EU DPA bans Pegasus Software and similar Spyware tools

The European Union Data Protection Authority (DPA) called for a ban on the development and use of Pegasus like commercial spyware naming it to be ‘unprecedented level of intrusiveness’ as it is threatening users privacy.

What is Pegasus Software?

Pegasus is a highly advanced mlilitary grade intrusion software created by a Israel based NGO Group that is capable of breaching smartphones including Android and iOS, and converting the devices into remote monitoring tool that can extract data, record sounds, capture screens, conversations, and track device location.

Along with the above mentioned capabilities, Pegasus can also stay invisible within a device by exploiting zero-click vulnerabilities such as FORCEDENTRY and KISMET which doesn’t require any manual interactions.

Pegasus has been quite famous in the industry recently for its spying controversies and intentions. The EU Data Protection Supervisor (DPS) mentioned ‘Pegasus constitutes a paradigm shift in terms of access to private communications and devices, which can affect the very essence of our fundamental rights, in particular the right to privacy. This fact makes its use incompatible with our democratic values.”

Pegasus Software like hacking tools will be restricted

The NSO Group has repeatedly mentioned that Pegasus software is being sold to government to identify crime and terrorism. However, there are several proofs that the software is being abused to spy on journalists, dissidents, activists and political personnel in multiple countries.

As per Calcalist, in recent weeks dozens of citizens in the country were being targeted by  Israel Police with the NSO Group spyware to collect intelligence data and to surveil the suspected users without permission by breaching their privacy.

The EU DPA states that Pegasus is not a law enforcement tool and hence should be avoidede to intrude user devices and such technologies must be completely eradicated.

The DPA has proposed to improve the supervision of use of Pegasus like hacking tools and implement stronger data protection and privacy regulation to strengthen privacy and legislation. Considering the Digital Service Act (DSA) and the EU tech rules can go live by Jun 2022, there may be hope for improved end-user privacy.

Subscribe to our newsletter for daily alerts on cyber events, you can also follow us on Facebook, Linkedin, Instagram, Twitter and Reddit.

You can reach out to us via Twitter or Facebook, for any advertising requests.