184

ICE acquires Israeli spyware capable of hacking phones and encrypted apps (www.newarab.com)

submitted 3 months ago by PorcupineSlippers@lemmy.ml to c/privacy@lemmy.ml

34 comments fedilink hide all child comments

ICE acquires Israeli spyware capable of hacking phones and encrypted apps

ICE has reactivated a $2M contract for Israeli spyware Graphite, sparking fears of civil liberties after previous cases of misuse

Under Trump, ICE has seen its operations and powers vastly expanded [Getty] US Immigration and Customs Enforcement (ICE) are moving ahead with a multimillion-dollar contract for powerful Israeli-made spyware capable of hacking phones and encrypted messaging apps, drawing criticism from civil liberties groups and surveillance experts.

The $2 million deal with Paragon Solutions, the Israeli firm behind the Graphite spyware suite, was initially signed under the Biden administration in late 2024 but paused amid compliance reviews over privacy and security concerns.

According to The Guardian, the Trump administration has now lifted the pause, restoring ICE’s access to the tool and sparking a fresh debate over government surveillance powers.

Paragon’s Graphite software allows agencies to remotely penetrate smartphones, access encrypted applications such as WhatsApp and Signal, extract data, and even covertly activate microphones to turn devices into listening tools.

Critics warn the technology gives unprecedented surveillance capabilities to US immigration authorities at a time of heightened political and public scrutiny over civil liberty abuses by ICE.

The Washington Post reported that the pause was lifted following changes in Paragon’s ownership structure and the completion of federal regulatory reviews. The decision comes despite mounting evidence from rights groups and cybersecurity researchers about the risks of misuse, including against journalists and activists.

Earlier this year, researchers at the Citizen Lab, a cybersecurity watchdog based at the University of Toronto, discovered Graphite had been used to target the devices of journalists in Italy, including reporters from Fanpage.it, prompting a European investigation.

Italian officials denied any wrongdoing, but the revelations highlighted the growing global market for so-called "mercenary spyware" and the lack of transparency surrounding its deployment.

Related As ICE raids rise across US, attorney warns people to prepare

US affairs Brooke Anderson In Washington, civil liberties advocates have expressed alarm over the implications of ICE regaining access to such invasive technology. Nadine Farid Johnson, policy director at the Knight First Amendment Institute at Columbia University, urged lawmakers to act.

"Reports that ICE has renewed its contract with spyware vendor Paragon compounds the civil liberties concerns," Johnson said in a statement last week.

"Spyware like Paragon’s Graphite poses a profound threat to free speech and privacy. Congress must step in to impose clear limits and safeguards before these tools are used in ways that undermine constitutional rights."

The Guardian reported that ICE officials have defended the contract, insisting the spyware is used strictly for law enforcement purposes, such as targeting transnational criminal networks and human trafficking operations.

However, critics point to the lack of independent oversight mechanisms and the absence of public information about how frequently or against whom the software is deployed.

The Washington Post added that the reactivation of the Paragon deal may signal a more permissive stance by the Trump administration toward domestic surveillance technologies.

Past controversies over the use of spyware such as Pegasus, developed by the Israeli firm NSO Group, have already prompted calls for stricter regulation. The Biden administration previously blacklisted NSO after its tools were linked to the hacking of US diplomats’ phones.

Under Trump, ICE has seen dramatically expanded powers and funding, fuelling concerns about its growing politicisation.

Critics point to sweeping arrests, including of non-criminal migrants, and the use of tactics once considered off-limits, such as unmarked vehicles and plainclothes agents. Civil liberties groups warn that without oversight, the agency risks becoming a tool of political intimidation rather than law enforcement, especially with access to powerful surveillance technologies.

all 40 comments

sorted by: hot top controversial new old

[-] ComradePedro@lemmy.ml 47 points 3 months ago

Fight Graphite with Graphene!

[-] mp3@lemmy.ca 32 points 3 months ago* (last edited 3 months ago)

And more importantly, good OPSEC.

[-] SolarPunker@slrpnk.net 6 points 3 months ago

The problem is WhatsApp

[-] Cat_Daddy@hexbear.net 4 points 3 months ago

Does that work, though? It's just a modified AOSP, so it might have the same issues as vanilla android.

[-] porous_grey_matter@lemmy.ml 2 points 3 months ago

Most of the modifications to aosp in graphene are security improvements, so it's at least somewhat better than any other android

[-] grey_maniac@lemmy.ca 29 points 3 months ago

Isn't ICE itself functionally a human traffic organization already?

[-] amanneedsamaid@sopuli.xyz 24 points 3 months ago

With my tax money... and only a negative impact on the average americans life...

[-] birdwing@lemmy.blahaj.zone 17 points 3 months ago

Everyone's*.

When Trump does something, the rest of the world experiences the antisocial oligarch pedo's ruffles.

