Translation made of my publication: https://alexcocopro.substack.com/p/protegerte-de-los-spyware-pegasus?sd=fs
We have been hearing about controversies for several years. It turns out that many governments have contracted with an Italian software firm called Hacking Team, now called Memento Lab. Another company dedicated to the development and sale of spy applications is NSO group, developers of Pegasus spyware.
Much of the controversy stems from espionage at the highest level, including politicians, businessmen and celebrities, especially the violation of the privacy of human rights defenders and journalists. The perfect software to violate privacy and democracy.
Galileo was the first software and now it's Pegasus, nearly unstoppable spyware that uses zero-day vulnerabilities to spy on all your smartphone activities without leaving a trace. Memento Labs has been dedicated to the development of applications such as KRAIT and RCS to be sold to governments in different parts of the world in order to monitor their citizens, with the excuse of guaranteeing security and peace.
With these software you can collect information from the devices in an encrypted way, control the microphone, camera, take screenshots, record calls and obtain remote control of the devices. The company indicates that the software is sold only to governments, military agencies and intelligence agencies.
The worrying thing about these applications is that they can be installed remotely and all you have to do is receive a message on the computers for them to install and start operating.
My contact with Pegasus spyware:
A client contacted me because he strongly suspected that he was constantly being spied on. He had heard of Pegasus and asked me to start an investigation process in order to give him the best possible advice to avoid being infected and to determine if he was being spied on. The process was based on making a vulnerability analysis of his equipment and tests of traffic, open ports and processing.
Through this investigation it was determined that the person, who I keep anonymous, was being spied on by Pegasus.
Thanks to a tool called MVT Project, it was possible to study further whether the equipment was infected and advise the client on the best information security practices, since he had already been a target for being linked to companies that provide services to high-level businessmen and the media.
How to avoid being infected:
Do not clip links sent from anonymous or unknown accounts.
Pay attention to suspicious signs like unusual data consumption of your phone.
If you think you are infected, turn off your phone and keep it powered off.
How to disinfect:
- Format the computer and delete all your files.
How to know if you are infected:
There is a verification tool that allows you to detect if you are being spied on with Pegasus, which is published at the following link: https://github.com/mvt-project/mvt
Pegasus capabilities: I share with you the application's user manual so that you have an idea of everything this software is capable of: https://ia801005.us.archive.org/1/items/nso-pegasus/NSO-Pegasus.pdf
Author: Alex Jesús Cabello Leiva
Donations: