Who hacked Downing Street?
No. 10 and Foreign Office phones targeted on multiple occasions, say cybersecurity experts
Boris Johnson’s mobile phone was tested by cybersecurity experts after Downing Street was targeted by an infamous spying software used by hackers and authoritarian regimes.
Researchers at the University of Toronto’s The Citizen Lab found that a Downing Street device was infected with the notorious “Trojan Horse”-style snooping software, with the breach “likely to have led to the exfiltration of potentially highly sensitive data”, said The Times.
According to the New Yorker, tests were carried out on “several” phones, including one belonging to the prime minister, with Citizen Lab analysts concluding that the Pegasus spying software “was used to infect a device connected to the network at 10 Downing Street” on 7 July 2020.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
The National Cyber Security Centre, a branch of the UK’s intelligence services, carried out testing on the phones, and was ultimately “unable to locate the infected device” nor was it able to determine the nature of any stolen data, according to the magazine.
Who hacked No. 10?
The Citizen Lab said that “based on the servers to which the data were transmitted” the United Arab Emirates, or an organisation linked to the country, was most likely behind the cyber attack.
The Canadian research body also said that at least five phones connected to the Foreign Office were hacked between July 2020 and June 2021, with a government official confirming “indications of hacking had been uncovered”. The attacks were likely to have been carried out by “Pegasus operators connected to the UAE, India, Cyprus and Jordan”, said The Times.
John Scott-Railton, a senior researcher at the Citizen Lab, said that the UK was “underestimating the threat from Pegasus” despite having been “spectacularly burned”. But government sources stressed to The Times this week that the cyber attacks had not been “serious or widespread” and was no longer considered a threat.
The UAE did not respond to requests for comment, said the New Yorker, while employees of NSO, the Israeli company that designed Pegasus, claimed they were unaware of the hack.
In a statement, the company said: “Information raised in the inquiry indicates that these allegations are, yet again, false and could not be related to NSO products for technological and contractual reasons.”
What is Pegasus?
Pegasus was created by NSO Group, an Israeli technology firm that was “blacklisted” by the United States last year for selling the spyware to “governments that ‘maliciously target’ dissidents, human rights activists and journalists”, said The Times.
It is a piece of spyware that covertly allows access to the target’s mobile phone, according to The Guardian. It gains access through small software flaws, and can extract emails, photos and contact details, as well as secretly activate the phone’s microphone and camera.
NSO claims that it sells its software only to vetted government clients, to help them prevent “terrorism and serious crime”, but an investigation co-ordinated by the NGO Forbidden Stories, Amnesty and 17 news organisations, including The Guardian, suggested that Pegasus has been used by many authoritarian regimes and right-wing populist governments to target journalists, human rights activists, dissidents and opposition politicians.
The investigation found that 10 countries in particular had many instances of Pegasus being used: Azerbaijan, Bahrain, Hungary, India, Kazakhstan, Mexico, Morocco, Rwanda, Saudi Arabia and UAE, the BBC reported.
Create an account with the same email registered to your subscription to unlock access.
Sign up for Today's Best Articles in your inbox
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
-
'Elevating Earth Day into a national holiday is not radical — it's practical'
Instant Opinion Opinion, comment and editorials of the day
By Harold Maass, The Week US Published
-
UAW scores historic win in South at VW plant
Speed Read Volkswagen workers in Tennessee have voted to join the United Auto Workers union
By Peter Weber, The Week US Published
-
Today's political cartoons - April 22, 2024
Cartoons Monday's cartoons - dystopian laughs, WNBA salaries, and more
By The Week US Published
-
Why is Microsoft breaking up Teams and Office?
Today's Big Question The company had previously divided the software in Europe, but will now make this change globally
By Justin Klawans, The Week US Published
-
Data breaches increased in 2023 and with them, internet security concerns
The Explainer One report found a 78% year-to-year increase in breaches from 2022 to 2023
By Justin Klawans, The Week US Published
-
Cyberflashing, fake news and the new crimes in the Online Safety Act
The Explainer UK's first conviction demonstrates scope of controversial law that critics describe as a threat to privacy and free speech
By Harriet Marsden, The Week UK Last updated
-
Sam Bankman-Fried found guilty: where does crypto go from here?
Today's Big Question Conviction of the 'tousle-haired mogul' confirms sector's 'Wild West' and 'rogue' image, say experts
By Chas Newkey-Burden, The Week UK Published
-
How AI might influence democracy in 2024
The Explainer Threat from bots and deepfakes stalks key elections around the world next year
By Harriet Marsden, The Week UK Last updated
-
Dark side of the Moon: will the race to lunar South Pole spark conflict?
Today's Big Question Russia and India are competing for the ‘new lunar gold’ – but real contest will be between the US and China
By The Week Staff Published
-
Russian hackers allegedly breach US government agencies in cyberattack
Speed Read
By Theara Coleman Published
-
Clop gang: Russian hackers issue ‘dark web ultimatum’ to BBC, Boots and BA
Under the Radar Affected companies urged to install security patches and not pay cyber criminals behind hack
By Rebekah Evans Published