Police in Serbia are using mobile hacking tools to break into the phones of activists and journalists and then install spyware to track them down. Amnesty International warns In a report. The organization says the country is using tools made by the Israeli company Cellebrite, which are intended to help law enforcement unlock devices for forensic purposes.
Amnesty International calls on the Serbian government to end these surveillance practices:
The Serbian authorities must Stop the use of highly intrusive spyware, provide effective remedies to victims of unlawful targeted surveillance, and hold those responsible for abuses accountable. Cellebrite and other digital forensics companies must also conduct adequate due diligence to ensure that their products are not used in a way that contributes to human rights violations.
Amnesty International collected various accounts of Serbian authorities processing the phones of members of civil society, who were detained in various locations, with additional procedures (such as drug tests and psychological assessments) which added additional time to the length of detention, and thus the total amount. Over time, the authorities gained access to their phones. During this time, police were planting “Novispy” — spyware likely developed by the state — on their phones. Some devices were compromised using a Qualcomm vulnerability (which has since been patched), Amnesty International explains in the document.
One case was reported by 404 media It is noteworthy that the deputy editor-in-chief of the Serbian News Agency, Slavisa Milanov, and the editor-in-chief were driving together in the car when they were stopped by the Serbian authorities, who detained them and confiscated their phones. When the phones were returned, they noticed Changes, such as turning off data, Wi-Fi, and apps that consume a lot of power.
Milanov says his Android device, a Xiaomi Redmi Note 10S, was running additional software when he got it back and that police extracted 1.6GB of data even though he did not divulge its password.
Victor Cooper, Cellebrite’s senior director, responded to Amnesty International’s questions, saying the company’s products are “strictly licensed for lawful use” that requires a warrant or legal investigation in accordance with the end user agreement. Cooper also told 404 Media that Cellebrite is investigating “alleged misuse” of its technology and is “prepared to pursue appropriate sanctions” with any relevant agencies.
