Pegasus: The phantom threat lurking in your phone | The Business Standard
Skip to main content
  • Latest
  • Economy
    • Banking
    • Stocks
    • Industry
    • Analysis
    • Bazaar
    • RMG
    • Corporates
    • Aviation
  • Videos
    • TBS Today
    • TBS Stories
    • TBS World
    • News of the day
    • TBS Programs
    • Podcast
    • Editor's Pick
  • World+Biz
  • Features
    • Panorama
    • The Big Picture
    • Pursuit
    • Habitat
    • Thoughts
    • Splash
    • Mode
    • Tech
    • Explorer
    • Brands
    • In Focus
    • Book Review
    • Earth
    • Food
    • Luxury
    • Wheels
  • More
    • Sports
    • TBS Graduates
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • Gallery
    • Long Read
    • Interviews
    • Offbeat
    • Magazine
    • Climate Change
    • Health
    • Cartoons
  • বাংলা
The Business Standard

Wednesday
June 11, 2025

Sign In
Subscribe
  • Latest
  • Economy
    • Banking
    • Stocks
    • Industry
    • Analysis
    • Bazaar
    • RMG
    • Corporates
    • Aviation
  • Videos
    • TBS Today
    • TBS Stories
    • TBS World
    • News of the day
    • TBS Programs
    • Podcast
    • Editor's Pick
  • World+Biz
  • Features
    • Panorama
    • The Big Picture
    • Pursuit
    • Habitat
    • Thoughts
    • Splash
    • Mode
    • Tech
    • Explorer
    • Brands
    • In Focus
    • Book Review
    • Earth
    • Food
    • Luxury
    • Wheels
  • More
    • Sports
    • TBS Graduates
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • Gallery
    • Long Read
    • Interviews
    • Offbeat
    • Magazine
    • Climate Change
    • Health
    • Cartoons
  • বাংলা
WEDNESDAY, JUNE 11, 2025
Pegasus: The phantom threat lurking in your phone

Tech

Nasif Tanjim
17 August, 2024, 02:20 pm
Last modified: 17 August, 2024, 02:27 pm

Related News

  • Cybersecurity: Making it a boardroom priority
  • Meta's WhatsApp says spyware company Paragon targeted users in two dozen countries
  • Why are Bangladeshi banks so susceptible to cybersecurity breaches?
  • As China hacking threat builds, Biden to order tougher cybersecurity standards
  • US official fighting Chinese telecom intrusions urges more encryption

Pegasus: The phantom threat lurking in your phone

The invasive spyware exploits undiscovered vulnerabilities, or bugs, in Android and iOS. This means a phone could be infected even if it has the latest security patch installed

Nasif Tanjim
17 August, 2024, 02:20 pm
Last modified: 17 August, 2024, 02:27 pm
Illustration: TBS
Illustration: TBS

Today, our smartphones have become extensions of our personal and professional lives.

Since our digital footprints are as ubiquitous as real ones, the idea of an invisible observer lurking within these devices is both chilling and unsettling, as well as a massive invasion of our privacy.

That is why Pegasus, an insidious spyware, can be considered the single biggest threat to privacy ever.

A spyware is any malicious software designed to enter your computer device, gather your data, and forward it to a third-party without your consent.

The Business Standard Google News Keep updated, follow The Business Standard's Google news channel

Pegasus today has become a byword for invasive surveillance. Its origins can be traced back to 2010, when the Israeli firm NSO Group was founded by Niv Carmi, Omri Lavie, and Shalev Hulio.

The company marketed Pegasus as a tool for governments to combat terrorism and crime, offering them unprecedented access to the devices of suspects. Unlike other spyware, Pegasus is not an off-the-shelf product but a bespoke tool tailored for specific targets, making it particularly attractive to state actors.

However, the true scale of Pegasus's deployment came to light in July 2021, with the publication of the Pegasus Project by a consortium of 17 media organisations, including The Guardian, Le Monde, and The Washington Post, in collaboration with Amnesty International and Forbidden Stories.

This investigation revealed that Pegasus had been used to target over 50,000 phone numbers worldwide, belonging to journalists, activists, business executives, and politicians.

How Pegasus works

Many experts believe Pegasus is the most powerful spyware created till date. It is designed to infiltrate smartphones — both Android and iOS — and turn them into surveillance devices.

