Head of @AmnestyTech Security Lab. Researcher (nex.sx/publications) and software developer (github.com/botherder) He/him. Twitter in write-only.

Joined June 2010
Congratulations to the Pegasus Project for winning Parliament's journalism prize for its revelations of government spying on journalists, politicians and others. Read more about the Daphne Caruana Galizia Prize for Journalism → eptwitter.eu/q3nW
21
140
23
308
What a symbol! Four years ago, @FbdnStories was born when Daphne Caruana Galizia was assassinated, pursuing and publishing her investigations worldwide. 🇪🇺 Today, @Europarl_EN presented the first prize that bears her name to the partners of the #PegasusProject. (1/9) #thread
4
124
29
274
Show this thread
nex retweeted
We can't stress it hard enough how important the phones' forensic analyses are for these stories. So, a big shout-out to @AmnestyTech and @citizenlab whose work has been essential for this investigation too!
1
2
0
14
Show this thread
nex retweeted
📸New #PegasusProject story: Photographer-journalist Dániel Németh has spent years investigating & documenting the luxury lifestyle of Hungary’s ruling elite. 👀This summer, someone was watching him too: traces of #Pegasus spyware were found on his phones direkt36.hu/en/a-ner-elit-lu…
1
51
2
80
Show this thread
These policing tools only used to fight terrorism and organized crime just somehow keep on accidentally falling on devices of journalists all around the world. What an odd malfunction that is. 🤔
0
42
1
95
Sharing is caring. Thanks to our published methodology and the release of MVT (github.com/mvt-project/mvt) more people are on the hunt for Pegasus and similar spyware. I have some sweet stickers to mail to anyone contributing new modules!
4
39
1
68
Today we confirmed Belgian journalist @PVerlindenJst was also targeted with Pegasus in 2020. He joins a growing cohort of reporters who found themselves in the crosshairs of NSO customers. Sadly, it's not looking like a particularly exclusive club. knack.be/nieuws/belgie/pegas…
0
30
1
36
Previously the Amnesty International Security Lab has found that Carine Kanimba, Paul Rusesabagina’s daughter, of Hotel Rwanda fame, was also compromised with Pegasus spyware while in Belgium. theguardian.com/news/2021/ju…
1
25
1
32
Show this thread
Reporting by @Knack outlines a conclusion by the Belgium AVID that the intrusion was “most likely” initiated by Rwandan authorities. Peter Verlinden has reported extensively on the Central Africa, including Rwanda.
2
8
1
5
Show this thread
In collaboration with @FbdnStories, Amnesty International has independently analyzed Peter Verlinden's iPhone and can confirm the findings. Clear signs of Pegasus infection were found from September 22 to September 29, 2020.
1
10
0
12
Show this thread
Following the Pegasus Project revelations, Peter Verlinden & his wife were contacted by Belgian security services to check their phones for traces of Pegasus infection. An analysis by the ADIV concluded that "both devices were probably hacked with Pegasus" knack.be/nieuws/belgie/pegas…
4
17
0
28
Show this thread
🚨BREAKING🚨: Amnesty International confirms that Belgian journalist, Peter Verlinden @PVerlindenJst, was hacked with #Pegasus spyware. #PegasusProject
13
118
9
170
Show this thread
Since a number of people have been asking: yes, what Apple patched in 14.8 is the same 0-click vulnerability that we at Amnesty described as "Megalodon" in section 6 of our July report (amnesty.org/en/latest/resear…), and which Citizen Lab later called "FORCEDENTRY".
0
79
9
176
It seems Apple purged the file com\.apple.identityservices.idstatuscache.plist which is now empty in iPhone backups since iOS 14.7. As a result now it's no longer possible to identify malicious iMessage accounts, as we did with Pegasus attacks. Would anyone know why?
3
86
3
213
It was of no comfort knowing they did nothing wrong to get infected. Their phones could be attacked at any time, with no possibility to notice, no ability to challenge it. We need to dismantle this industrialized insecurity apparatus. #PegasusProject nex.sx/blog/2021/08/03/the-p…
0
21
1
37