Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Former MEP’s Phone Compromised by Pegasus During Spyware Probe

Former MEP’s Phone Compromised by Pegasus During Spyware Probe

Posted on July 3, 2026 By CWS

Stelios Kouloglou, an ex-Member of the European Parliament (MEP) who was part of the committee investigating Pegasus spyware abuses, had his phone repeatedly compromised by the same spyware. This was revealed by recent forensic analysis from the Citizen Lab.

Spyware Breach Amid Ongoing Inquiry

This incident marks the first instance of a PEGA Committee member being publicly identified as a Pegasus victim while actively participating in the investigation. Kouloglou was a substitute member of the European Parliament’s Committee of Inquiry into Pegasus and similar surveillance software from March 2022 until July 2023. A forensic examination of his iPhone in May 2026 revealed multiple compromises during critical committee activities.

His device suffered infections on October 21, 2022, and March 6-7, 2023. The initial breach utilized the PWNYOURHOME zero-click exploit, evidenced by a lookup for a HomeKit-linked email followed by Pegasus network activity shortly thereafter.

Chronology of Infections

Apple notified Kouloglou about potential threats on three occasions: March 2, 2023, August 29, 2023, and April 10, 2024. However, he does not recall seeing these alerts. The infection dates coincided with significant periods of PEGA Committee activity, such as report drafting and international visits.

The October 2022 infection occurred just before a PEGA delegation trip to Cyprus and Greece, which Kouloglou planned and attended. This infection also coincided with the committee’s first report drafting, involving significant communication among members.

Potential Implications and Reactions

During the October 2022 infection, Kouloglou was hospitalized for elective surgery and was visited by Greek journalist Thanasis Koukakis, known for his testimony on similar spyware issues. The timing raised concerns about potential breaches of medical privacy under Greek data protection laws.

The subsequent infection in March 2023 occurred while Kouloglou was in Brussels, during final negotiations on the committee’s report, aligning with a PEGA delegation visit by rapporteur Sophie in ‘t Veld.

Citizen Lab refrained from attributing the hacking to any government, stating no evidence pointed to Greek involvement or their status as an NSO Group customer. However, researchers noted an overlap with a 2024 report on Pegasus targeting of journalists and activists in Europe.

Broader Context and Future Outlook

Kouloglou joins a list of MEPs targeted by spyware, including Catalan MEPs and Greek MEP Nikos Androulakis. More recently, MEPs Nathalie Loiseau and Daniel Freund have confirmed similar targeting.

This case underscores the persistent threat of spyware to political figures and raises questions about cybersecurity measures within the European Parliament. The situation calls for enhanced security protocols to safeguard against future breaches.

Cyber Security News Tags:Citizen Lab, cyber threats, Cybersecurity, European Parliament, NSO Group, PEGA Committee, Pegasus, Privacy, Spyware, Stelios Kouloglou

Post navigation

Previous Post: Agentic AI Exploited in Major Ransomware Assault
Next Post: AI Code Editor Vulnerabilities Risk OS-Level Attacks

Related Posts

Threat Actors Advertising AI-Enhanced Metamorphic Crypter with Claims of Windows Defender Bypass Threat Actors Advertising AI-Enhanced Metamorphic Crypter with Claims of Windows Defender Bypass Cyber Security News
UNC5518 Group Hacks Legitimate Websites to Inject Fake Captcha That Tricks Users to Execute Malware UNC5518 Group Hacks Legitimate Websites to Inject Fake Captcha That Tricks Users to Execute Malware Cyber Security News
New Analysis Uncovers LockBit 5.0 Key Capabilities and Two-Stage Execution Model New Analysis Uncovers LockBit 5.0 Key Capabilities and Two-Stage Execution Model Cyber Security News
Hackers Actively Attacking Cisco and Palo Alto Networks VPN Gateways to Gain Login Access Hackers Actively Attacking Cisco and Palo Alto Networks VPN Gateways to Gain Login Access Cyber Security News
Advanced Endpoint Threat Detection in 2025 Network Environments Advanced Endpoint Threat Detection in 2025 Network Environments Cyber Security News
Fortinet FortiSIEM Command Injection Vulnerability (CVE-2025-25256) Fortinet FortiSIEM Command Injection Vulnerability (CVE-2025-25256) Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Armored Likho’s BusySnake Threatens Government and Energy Sectors
  • Scammers Exploit Brand Trust to Lure Casino Traffic
  • FBI Alerts on TeamPCP’s Widespread Developer Tool Attacks
  • AI Code Editor Vulnerabilities Risk OS-Level Attacks
  • Former MEP’s Phone Compromised by Pegasus During Spyware Probe

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Armored Likho’s BusySnake Threatens Government and Energy Sectors
  • Scammers Exploit Brand Trust to Lure Casino Traffic
  • FBI Alerts on TeamPCP’s Widespread Developer Tool Attacks
  • AI Code Editor Vulnerabilities Risk OS-Level Attacks
  • Former MEP’s Phone Compromised by Pegasus During Spyware Probe

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark