Spyware Targeting Against Serbian Civil Society

The Citizen Lab, in collaboration with Access Now and Amnesty International, confirmed that two Serbian civil-society members were targeted around 16 August 2023 with attempted spyware infections using an iPhone HomeKit exploit consistent with NSO Group’s Pegasus; attribution to a specific spyware family is not confirmed. The report also highlights Serbia’s documented history of deploying mercenary surveillance technologies (Predator, Circles, Cyberbit, FinFisher) and raises concerns about possible involvement by the Security Information Agency (BIA).