Nuked 
Hey everyone, Nuked here! Today, let’s dive into a fascinating courtroom victory that marks a big step forward for digital privacy.
In a groundbreaking case, a US jury has ordered the notorious NSO Group to pay a hefty $167 million in punitive damages to WhatsApp. This case shines a light on how NSO exploited a vulnerability in WhatsApp to infect thousands of phones with spyware, targeting a wide range of individuals including journalists, activists, and diplomats.
Back in 2019, WhatsApp took legal action against NSO, accusing them of using a sneaky trick — a ‘clickless’ exploit — that infected phones just by placing a call, no need for the recipient to answer. NSO’s Pegasus spyware was used to spy on people, including 100 civil society members from 20 countries, by injecting malicious code through WhatsApp’s servers.
Once infected, the targeted phones would connect to NSO’s malicious servers, allowing spyware to access sensitive data. WhatsApp responded swiftly, patching the flaw and alerting users. The company also removed NSO employees from their platform, signaling a strong stand against illegal cyberespionage.
This landmark verdict is a strong blow against illegal spyware companies. It not only penalizes NSO but also serves as a warning to others in the industry. The case also uncovered secrets about NSO’s clients and technical workings, previously kept under wraps.
Legal battles like this are vital in protecting our privacy in an increasingly connected world. As John Scott-Railton from Citizen Lab noted, the verdict sends a message: people don’t like being hacked by tools meant for authoritarian regimes.
