Sophos Endpoint

Discussions What to do with a Pegasus type spyware application infection?

Sophos Endpoint requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 4 replies
Subscribers 15 subscribers
Views 2108 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

What to do with a Pegasus type spyware application infection?

Geoffrey Whall over 3 years ago

I have evidence which suggests my phones have been compromised with Pegasus or a similar application.

Not really sure where to start with this.

It's not government sponsored, this appears to be private sector in my opinion.

Does Sophos have the ability to analyse my phones or can you recommend what I should do?

I won't go into detail here but will do privately if required

Based in Thailand currently

This thread was automatically locked due to age.

0 GlennSen over 3 years ago

Hi Geoffrey Whall,

Can you confirm if you have Sophos mobile installed on your phone? Are you using Windows Mobile? more details about the said spyware can be found here.

Glenn ArchieSeñas (GlennSen)

Global Community Support Engineer

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel
0 FormerMember over 3 years ago

are we talking VOIP phones in an office or mobile devices?
Cancel
Vote Up 0 Vote Down

Cancel
0 Geoffrey Whall over 3 years ago in reply to GlennSen

hi

I have intercept X installed, I also had McAfee, lookout, none of them detected anything, I also tried Malwarebytes and actually all the major programs.

First device was a Samsung note 8

second device is a note 10, the note 8 I've kept hidden and it still shows some evidence of tampering such as firmware errors in the recovery boot, and listening on the network using the system account to which Google advised is not possible.

i can't view the network stats on the Android 11, so I don't have that evidence. however I have discovered my data which only existed on the note 10 device on a laptop that belonged to a so called "friend"
Cancel
Vote Up 0 Vote Down

Cancel
0 Geoffrey Whall over 3 years ago in reply to FormerMember

hi these are Android devices, see my reply to the previous question for additional info
Cancel
Vote Up 0 Vote Down

Cancel