New Citizen Lab report on the extensive hacking of media & civil society in El Salvador with Pegasus Spyware

The Citizen Lab and Access Now have conducted a joint investigation into Pegasus hacking in El Salvador in collaboration with Frontline Defenders, SocialTIC, and Fundación Acceso.

They have identified 35 cases of journalists and members of civil society whose phones were successfully infected with NSO’s Pegasus spyware between July 2020 and November 2021. Citizen Lab shared a sample of forensic data with Amnesty International’s Security Lab which independently confirms the findings.

Targets include mostly journalists from El Salvador organizations and took place while the organizations were reporting on sensitive issues involving the administration of President Bukele. Citizen Lab has identified a Pegasus customer operating almost exclusively in El Salvador since at least November 2019 they have called TOROGOZ.

⁣Follow the latest media coverage

Report: 22 journalists at Salvadoran news site hit with Pegasus hack
(Washington Post)

Journalists in El Salvador Targeted with Spyware Intended for Criminals
(New York Times)

Pegasus Spyware Deployed Against El Salvador Journalists and Activists
(The Wall Street Journal)

Pegasus used to target El Salvador activists, journalists: Report
(Al Jazeera)

Salvadoran journalists’ phones hacked with spyware, report finds
(Reuters)

NSO Spyware Linked to Phone Hacks of Journalists, Activists in El Salvador
(Bloomberg)

Projet Pegasus : au Salvador, les téléphones d’au moins 35 journalistes espionnés
(Le Monde) – French language