A new mobile device security tool, launched by iVerify in May, has revealed seven infections of the notorious Pegasus spyware in its first 2,500 scans.
The discovery marks a significant step forward in making spyware detection more accessible to the public, highlighting the growing threat of commercial spyware.
The tool, known as Mobile Threat Hunting, uses a combination of malware signature detection, heuristics, and machine learning to identify signs of spyware on both iOS and Android devices.
The service is available to paying customers, while a free version is also offered to users who download the iVerify Basics app for a small fee.
The app allows users to perform a basic scan once a month by generating a diagnostic file for iVerify to analyse.
While seven infections may seem like a small number, the fact that they were found within a self-selecting customer base suggests that the use of spyware is more widespread than initially thought.
The tool was designed to help individuals easily check their devices for infection, a task that had previously been difficult due to technical barriers and the limited availability of reliable detection tools.
"The people who were targeted were not just journalists and activists, but business leaders, people running commercial enterprises, and people in government positions," said Rocky Cole, Chief Operating Officer of iVerify and a former NSA analyst.
This broadens the profile of Pegasus spyware victims beyond the previously assumed targets of political dissidents and journalists.
iVerify’s technology scans for typical signs of infection, such as diagnostic data, crash logs, and shutdown logs, which were key to detecting Pegasus in these cases. Despite challenges in refining mobile monitoring tools and reducing false positives, iVerify’s tool has already been instrumental in uncovering compromises on the devices of high-profile targets, including political activists and campaign officials.
"NSO Group sells its products exclusively to vetted U.S. & Israel-allied intelligence and law enforcement agencies," said NSO Group spokesperson Gil Lainer, defending the use of the spyware by government clients.
The success of iVerify’s Mobile Threat Hunting tool underscores a shift in how mobile security is viewed.
While previous assumptions held that mobile devices like iPhones and Android phones were relatively safe from such attacks, the growing prevalence of commercial spyware and the increasing ability to detect it suggest a more complex security landscape.
