The Israeli firm behind software used to hack WhatsApp boasted that it can scrape data from Amazon, Apple, Facebook, Google, and Microsoft cloud servers
Karly Domb Sadof/AP
- NSO Group, the Israeli security firm whose Pegasus malware was used in a WhatsApp hack in May, has boasted it can break into the cloud services of big tech companies, according to the Financial Times.
- The FT reviewed sales documents from NSO which said its new system could obtain a target's entire location data history, archived messages, and photos.
- The cloud services of Apple, Google, Facebook, Amazon and Microsoft were all referenced as being vulnerable in the FT report. Some are investigating the issue.
- "We do not provide or market any type of hacking or mass-collection capabilities to any cloud applications, services or infrastructure," an NSO spokesperson told the FT.
- Visit Business Insider's homepage for more stories.
The company behind a WhatsApp hack has been boasting that it can break into the cloud services of big tech companies, including Amazon, Apple, Facebook, Google, and Microsoft, the Financial Times reports.The Israeli security firm NSO group is infamous for its malware, Pegasus, which the FT said in May had been used to hack the phones of human rights activists using just a single WhatsApp call. The malware could make its way onto the target's phone, even if they didn't pick up.
According to the sales documents viewed by the FT, the method involves copying authentication keys for services like Google Drive, Facebook Messenger and iCloud, from a targeted phone. Once this is done, a separate server can then impersonate the device without alerting the real owner.The document said that even if the malware is removed from the device, attackers could still have unlimited access to data uploaded to the cloud, the FT reported.
Some of the big tech companies mentioned in the report are now conducting investigations.
"We have no evidence that Amazon corporate systems, including customer accounts, have been accessed by the software product in question. We take customer privacy and security extremely seriously, and will continue to investigate and monitor the issue," an Amazon spokesman told Business Insider.Facebook added: "Protecting the security of people's accounts is a top priority. We are reviewing these claims."
Microsoft told the FT its security technology was "continually evolving." Apple told the newspaper that its operating system is "the safest and most secure computing platform in the world."
"While some expensive tools may exist to perform targeted attacks on a very small number of devices, we do not believe these are useful for widespread attacks against consumers," Apple added.Google declined to comment when contacted by the FT.
- 1.28 lakh people over 60 years get 1st dose of COVID vaccine on first day
- Chinese hackers target Indian vaccine makers SII and Bharat Biotech: Report
- GST revenue up 7% year-on-year in February to over ₹1.13 lakh crore
- Here is the list of common side-effects of COVID-19, so that you don't panic if you get these
- These are the top 10 likely IPOs scheduled in March 2021