Serbian Police Exploit Cellebrite Tech to Hack Journalist’s Phone with Spyware

A New Frontier in Digital Surveillance

In a disturbing revelation, Serbian authorities have been accused of using Cellebrite’s forensic tools not only to unlock a journalist’s phone but also to plant spyware for ongoing surveillance. This marks one of the first documented cases where Cellebrite’s technology facilitated such an intrusion, according to a new report by Amnesty International.

How the Hack Unfolded

  • Targets: Journalist Slaviša Milanov and activist Nikola Ristić
  • Method: Police seized Milanov’s Xiaomi Redmi Note 10S during a supposed traffic stop.
  • Discovery: Milanov noticed unusual activity—mobile data and Wi-Fi were disabled, and apps were active while the phone was in police custody.
  • Forensic Analysis: Amnesty’s Security Lab confirmed the device was unlocked via Cellebrite and infected with NoviSpy, a custom spyware.

NoviSpy: A Homegrown Surveillance Tool

Amnesty’s investigation uncovered that NoviSpy (derived from the Serbian word for “new”) was likely developed by Serbian intelligence. Key findings:

  • Serbian Language in Code: Comments and strings suggest local development.
  • Server Links: Communicates with servers tied to the Serbian Security Information Agency (BIA).
  • Operational Mistakes: An exposed IP address (195.178.51.251) linked to a BIA agent in 2015 resurfaced in the spyware’s infrastructure.

Wider Implications

Amnesty’s forensic review of two dozen civil society members revealed multiple infections, with evidence suggesting NoviSpy has been in use since at least 2018. The spyware’s code includes an incrementing user ID, hinting at hundreds of potential victims.

The Resurgence of Physical Access Hacks

With zero-day exploits becoming costlier due to improved device security, authorities are reverting to older tactics:

  • Historical Precedent: The FBI’s 2001 break-in to install keyloggers on a mobster’s PC.
  • Modern Cases: Russian FSB allegedly forcing an activist to surrender his passcode before infecting his phone.

Global Concerns

While Serbia’s case is alarming, it’s not isolated. Reports indicate:

  • U.S. Surveillance: ICE spent $20 million on phone-hacking tools, including Cellebrite, raising fears of expanded spying under new administrations (Forbes).
  • Corporate Response: Cellebrite denies its tools can install malware but pledged to investigate Serbia’s alleged breach of its end-user agreement.

Key Takeaways

  1. Cellebrite’s Dual Use: Forensic tools designed for law enforcement are being weaponized for covert surveillance.
  2. Localized Spyware: Governments are developing custom malware to evade international scrutiny.
  3. Physical Access Risks: Device seizures during arrests or detentions are becoming a primary infection vector.

Protecting Yourself

  • Monitor Device Activity: Use apps like StayFree to track unauthorized app usage.
  • Encrypt Sensitive Data: Ensure full-disk encryption is enabled.
  • Report Suspicious Incidents: Reach out to digital rights groups like Amnesty or Citizen Lab.

For whistleblowers or sources with additional information, contact Lorenzo Franceschi-Bicchierai securely via Signal, Telegram, or SecureDrop.

This article highlights the escalating risks of state-sponsored surveillance and the urgent need for stronger safeguards against digital intrusions.

📚 Featured Products & Recommendations

Discover our carefully selected products that complement this article’s topics:

🛍️ Featured Product 1: 1Pc Large Capacity Badminton Bag Outdoor Sport Training Fitness Racket Bag Men Women Nylon Waterproof Badminton Racquet Backpack

1Pc Large Capacity Badminton Bag Outdoor Sport Training Fitness Racket Bag Men Women Nylon Waterproof Badminton Racquet Backpack Image: Premium product showcase

Premium quality 1pc large capacity badminton bag outdoor sport training fitness racket bag men women nylon waterproof badminton racquet backpack designed for professional use with excellent performance and reliability.

Key Features:

  • Cutting-edge technology integration
  • Streamlined workflow optimization
  • Heavy-duty construction for reliability
  • Expert technical support available

🔗 View Product Details & Purchase

🛍️ Featured Product 2: Sandro White + Blue Top, Small

Sandro White + Blue Top, Small Image: Premium product showcase

High-quality sandro white + blue top, small offering outstanding features and dependable results for various applications.

Key Features:

  • Industry-leading performance metrics
  • Versatile application capabilities
  • Robust build quality and materials
  • Satisfaction guarantee and warranty

🔗 View Product Details & Purchase

💡 Need Help Choosing? Contact our expert team for personalized product recommendations!

Remaining 0% to read
All articles, information, and images displayed on this site are uploaded by registered users (some news/media content is reprinted from network cooperation media) and are for reference only. The intellectual property rights of any content uploaded or published by users through this site belong to the users or the original copyright owners. If we have infringed your copyright, please contact us and we will rectify it within three working days.