Profile picture
Committee to Protect Journalists @pressfreedom
, 15 tweets, 8 min read Read on Twitter
#Pegasus spyware, which transforms a cellphone into a mobile surveillance hub, could have been deployed against a range of journalists and civil society actors in Mexico, KSA, Bahrain, Morocco, Togo, Israel, US, and UAE.

How to protect yourself? [Thread]
cpj.org/2018/10/cpj-sa…
#Pegasus gives the attacker the ability to monitor, record & collect existing & future data from the phone. This includes calls and information from messaging applications and real-time location data. The spyware is able to remotely activate the camera and microphone.
@citizenlab
Pegasus is designed to be installed on phones running iOS, Android, and BlackBerry OS without alerting the target to its presence. Journalists will likely only know if their phone has been infected if the device is inspected by a tech expert.
cpj.org/2018/10/cpj-sa…
Attackers create tailor-made messages that are sent to a specific journalist. These messages convey a sense of urgency and contain a link or a document which the journalist is encouraged to click on. The messages come in a variety of forms, including SMS, email, and WhatsApp.
Research by @citizenlab and @amnesty found that #Pegasus messages tend to take the following forms:

- Messages purporting to be from a known organization such as an embassy or a local news organization
- Messages that warn the target may be facing an immediate security threat
-Msgs that raise any work-related issue, such as covering an event that the target usually reports on
-Msgs that make appeals to personal matters, such as those relating to compromising photos of partners
-Financial msgs that reference purchases, credit cards, or banking details
Attackers can target personal and work phones. To better protect themselves & their sources, journalists should:

- Verify the link with the sender through a different channel of communication. This should preferably be through video or voice

#journosafe
cpj.org/2018/10/cpj-sa…
If the sender is not previously known to you, secondary channels may not provide successful verification of the links, as secondary channels may be set up by the adversary as part of an elaborate cover identity.

#digitalsecurity #pegasus #cpjemergencies
cpj.org/2018/10/cpj-sa…
If the link utilizes a URL shortener service like TinyURL/Bitly, input the link into a URL expander service. If the expanded link looks suspicious, for instance mimicking a local news website but not being quite the same, do not click the link and forward it to phishtank@cpj.org
If you feel you need to open the link, do not use your primary device. Open the link on a separate, secondary device that does not have any sensitive information or contact details, and is used solely for viewing links. Carry out a factory reset on the device regularly.
#Pegasus spyware can also be installed on your phone if an adversary gains physical access to the device. To reduce risk:

- Do not leave your device unattended and avoid handing over your phone to others

cpj.org/2018/10/cpj-sa…
When crossing a border or checkpoint ensure that you can see your phone at all times Turn off the phone before arriving at the checkpoint, and have a complex passphrase consisting of both letters and numbers. Be aware that if your phone is taken then the device may be compromised
If you are a freelance journalist or a journalist that does not have access to tech support, contact the @accessnow Helpline: accessnow.org/help/

If you have received a suspicious msg & believe you may have been targeted by Pegasus, please fwd the msg to phishtank@cpj.org
For more information on technology security we encourage journalists to review the CPJ's Security Guide's Chapter on Technology Security: cpj.org/reports/2012/0…

And see the digital safety information included in our Resource Center: cpj.org/emergency-resp…

#CPJEmergencies
If you believe your phone is infected by #Pegasus immediately stop using that phone and purchase another one. You should leave the suspected device in a place that does not compromise you or your surroundings.

Illustration by @citizenlab

cpj.org/2018/10/cpj-sa…
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Committee to Protect Journalists
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#Pegasus #journosafe #digitalsecurity #CPJEmergencies

More from @pressfreedom see all

Profile picture
53 journalists have been killed in line of duty worldwide this year.

Read their names and stories in the following thread. #pressfreedom
Unknown assailants on January 13 killed veteran journalist Carlos Domínguez Rodríguez (77) while he was driving through the city of Nuevo Laredo in Mexico’s Tamaulipas state near the Texas border.

Suspected source of fire: government officials

cpj.org/data/people/ca…
Jefferson Pureza Lopes was assassinated on the night of January 17 in #Brazil’s Goiás state, located southwest of Brasilia.

Lopes was at his home in Edealina, a town of around 4,000 people, when 2 men with motorcycles shot him dead as he was watching TV.
cpj.org/data/people/je…
Read 42 tweets
Profile picture
CPJ Safety Advisory: Covering Protests in #Bangladesh cpj.org/2018/08/cpj-sa… #alert
Plan the assignment and ensure that you have a full battery on your mobile phone. Know the area you are going to. Work out in advance what you would do in an emergency. #CPJEmergencies
Always try to work with a colleague and have a regular check-in procedure with your base. #JournalistSafety
Read 20 tweets
Profile picture
#Vietnam: Blogger sentenced to 7 years for anti-state "propaganda"
cpj.org/2017/11/vietna…
Vietnamese authorities should immediately release the blogger Nguyen Van Hoa who was sentenced on Monday to seven years in prison on charges of disseminating "propaganda against the state."
In a one-day trial, a court in the province of #HaTinh sentenced Hoa to 7 years in prison and three years of house arrest under article 88 of the penal code, an anti-state provision that carries maximum 20-year prison terms for the offense of "propagandizing" against the state.
Read 5 tweets

Related threads

Profile picture
(1) What the Federal Government has not told #ThreatFusionCenter personnel, LE personnel and Fire/#EMS, is that all of those nasty transmitters for #Microwaves #5G #10G #50G that they have mounted on towers above their buildings, to illegally surveil & target the population ....
(2) with #ADS AKA #Active Denial Weapons Systems, is that those radiation emitting systems, also negatively and severely impact their health as well, in addition to the rest of the population.

