The US tech and retail giant, Amazon has pulled the plug on infrastructure and other services that it offered to Israeli surveillance firm NSO Group, following allegations that the company’s spyware was being used to snoop on journalists and activists.
Amazon announced on Monday that it had deactivated cloud computing accounts linked to NSO Group. The Israeli company reportedly used Amazon Web Services (AWS) to operate the spyware programs that it marketed to governments around the world.
— Gadgets 360 (@Gadgets360) July 20, 2021
The move comes after Amnesty International’s Security Lab conducted a forensic analysis of telephones on a leaked list of targets for NSO’s flagship malware, Pegasus. It’s believed that the digital surveillance software – which is reportedly capable of accessing and recording texts, videos, photos and web activity, and can even log passwords used on the device – may have been used by foreign governments to target as many as 50,000 people, including business executives, religious figures, academics, NGO workers, presidents and prime ministers.
The leaked list of purported Pegasus targets goes back to 2016 and was reportedly compiled from requests from NSO clients in 10 countries, Azerbaijan, Bahrain, Hungary, India, Kazakhstan, Mexico, Morocco, Rwanda, Saudi Arabia and the United Arab Emirates (UAE). Hungary and Morocco have denied using the spyware to snoop on targets at home or abroad.
With media outlets now teasing potentially explosive details about the far-reaching hacking, Amazon wasted little time in distancing itself from the Israeli firm.
Israel-based NSO Group’s Pegasus spyware was used in attempted and successful hacks of 37 smartphones belonging to journalists, government officials and human rights activists around the world, according to an investigation by 17 media organizations https://t.co/qEV7UeaKc7 pic.twitter.com/mjDa6CTihC
— Reuters (@Reuters) July 19, 2021
“When we learned of this activity, we acted quickly to shut down the relevant infrastructure and accounts,” an AWS spokesperson said.
NSO Group disputed that AWS had shut down its accounts, prompting Amazon to double down.
Apartheid Israel field-tests its tools of repression against Indigenous Palestinians and then exports them to criminal regimes worldwide.@NSOgroup's #Pegasus spyware is used to target activists & journalists globally.#MilitaryEmbargo now!https://t.co/nAgPVfUnVs
— BDS movement (@BDSmovement) July 19, 2021
Amnesty’s analysis of 67 smartphones allegedly targeted by Pegasus found evidence of successful infection on 23 devices and signs of attempted infiltration on 14 others. The NGO also claimed that NSO’s malware sent information “to a service fronted by Amazon CloudFront, suggesting NSO Group has switched to using AWS services in recent months.”
Citizen Lab, a group at Toronto University that has been tracking Pegasus for years, said in a peer review of Amnesty’s finding that it had “independently observed NSO Group begin to make extensive use of Amazon services including CloudFront in 2021.”
CloudFront is an Amazon service that allows clients to securely deliver data using high transfer speeds.
Buried 35 paragraphs deep in @washingtonpost is acknowledgment that "Pegasus was engineered a decade ago by Israeli ex-cyberspies with government-honed skills" and that Israeli defense ministry must approve any license to a government that wants to buy it" https://t.co/zzSAoewkJ0
— Electronic Intifada (@intifada) July 19, 2021
While Amazon rushed to cut ties with NSO, it was less proactive when media reports revealed in May 2020 that the Israeli firm may have used Amazon infrastructure to deliver malware to unsuspecting victims. At the time, the company failed to respond to a request for comment asking if NSO had breached Amazon’s terms of service.
The Israeli surveillance firm has disputed how Pegasus has been characterized by Amnesty and subsequent media reports, claiming that its clients only use the malware in exceptional cases involving legitimate targets of counterterrorism operations or investigations of other serious crimes.as
(RT, PC, Social Media)