Risky Bulletin Risky Bulletin: Predator spyware alive despite US sanctions
Jun 13, 2025
The podcast delves into the resilience of Intellexa amid US sanctions and the implications of zero-click iMessage exploits targeting journalists. It examines Europol's challenges with encrypted communications and the rise of sextortion and DDoS attacks in Latin America. Additionally, listeners learn about significant ransomware attacks on a major South Korean bookstore and the ongoing struggle against cybersecurity threats, shedding light on the legal battles faced by technology companies.
AI Snips
Chapters
Transcript
Episode notes
Intellexa Avoids US Sanctions
- Intellexa spyware maker remains operational despite US sanctions by rebuilding detection-evasive infrastructure.
- Mozambique and many African countries now use Intellexa's tools, shifting from NSO Group's platform.
Spyware Hacked iPhones Silently
- Two European journalists' iPhones were hacked using Paragon's Graphite Spyware via a zero-click iMessage exploit.
- The exploit was patched by Apple months ago, yet infections linked to a single Paragon customer persisted.
Ransomware Hits Yes24 Bookstore
- South Korea's largest online bookstore Yes24 faced a ransomware attack disrupting its e-book and ticketing platforms.
- The attack caused event cancellations and has no claimed ransomware group attribution yet.