AI-Enabled Pegasus Spyware Targets Activists, Apple Issues Alerts

Thumbnail Image

The information displayed in the AIM should not be reported as representing the official views of the OECD or of its member countries.

State actors have used NSO Group's AI-powered Pegasus spyware to target journalists, activists, and critics, leading to significant privacy and human rights violations. In response, Apple now actively monitors for Pegasus attacks and notifies affected users, with alerts already sent to individuals in multiple countries, including India and Thailand.[AI generated]

Why's our monitor labelling this an incident or hazard?

The event involves the use of Pegasus spyware, an AI-enabled system used for surveillance and attacks, which has caused harm to human rights by targeting individuals. Apple's detection and notification system is a response to this harm. Since the spyware's use has already led to violations of human rights and harm to targeted individuals, this qualifies as an AI Incident. The article describes realized harm from the use of an AI system (Pegasus) and Apple's response to it, focusing on the harm caused by the spyware's deployment.[AI generated]
AI principles
Privacy & data governanceRespect of human rightsAccountabilityTransparency & explainabilityRobustness & digital securityDemocracy & human autonomyHuman wellbeingSafety
Industries
Digital securityGovernment, security, and defenceMedia, social platforms, and marketing
Affected stakeholders
Civil society
Harm types
Human or fundamental rightsPsychologicalPublic interest
Severity
AI incident
AI system task:
Other

Articles about this incident or hazard

Thumbnail Image

Targeted by NSO? Apple will now alert you if it detects an attack - 9to5Mac

2023-10-31
9to5Mac
Why's our monitor labelling this an incident or hazard?
The event involves the use of Pegasus spyware, an AI-enabled system used for surveillance and attacks, which has caused harm to human rights by targeting individuals. Apple's detection and notification system is a response to this harm. Since the spyware's use has already led to violations of human rights and harm to targeted individuals, this qualifies as an AI Incident. The article describes realized harm from the use of an AI system (Pegasus) and Apple's response to it, focusing on the harm caused by the spyware's deployment.
Thumbnail Image

Why government turns to surveillance of citizens?

2023-11-03
Deccan Herald
Why's our monitor labelling this an incident or hazard?
The article explicitly mentions the use of AI-enabled spyware (Pegasus and alternatives) by state actors to surveil citizens, including critics and journalists, which constitutes a violation of rights and privacy. The harms described are realized and ongoing, including targeted attempts to compromise devices and extensive data seizures. The involvement of AI systems in these surveillance tools and their use by the government to gather intelligence and suppress dissent meets the criteria for an AI Incident, as the harms are direct and significant. The article does not merely warn of potential harm but reports on actual surveillance and targeting, confirming realized harm.
Thumbnail Image

NSO Archives - 9to5Mac

2023-10-31
9to5Mac
Why's our monitor labelling this an incident or hazard?
The spyware Pegasus is an AI-enabled system that uses advanced automated exploits to compromise devices without user interaction, leading to direct violations of human rights and privacy. The harms described include targeting of vulnerable groups by governments, unauthorized surveillance, and data exfiltration, which constitute clear human rights violations. The event involves the use and misuse of the AI system, with direct harm realized. The article also mentions governance and technical responses, but the primary focus is on the harm caused by the AI system. Hence, the classification is AI Incident.