Pegasus exploits undiscovered vulnerabilities, or bugs, in Android and iOS. This means a phone could be infected even if it has the latest security patch installed.

A previous version of the spyware from 2016 infected smartphones using a technique called "spear-fishing": text messages or emails containing a malicious link were sent to the target. It depended on the target clicking the link — a requirement that was done away with in subsequent versions.

By 2019, Pegasus could infiltrate a device with a missed call on WhatsApp and could even delete the record of this missed call, making it impossible for the user to know they had been targeted.

Once inside a device, Pegasus can access messages, emails, photos, and even control the camera and microphone, turning the smartphone into a real-time surveillance tool.

Pegasus attacks across the world

The Jamal Khashoggi case: One of the most high-profile cases linked to Pegasus is the murder of Saudi journalist Jamal Khashoggi. According to reports, Pegasus was used to target Khashoggi's inner circle, including his fiancée Hatice Cengiz and close associates, before and after his assassination in the Saudi consulate in Istanbul in 2018.

Mexican journalists and activists: In Mexico, Pegasus was used extensively to target journalists and activists, particularly those investigating corruption and organised crime. One of the most notable cases involved the surveillance of journalist Carmen Aristegui, who was known for her work exposing corruption at the highest levels of the Mexican government.

Bangladesh and Pegasus

In 2018, Canada-based cybersecurity organisation Citizen Lab documented suspected Pegasus infections in 45 locations. Bangladesh was named among the locations mentioned in their list.

Between August 2016 and August 2018, Citizen Lab scanned the internet for servers associated with NSO Group's Pegasus spyware. They found 1,091 IP addresses that matched its fingerprint and 1,014 domain names that pointed to the addresses.

Citizen Lab identified five operators that they believed were focusing on Asia. One operator, GANGES, used a politically themed domain signpetition[.]co, to infect devices in Bangladesh, India, Pakistan, Brazil and Hong Kong.

After analysing the DNS cache hits, they suspected Bangladesh Telecommunications Company Limited (BTCL) of being infected by the spyware for political targeting. Bangladesh's then Posts and Telecommunications Minister Mustafa Jabbar, denied such allegations.

Article 43(B) of the Bangladesh Constitution safeguards citizens' privacy of correspondence and communication. Section 63 of the ICT Act, 2006 provides penalty for disclosure of confidential and private electronic record, book, register, correspondence, information, document, or other material without consent of the person concerned.

The ethical dilemma

The NSO Group insists that Pegasus is a legitimate tool for law enforcement and intelligence agencies, emphasising that it is only sold to vetted government clients.

However, the cases outlined above, along with numerous others, suggest that Pegasus has been misused on a global scale, targeting individuals far removed from the realms of terrorism or crime.

On the other hand, the potential for abuse is immense, with little transparency or oversight governing how these tools are used.

Legal and regulatory responses

The revelations about Pegasus have prompted legal and regulatory actions around the world.

In the US, the Biden administration blacklisted the NSO Group in November 2021, citing concerns that Pegasus had been used to "conduct transnational repression." This move severely restricted the company's ability to do business with American firms and marked a significant shift in the global stance on spyware.

In Europe, the European Parliament launched an inquiry into the use of Pegasus and similar spyware within the EU, particularly in Poland and Hungary, where the software was allegedly used against political opponents and independent journalists.

The inquiry has led to calls for stricter regulations and greater accountability for companies that develop and sell spyware.

Detecting Pegasus

Because of its discreet installation, Pegasus could only be identified through digital forensics in the past. Kaspersky Labs has developed a tool that extracts, analyses, and parses the shutdown.log file, making it easier to locate any malicious signatures. For optimal results, it is crucial to reboot the device on the same day it gets infected with Pegasus.

Amnesty International has recently launched the Mobile Verification Toolkit, a powerful open-source utility that aims to identify any signs of Pegasus.

The software operates on a personal computer and examines data, including backup files exported from an iPhone or Android phone.

Pegasus / Cybersecurity / Spyware

Comments

While most comments will be posted if they are on-topic and not abusive, moderation decisions are subjective. Published comments are readers’ own views and The Business Standard does not endorse any of the readers’ comments.

