For the first time, cybersecurity investigators have discovered Paragon spyware operating on Apple devices belonging to journalists in Europe, intensifying existing concerns about surveillance of reporters in Italy and beyond. The recent findings underscore the continued risk to press freedom, highlighting developments that have not only technical but also legal and political implications. These revelations come as the use of sophisticated digital surveillance tools rises globally, often sparking debate over accountability and human rights.
While past reports about Paragon’s spyware have largely focused on suspected deployments and abstract risks, this confirmation marks a clear shift by providing direct forensic evidence from Apple devices. Earlier coverage of similar spyware mostly revolved around products from NSO Group, but concrete proof of Paragon’s activity on specific targets remained sparse. Recent whistleblowing and renewed scrutiny of Italian government contracts indicate a deepening scandal alongside new technical findings.
What Did Citizen Lab Discover on Apple Devices?
According to the University of Toronto’s Citizen Lab, their investigation verified that the iPhones of Ciro Pellegrino and another unnamed European journalist were compromised using Paragon’s spyware, Graphite. Both affected journalists are connected to the Italian investigative media outlet Fanpage. Notifications from Apple and WhatsApp signaled suspicious activity, which later led to a systematic forensic analysis revealing the presence of spyware.
How Have Officials and Paragon Responded to These Findings?
Paragon has remained silent regarding the specific discoveries publicly shared by Citizen Lab. Although the research group did not identify the customer responsible, it established that the same client targeted both Pellegrino and the unnamed journalist. The Italian government’s recent move to terminate its contract with Paragon adds another dimension, suggesting ties between government surveillance programs and the attacks reported.
What Broader Implications Does This Scandal Raise?
The incident highlights ongoing concerns about the targeting of journalists critical of government policies. Natalia Krapiva of Access Now noted,
“There appears to be a pattern of targeting Italian journalists critical of the government.”
Citizen Lab’s senior researcher, John Scott-Railton, emphasized the recurring nature of issues surrounding mercenary spyware vendors, stating that companies face inevitable risks when their products are deployed by government entities, regardless of intended safeguards.
Recent confirmations linking Paragon’s Graphite spyware to journalists’ devices expand the context of targeted surveillance historically associated with software from NSO Group and similar firms. Unlike previous allegations without direct evidence, these technical verifications add substance to policy discussions and calls for stricter oversight of spyware sales. For journalists and rights advocates, this raises practical questions about digital security and the measures needed to counter such threats, especially as commercial spyware tools grow more advanced and widely available. Developing robust protective strategies, fostering transparency between governments and technology suppliers, and supporting ongoing forensic investigations are necessary steps to address surveillance risks. Ultimately, an informed and vigilant digital environment remains vital, particularly for investigative reporters who may attract scrutiny for their work.
- Researchers found Paragon spyware on journalists’ Apple devices in Europe.
- The discovery strengthens calls for oversight of commercial spyware providers.
- Key questions persist about surveillance accountability and journalist protection.
