Nation-State 'Paragon' Spyware Infections Target Civil Society
Law enforcement entities in democratic states have been deploying top-of-the-line messaging app spyware against journalists and aid workers.
Journalists may handle sensitive sources, investigate cyber incidents, and face risks involving surveillance, phishing, and data exposure.
Search across headline titles and summaries.
Background for this topic.
Journalists gather, verify, and publish information, often handling unpublished documents, confidential source identities, and sensitive communications. Their security relevance is concentrated in protecting source confidentiality, editorial materials, accounts, and personal safety from targeted phishing, account takeover, device compromise, surveillance, or theft of stored data.
Useful controls include phishing-resistant multifactor authentication, prompt patching, encrypted communications and storage, strong separation between personal and reporting accounts, and careful handling of identifying metadata such as file histories and location data. Security planning should also cover source verification, secure transfer and deletion procedures, device and travel risks, and a response plan to revoke sessions, preserve evidence, assess exposed sources, and communicate through trusted channels after a suspected compromise.
Law enforcement entities in democratic states have been deploying top-of-the-line messaging app spyware against journalists and aid workers.
Plus: Customer info stolen from 'parental control' software slinger SpyX; F-35 kill switch denied Infosec newsbytes Israeli spyware maker Paragon Solutions pitches its tools as helping governments and law enforcement agencies to catch criminals and terrorists, but a fresh Citizen Lab report claims its software has been used to target journalists, activists, and other civilians.…