EU Politicians Investigated Pegasus Spyware. Then It Ended Up on One of Their Phones
“It is a direct attack on the rule of law,” says one European Parliament member of the new findings from Citizen Lab.
“It is a direct attack on the rule of law,” says one European Parliament member of the new findings from Citizen Lab.
Read Full Story at Wired →Why This Matters
The infiltration of EU politicians' devices with Pegasus spyware transcends mere surveillance—it represents a fundamental erosion of democratic norms. When surveillance tools designed for criminals and terrorists are repurposed against elected representatives, it signals that no institution is immune from the weaponization of cyber capabilities. The case underscores a chilling reality: the line between law enforcement and authoritarian overreach has blurred, threatening the very institutions meant to protect civil liberties.
Background Context
Pegasus, developed by Israel’s NSO Group, was initially marketed as a tool for tracking terrorists and criminals. Yet its deployment against global leaders—from Mexican journalists to Saudi dissidents—has exposed its use as a geopolitical weapon. Within the EU, concerns have simmered since revelations in 2021 that several member states, including Poland and Hungary, may have used the software against opposition figures. The latest findings suggest the threat is now internal, targeting those tasked with regulating it.
What Happens Next
Expect intensified scrutiny of NSO Group’s supply chains and a potential crackdown on spyware exports, though legal avenues remain murky given the lack of unified EU cybersecurity laws. Politically, this could force a reckoning over whether the EU’s own agencies are complicit or merely negligent in failing to detect the intrusions. Meanwhile, the individuals targeted may push for stronger whistleblower protections, fearing their devices remain compromised long after the initial breach.
Bigger Picture
This episode fits a broader pattern of authoritarian-style surveillance seeping into democratic systems, where commercial spyware acts as a Trojan horse for repression. It also highlights the EU’s struggle to balance security imperatives with fundamental rights—a tension likely to intensify as AI-driven surveillance tools become more accessible. If unchecked, such breaches could normalize digital repression, undermining trust in institutions before the next major election cycle.

