Apple files lawsuit against NSO Group, saying U.S. citizens were targets
The iPhone maker is the latest in a string of companies and governments to come after NSO, the maker of the Pegasus hacking tool that watchdog groups say targeted human rights workers and journalists
Apple is the latest in a string of companies and governments to come after NSO, the maker of the Pegasus hacking tool that watchdog groups say targeted human rights workers and journalists. Earlier this month, U.S. officials placed the company on a trade blacklist. NSO has also faced either legal action or criticism from Microsoft, Meta, Alphabet and Cisco.NSO is allegedly involved in circumventing security for products made by these companies and selling that circumvention in the form of hacking tools to foreign governments. NSO did not immediately respond to a request for comment but has previously said it only sells its products to law enforcement and intelligence agencies and takes steps to curb abuse. In its complaint filed in U.S. District Court for the Northern District of California, Apple said NSO's tools were used in "concerted efforts in 2021 to target and attack Apple customers" and that "U.S. citizens have been surveilled by NSO’s spyware on mobile devices that can and do cross international borders."
Apple alleged that NSO group created more than 100 fake Apple ID user credentials to carry out its attacks. Apple said that its servers were not hacked, but that NSO misused and manipulated the servers to deliver the attacks on Apple users.Apple also alleged that NSO Group was directly involved in providing consulting services for the attacks, which is noteworthy because NSO has maintained that it sells its tools to clients. "Defendants force Apple to engage in a continual arms race: Even as Apple develops solutions and enhances the security of its devices, Defendants are constantly updating their malware and exploits to overcome Apple’s own security upgrades," Apple said.