BREAKING: NSO Group liable for #Pegasus hacking of @WhatsApp users.
Big win for spyware victims.
Big loss for NSO.
Bad time to be a spyware company.
Landmark case. Huge implications. 1/ 🧵
2/ In 2019, 1,400 @WhatsApp users were targeted with #Pegasus.
WhatsApp did the right thing & sued NSO Group.
NSO has spent 5 years trying to claim that they are above the law.
And engaged in all sorts of maneuvering.
With this order, the music stopped and NSO is now without a chair.
3/ Today, the court decided that enough was enough with NSO's gambits & efforts to hide source code.
Judge Hamilton granted @WhatsApp's motion for summary judgement against the #Pegasus spyware maker.
The judge finds NSO's hacking violated the federal Computer Fraud & Abuse Act (#CFAA), California state anti-fraud law #CDFA, and was a breach of contract.
What happens next? The trial proceeds only on the issue of resolving damages stemming from NSO's hacking.
4/@WhatsApp suing NSO Group was a huge deal at the time.
We at @citizenlab & our peers in civil society had been investigating & surfacing a pile of #Pegasus abuses since 2016. Journalists, dissidents, truth-tellers, scientists, lawyers..
But nobody was taking action & NSO was flying high.
11/ Even as NSO has a bad time, other spyware companies like #Paragon present themselves as 'different' & 'approved' to try and break into the US market & grab market share.
I think their goal is to get enough contracts with countries like the US that it's hard to regulate them.
Be skeptical of their claims.
Seems like some are already falling apart.
They want to put secret hacking tools in the hands of American cops & police forces around the world.
You should demand oversight & action from Congress to stop this toxic industry from nesting in the US.
Today's ruling also raises questions about how legally safe it is for a company to sell & run hacking services targeting US-based platforms & their users.
THE #EU parliament #spyware debate has kicked off, follow along with me.
( triggered by the hacking of a MEP investigating spyware w/Pegasus)
It kicks off as expected with Commissioner @dubravkasuica (Croatia) trying frame the issue as a national one (govs should investigate...not the parliament).
This is likely to be unpopular among MEPs concerned by spyware abuses.
Next up? MEP & spyware victim @KrzysztofBrejza 1/
2/ Next: MEP @KrzysztofBrejza, himself a spyware target is clear: mercenary spyware is a risk to democracy & institutions.
I've experienced it myself. Spyware is dangerous when in the hands of the wrong ppl.
A very powerful statement.
@krzysztofbrejza 3/ Strong statements by @alexagiussaliba: Every citizen has the right to privacy.
2/ Parents want to protect their children, but once you build & implement bones of a system like this, with government developed 'verification' apps you've loaded the gun & pointed it at free expression.