Some of these #ADS utilize #DNA or #BiometricSignature targeting mechanisms ....
(3) so that individual targets can be selected out of the population.

HOWEVER, the radiation is still lethal to all over a period of time; including to the operators & other individuals working in facilities with these transmitters & #magnetrons mounted on towers or buildings.
Read 10 tweets
Profile picture
💥WARNING💥Safety Advisory For Citizen Journalists💥 Pegasus spyware is used to target journalists & civil society 🚨Stay Alert 🚨 cpj.org/2018/10/cpj-sa…
🔥If a link utilizes URL shortener like TinyURL or Bitly, input link into a URL expander service like Link Expander or URLEX. If expanded link looks suspicious - mimicking a local news site but not being quite the same, don’t click link -forward it to phishtank@cpj.org first🔥
🕶Attackers create tailor-made messages that are sent to a specific journalist. These messages convey a sense of urgency and contain a link or a document which the journalist is encouraged to click on... once you click- tracking is engaged 😳
Read 3 tweets
Profile picture
1) 04/29/17 🇲🇽In Mexico, ‘It’s Easy to Kill a Journalist’ @almostjingo @BenKTallmadge @CarrollQuigley1 @MadAddictSport @wynterklaus
nytimes.com/2017/04/29/wor…
2) 09/18/18 🇲🇽HIDE AND SEEK Tracking NSO Group’s Pegasus Spyware to Operations in 45 Countries @almostjingo @BenKTallmadge @CarrollQuigley1
@MadAddictSport @wynterklaus
citizenlab.ca/2018/09/hide-a…
3) Mexico purchased this software and is directly linked to disappearances and targeted journalists. I am certain other countries have done the same. I am focusing first on our neighbors who are being targeted.
citizenlab.ca/2018/09/hide-a…
Read 25 tweets
Profile picture
Does AUSA Moira Kim Penza, prosecutor in the fed. #NXIVM #RICO criminal racketeering case, realize that her indictments of #NXIVM leader, Keith Raniere aka "Vanguard," last March, may have affected the outcome of the 2018 Mexican Presidential Election? #ArizonaMafia #Democrats
Moira Kim Penza is 1 of the main prosecutors in the federal #NXIVM #RICO criminal case. A #RICO case is very serious; it is 1 of the most complex types of prosecutions the U.S. Government can initiate. Moira's boss is Richard P. Donoghue, U.S. Atty for the Eastern District of NY.
Penza is a smart lawyer. According to publicly available information, she studied at Cornell Law School, a private Ivy League University located in Ithaca, New York. Cornell was ranked the #13 law school in America, out of 203 law schools, by U.S. News & World Report, in 2018.
Read 117 tweets
Profile picture
Over the last year @CLTCBerkeley has looked at the range of cyberattacks targeting civil society organizations and the existing ecosystem of support those orgs receive to counter these attacks. We’ve published our report today: cltc.berkeley.edu/defendingpvos/ /1
We focused our report on “politically vulnerable organizations” – in other words, orgs whose work makes them the focus of targeted cyberattacks as a means to achieve political ends (as opposed to criminal or mischief) /2
Previous research shows us that nonprofits in general suffer from poor cybersecurity posture. This is hardly a surprise – any type of IT investment is expensive, and only 1 in 11 IT professionals have any background in security. /3
Read 18 tweets
Profile picture
Would add to this excellent thread that are those who believe a British hedge fund manager hoodwinked law enforcement agencies, parliaments and intel agencies the world over; or that they just took his word for it and passed sanctions.
If you believe that to be a plausible theory you really haven’t a clue as to how democratic government works. Over the last ten years (six of which I’ve been reporting on Magnitsky) more and more evidence has come to light vindicating Sergei’s discovery of a criminal conspiracy.
The Russian government, which initially *compiled much of this evidence itself*, has meanwhile changed its line on what happened and concocted easily debunked “alternatives”—debunked foremost by Russian journalists and civil society actors.
Read 13 tweets

Trending hashtags

#XYTroll #AntiXY #SaudiArabia #PRopaganda #MBS #Arab #Turkish #Kill #Rosnef #Bronfman #Venezuela #censored #khasoggi #CNN #Saddam #Embassy #Muslim #KSA #Mexico #International #SaudiArabians #XYDenier #Harvard #SaudiLobby #NewYorkTimes

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!