Global Security · Direct source
Spyware used against MEP investigating Pegasus abuses, report finds
Researchers say Stelios Kouloglou’s device was compromised after he joined European parliamentary committee NSO Group’s hacking software was repeatedly used against a member of the European parliament while he was conducting an investigation of spyware abuses in Europe, according to a new report. Researchers at the Citizen Lab at the University of Toronto said they could not attribute the attacks against Stelios Kouloglou to any particular government operator of Pegasus spyware. But their investigation found the attack against the Greek now-former MEP bore the hallmarks of a previous hacking campaign against exil...
- Time
- 3 Jul 2026, 07:00 CEST
source time - Source
- The Guardian - World
- Trust
- medium · direct source trail
- Actors
- open
Researchers say Stelios Kouloglou’s device was compromised after he joined European parliamentary committee NSO Group’s hacking software was repeatedly used against a member of the European parliament while he was conducting an investigation of spyware abuses in Europe, according to a new report. Researchers at the Citizen Lab at the University of Toronto said they could not attribute the attacks against Stelios Kouloglou to any particular government operator of Pegasus spyware. But their investigation found the attack against the Greek now-former MEP bore the hallmarks of a previous hacking campaign against exil...
What is reported
Spyware used against MEP investigating Pegasus abuses, report finds
Visible evidence
- Timestamp and original URL are captured: 3 Jul 2026, 07:00 CEST.
- The report is assigned to the Global Security dossier.
- The visible source is The Guardian - World.
Still unclear
- 4 direct reports nearby, but not automatically the same core claim.
- 5 related reports in the same dossier may add context.
- The page rates the evidence trail, not the political truth of a position.
Why it matters
This report is assigned to the Global Security dossier. It matters because it adds a concrete new trail in the current source window. The brief uses 4 sources in the surrounding context while keeping timestamp, publisher and original URL visible.
Trust assessment
Direct source with related reports nearby. The evidence trail is usable, but should not be read as a fully confirmed situation yet.
Editorial boundary
Still open: whether further independent sources confirm, correct or merely repeat the same development. The trust level describes the source trail, not absolute truth.