Apple is suing NSO Group Technologies, the Israeli military-grade spyware manufacturer that created surveillance software used to target the mobile phones of journalists, political dissidents, and human rights activists, to block it from using Apple products.
The iPhone maker’s lawsuit, filed on Tuesday in federal court in California, alleged that NSO, the largest known Israeli cyber warfare company, had spied on and targeted Apple users. It is seeking damages as well as an order stopping NSO from using any Apple software, device, or services.
NSO develops and sells its spyware, known as Pegasus, which exploits vulnerabilities in iPhones and Android smartphones and allows those who deploy it to infiltrate a target’s device unnoticed.
Apple’s suit provided new details about a recently patched vulnerability, nicknamed FORCEDENTRY, that was used by NSO’s clients for about eight months to deliver code to an unspecified number of targets.
NSO said its software had saved “thousands of lives . . . around the world” and that its technology helped governments “catch paedophiles and terrorists.”
The company has never provided any evidence to back up those claims, citing confidentiality agreements with the government agencies that NSO sells to with the approval of the Israeli authorities.
It has recently appealed to the Israeli government to help lobby the White House to remove NSO from a US Department of Commerce blacklist for selling a technology that has resulted in “transnational repression,” according to two people familiar with the request.
It is not known if the Israeli government has acted on that request.
The US government announced this month that it had added NSO Group and rival Tel Aviv-based Candiru to the trade blacklist, which would restrict exports of US hardware and software to the companies, as it cracks down on the global hacking-for-hire industry.
Apple’s lawsuit comes as Moody’s cut NSO’s debt two notches to eight levels below investment grade, indicating a high risk of default on $500 million in loans.
The company had fully drawn down a bank credit line, Moody’s said, and tight liquidity meant NSO could breach a covenant on its debt, leading to a default.
Pegasus was revealed in July to have been used to target smartphones belonging to dozens of journalists, human rights activists, and politicians, according to an investigation by a consortium of newspapers.
“State-sponsored actors like the NSO Group spend millions of dollars on sophisticated surveillance technologies without effective accountability. That needs to change,” Craig Federighi, Apple’s senior vice-president of software engineering, said in a statement. “Apple devices are the most secure consumer hardware on the market—but private companies developing state-sponsored spyware have become even more dangerous.”
Apple’s complaint comes just weeks after the US Court of Appeals for the Ninth Circuit held that NSO and its parent company Q Cyber were not sovereign entities and therefore were not shielded from an earlier lawsuit brought by Facebook accusing NSO of targeting users of its WhatsApp messaging service.
In the complaint, Apple called NSO a group of “notorious” and “amoral” hackers that act as “mercenaries” creating cyber-surveillance machinery “that invites routine and flagrant abuse” for commercial gain.
The US company accused NSO of violating multiple federal and state laws “arising out of their egregious, deliberate, and concerted efforts in 2021 to target and attack Apple customers.”
Apple issued an emergency software update in September after a vulnerability from Pegasus was exposed by researchers at the University of Toronto’s Citizen Lab.
© 2021 The Financial Times Ltd. All rights reserved Not to be redistributed, copied, or modified in any way.
https://arstechnica.com/?p=1815539