NSO Group impersonates Facebook !!



The well-known Pegasus NSO group impersonates the Facebook security team through a fake login page similar to the Facebook security team's login portal.
.
Facebook claimed that NSO was taking advantage of the U.S.-hosted Cloud Infrastructure to launch spyware attacks, both of which pushed Facebook to put NSO under penalty because it broke into WhatsApp last year using the Pegasus system as it exploits a Zero-Day vulnerability in WhatsApp that allows injecting malware into devices even where it targets more than 1,400 agencies of people, including human rights defenders and journalists, in 20 different countries.
.
The Pegasus system is a spy system for android and Apple devices that examines the target device and then install malware to read messages and e-mail, eavesdrop on calls, take screenshots, record what is written on the phone, get the browser history and contacts, and perform operations Another spy as needed.
.
IP provider for server installing Pegasus on devices. After checking the DNS records that find an IP address that contains 10 domains, among them the domain is impersonating the Facebook security team and the unsubscribe links. Facebook has also filed a lawsuit against Namecheap and Whoisguard for registering over 45 domains impersonating Facebook and its services including the domain impersonating NSO for Facebook's security team. I remind the NSO spokesperson that the group does not conduct illegal espionage aiding legitimate governments with legitimate uses.
.
People should also be taught how to protect themselves from penetration, such as not pressing suspicious links or opening anonymous SMS and e-mail.