW: Spyware maker Paragon says it cancelled contracts with Italian spy agencies because the government refused help investigating spyware attack on journalist.
- techcrunch.com: Paragon says it canceled contracts with Italy over government’s refusal to investigate spyware attack on journalist
- Links: Spyware maker cuts ties with Italy after government refused audit into hack of journalist’s phone
- www.metacurity.com: Starlink endangers WH security, Nigeria convicts Chinese cybercriminals, US sentences Nigerian hacker, ICE arrests Oz hacker, Italy ends contract with spyware company Paragon, Supreme Ct. gives DOGE our social security data, BADBOX 2.0 infects 1m+ devices, EU issues cyber blueprint, much more
- CyberScoop: Paragon spyware found on the phones of Euro journos
- The Citizen Lab: Graphite Caught: First Forensic Confirmation of Paragon’s iOS Mercenary Spyware Finds Journalists Targeted - The Citizen Lab
- infosec.exchange: Researchers found forensic evidence of Paragon's spyware on the iPhones of two journalists. One is Ciro Pellegrino, who works for Fanpage. The other is an unnamed prominent European journalist.
- techcrunch.com: Apple fixes new iPhone zero-day bug used in Paragon spyware hacks
- The Hacker News: Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
- techcrunch.com: Researchers confirm two journalists were hacked with Paragon spyware
- Help Net Security: iOS zero-click attacks used to deliver Graphite spyware (CVE-2025-43200)
- cyberpress.org: Graphite Spyware Uses iOS Zero-Click Vulnerability to Target Journalists
- securityonline.info: Security Online
- Schneier on Security: Paragon Spyware Used to Spy on European Journalists
- gbhackers.com: Graphite Spyware Uses iOS Zero-Click Flaw to Target Journalists
- thecyberexpress.com: Apple Patches Flaw Exploited in Zero-click Paragon Spyware Attacks
- The Register - Security: Apple fixes zero-click exploit underpinning Paragon spyware attacks
- Peter Murray: Researchers confirm two journalists were hacked with Paragon spyware: The confirmation of two hacked victims further deepens an ongoing spyware scandal that, for now, appears largely focused on the Italian government | TechCrunch
- Security Risk Advisors: Citizen Lab: Paragon Graphite Mercenary Spyware Targets European Journalists Through Zero-Click iOS Attacks
Classification:
|
|
FlagThis - #paragon