Top Stories

  • Bangladesh's growth forecast unchanged: WB report
    Bangladesh's growth forecast unchanged: WB report
  • Faiz Ahmad Tayeb. Photo: BSS
    Import duty on raw materials for e-bikes, lithium batteries reduced from 80% to 1% in some cases: Faiz Taiyeb
  • Swedish activist Greta Thunberg, who departed Israel by plane on Tuesday after being detained aboard the Gaza-bound British-flagged yacht "Madleen" after Israeli forces boarded the charity vessel as it attempted to reach the Gaza Strip in defiance of an Israeli naval blockade, talks to journalists surrounded by French police as she arrives at a terminal at the Paris-Charles de Gaulle Airport, in Roissy-en-France near Paris, France, June 10, 2025. REUTERS/Gonzalo Fuentes
    Greta Thunberg says she was kidnapped by Israel in international waters

MOST VIEWED

  • On left, Abdullah Hil Rakib, former senior vice president (SVP) of BGMEA and additional managing director of Team Group; on right, Captain Md Saifuzzaman (Guddu), a Boeing 787 Dreamliner pilot for Biman Bangladesh Airlines. Photos: Collected
    Ex-BGMEA SVP Abdullah Hil Rakib, Biman 787 pilot Saifuzzaman drown in boating accident in Canada
  • File photo of Eid holidaymakers returning to the capital from their country homes/Rajib Dhar
    Dhaka: The city we never want to return to, but always do
  • Chief Adviser Muhammad Yunus leaves for a four-day visit to the United Kingdom from the Dhaka airport on 9 June 2025. Photo: CA Press Wing
    CA Yunus leaves for UK; discussion expected on renewable energy investment, laundered money
  • File Photo: Collected
    Enhanced surveillance at Ctg airport amid rising global Covid-19 cases
  • Inside the aid ship stormed by Israeli forces on 9 June 2025. Photo: BBC
    Israeli forces stormed aid boat carrying Greta Thunberg bound for Gaza: Freedom Flotilla Coalition
  • Photos: Collected
    Abdul Hamid wasn't arrested because he's not wanted right now: Home adviser

Related News

  • Cybersecurity: Making it a boardroom priority
  • Meta's WhatsApp says spyware company Paragon targeted users in two dozen countries
  • Why are Bangladeshi banks so susceptible to cybersecurity breaches?
  • As China hacking threat builds, Biden to order tougher cybersecurity standards
  • US official fighting Chinese telecom intrusions urges more encryption

Features

Illustration: Duniya Jahan/ TBS

Forget Katy Perry, here’s Bangladesh’s Ruthba Yasmin shooting for the moon

7h | Features
File photo of Eid holidaymakers returning to the capital from their country homes/Rajib Dhar

Dhaka: The city we never want to return to, but always do

1d | Features
Photo collage shows political posters in Bagerhat. Photos: Jannatul Naym Pieal

From Sheikh Dynasty to sibling rivalry: Bagerhat signals a turning tide in local politics

3d | Bangladesh
Illustration: TBS

Unbearable weight of the white coat: The mental health crisis in our medical colleges

6d | Panorama

More Videos from TBS

Greta Thunberg deported from Israel

Greta Thunberg deported from Israel

9h | TBS World
BNP is not a revolutionary party: Mirza Fakhrul

BNP is not a revolutionary party: Mirza Fakhrul

10h | TBS Today
News of The Day, 10 JUNE 2025

News of The Day, 10 JUNE 2025

8h | TBS News of the day
Trump sends 2,000 more National Guard and 700 Marines to Los Angeles

Trump sends 2,000 more National Guard and 700 Marines to Los Angeles

11h | TBS World
EMAIL US
contact@tbsnews.net
FOLLOW US
WHATSAPP
+880 1847416158
The Business Standard
  • About Us
  • Contact us
  • Sitemap
  • Advertisement
  • Privacy Policy
  • Comment Policy
Copyright © 2025
The Business Standard All rights reserved
Technical Partner: RSI Lab

Contact Us

The Business Standard

Main Office -4/A, Eskaton Garden, Dhaka- 1000

Phone: +8801847 416158 - 59

Send Opinion articles to - oped.tbs@gmail.com

For advertisement- sales@tbsnews.net