David Yambio, an Italian activist, alerted the ICC about spyware attacks on his phone during communications regarding torture victims in Libya. The Citizen Lab confirmed mercenary spyware targeting him and other activists. This raises concerns over potential government interference in ICC proceedings, especially amidst scrutiny on Italy’s use of spyware under Giorgia Meloni’s government. Calls for stronger EU regulations against spyware abuse have been made amidst ongoing investigations.
A prominent Italian activist has alerted the International Criminal Court (ICC) about his mobile phone being under surveillance while he provided the court with confidential information regarding torture victims in Libya. The Citizen Lab at the University of Toronto confirmed that David Yambio, founder of Refugees in Libya, was targeted by mercenary spyware during communication with The Hague, with at least one incident noted around June 2024.
Following confirmation of the spyware attack, Yambio notified the ICC and urged its members to check their devices for similar threats. The ICC’s office of the prosecutor refrained from commenting on the matter due to ongoing investigations. This event raises concerns about potential interference in ICC proceedings by a government utilizing military-grade spyware to monitor individuals aiding torture victims.
Yambio’s warning comes amid mounting scrutiny on Giorgia Meloni’s government over its use of spyware, particularly after reports in January indicated that Italian activists and journalists had been warned by WhatsApp about targeted spyware attacks. Additionally, Meloni’s government was criticized for releasing a Libyan suspect wanted by the ICC for war crimes, Osama Najim, also known as Almasri, who led an abusive detention center in Tripoli.
The Citizen Lab report highlighted that several activists connected to Yambio were also targeted by hacking software intended for serious crime investigations. While researchers are still examining the specific spyware utilized against Yambio, they confirmed that software from Paragon Solutions, an Israeli firm, was responsible for targeting others included in the investigation.
Forensic analysis of Android devices belonging to Paragon targets in Italy showed clear signs of spyware installation, particularly within WhatsApp. Although the Italian government admitted to being a Paragon client, it denied involvement in attacks against journalists and activists. Paragon has suspended its contract with Italy for breaching its rule against targeting civil society.
WhatsApp previously disclosed that 90 users, including activists and journalists, were targeted by Paragon’s government clients. Their spyware, known as Graphite, can infiltrate smartphones and access messages and calls across encrypted platforms. Yambio was notified of a potential attack by Apple in November, leading to further examination by Cyber Hub-AM and Citizen Lab.
Apple stated that such sophisticated spyware attacks are expensive to develop and targeted toward specific individuals based on their roles. The company confirmed that a fix was issued in iOS 18 to address the security vulnerability exploited in Yambio’s case. Citizen Lab’s investigation indicated that various countries, including Australia and Canada, may also be Paragon clients, prompting questions about regulatory compliance regarding spyware usage.
John Scott-Railton from Citizen Lab emphasized the need to investigate the deployment of spyware, the management of gathered information, and compliance with local laws. John Fleming, executive chair at Paragon US, confirmed the company mandates adherence to policies against illicit targeting but cited a lack of detailed information available for comment concerning the recent findings.
Hannah Neumann, a European Parliament member who studied spyware abuse, criticized the persistent issue as a pattern of denial and lack of justice for victims. She called for stronger EU regulations to prevent the cycle of spyware abuse, ensuring accountability and protection for victims.
The significant revelations surrounding activists being surveilled by spyware while communicating with the ICC emphasize the urgent need for enhanced security measures and accountability. This incident highlights potential state interference in judicial processes and raises grave concerns about the misuse of surveillance technology. Ongoing investigations into Paragon Solutions and its clientele further complicate this landscape, illuminating the necessity for robust legislation to protect civil society from unjust oversight and abuse. Without reform, violations of privacy and rights are likely to persist.
Original Source: www.theguardian.com
