← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Suspected NSO Group iMessage ‘Zero-Click’ Exploit Used Against Journalists
WHITE NSO Group AlienVault 2020-12-21 Modified: 2021-01-20
6
IOCs
LOW VOLUME
In July and August 2020, government operatives used NSO Group’s Pegasus spyware to hack 36 personal phones belonging to journalists, producers, anchors, and executives at Al Jazeera. The personal phone of a journalist at London-based Al Araby TV was also hacked.
KISMETzero-clickiOSAppleMONARCHYSNEAKY KESTRELmobileZero-ClickAPT
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Pegasus
Indicators of Compromise (6)
All domain
TYPEINDICATORDESCRIPTIONCREATED
domain bananakick.net 2020-12-21
domain crashparadox.net 2020-12-21
domain flowersarrows.com 2020-12-21
domain stilloak.net 2020-12-21
domain regularhours.net 2020-12-21
domain holdmydoor.com 2020-12-21
References (1)
↗ https://citizenlab.ca/2020/12/the-great-ipwn-journalists-hacked-with-suspected-nso-group-imessage-zero-click-exploit/