[-] quick_snail@feddit.nl 11 points 3 months ago* (last edited 3 months ago)

Don't put a Sim card in your phone, folks.

Never take your phone out of airplane mode. Use WiFi.

[-] pineapplelover@lemmy.dbzer0.com 3 points 3 months ago

What's wrong with sim cards?

[-] quick_snail@feddit.nl 7 points 3 months ago

Broadband processors on your device are extremely vulnerable black boxes. Almost all of the attacks that Citizen Lab discovered come from this vector.

By not using a Sim card, you significantly decrease the surface area for attack, making yourself invulnerable to the majority of these zero days

[-] DieserTypMatthias@lemmy.ml 3 points 3 months ago

And also, the safest device is the one that's not connected to the Internet.

[-] pineapplelover@lemmy.dbzer0.com 0 points 3 months ago

So it's not that esims are much safer, you're talking about cellular as a whole?

[-] quick_snail@feddit.nl 1 points 3 months ago

I'm not 100% sure, but I think the vulnerability is in the broadband processor.

[-] irotsoma@lemmy.blahaj.zone 11 points 3 months ago

I don't really get how that's helpful for ICE. They don't investigate crime really. Shouldn't they know a person's immigration status based on their public records? What do they need private communications for to prove a person is in the country illegally?

This is a rhetorical question. I know why they want it, just it doesn't make sense for them to spend our money on for the things they're supposed to be tasked with doing.

[-] quick_snail@feddit.nl 15 points 3 months ago

They are the US fascist gustapo. Their funding just exploded, and so will their mission

[-] birdwing@lemmy.blahaj.zone 10 points 3 months ago

Hold up, accessing Signal?

[-] tapdattl@lemmy.world 15 points 3 months ago

Well I'm assuming if it can bypass the lock screen somehow it can pull encryption keys, or just let the user gain full access to the phone and open the signal app directly.

[-] birdwing@lemmy.blahaj.zone 8 points 3 months ago

That's fucking scary. Trump, Thiel, and every single fascist ally of him needs to get a treatment of eternal sleep.

[-] quick_snail@feddit.nl 11 points 3 months ago* (last edited 3 months ago)

If they breach the endpoint, it doesn't matter if it's e2ee.

Just avoid putting a sim card in your phone, and it eliminates almost all of these vectors.

[-] birdwing@lemmy.blahaj.zone 1 points 3 months ago

So, what you're saying, is that one would have to use an e-sim rather than physical sim? To avoid a zero-day exploit? I find that hard to believe.

[-] quick_snail@feddit.nl 8 points 3 months ago

Jesus no. I'm saying almost all of the exploits found by citizen lab are delivered by cell tower.

Don't connect to cell towers.

[-] pineapplelover@lemmy.dbzer0.com 2 points 3 months ago

I find it hard to believe that they can decrypt Signal messages in-transit at the cell tower

[-] quick_snail@feddit.nl 9 points 3 months ago

They can't. They have zero days that push vulnerabilities down to you from the tower.

[-] RhondaSandTits@lemmy.sdf.org 7 points 3 months ago

Those meatheads will use it as another tool to abuse their wives and extract nudes from the classmates of their 15yo daughters

[-] Mongostein@lemmy.ca 6 points 3 months ago

So how does Graphite work?

[-] Dreaming_Novaling@lemmy.zip 6 points 3 months ago

So like, genuine question to all of those saying no sim cards/e-sims and only use wifi with airplane mode on, how do you communicate with people on the go? Do you just wait until you're at a building with free Wi-Fi?

[-] Ileftreddit@lemmy.world 4 points 3 months ago

Is it just me or is getting all that for $2 million a pretty great deal? Still not cool, but I’d have thought the ability to totally eliminate privacy would have been more expensive

[-] strung6387@lemmy.ml 2 points 3 months ago

It's not clear how the spyware gets onto the phone, though. Typically the user needs to download something that happens to have spyware in it. Unless the USA government includes this spyware in heretofore legitimate government apps so that a significant number of people install the spyware unintentionally, I don't see how this spyware is of practical value. Including it in government apps might be their plan, though, even though there is a high chance that the malicious app(s) would be banned. But the USA government could threaten Apple or Google into letting the app remain available for download. Dark times.

[-] Ileftreddit@lemmy.world 1 points 3 months ago

The US govt could just require it to be pre-installed on all devices

[-] cupcakezealot@piefed.blahaj.zone 1 points 3 months ago

that's a good way to get a lawsuit and inadmissible evidence.

[-] DieserTypMatthias@lemmy.ml 1 points 3 months ago

Didn't Paragon work in the Linux kernel on NTFS drivers?

this post was submitted on 03 Sep 2025

184 points (97.9% liked)

Privacy

43392 readers

251 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS