
No One Is Immune: What a Hacked EU Investigator Teaches About Device Security
A European Parliament member investigating spyware was hacked with the very tools he was investigating. Here's what families need to know about personal device security.
Source
GetCyberRight Intelligence
Original headline: Pegasus Myth: Investigators Aren't Immune
Plain-English summary by GetCyberRight. Read the full report at the source above.
What Happened
A member of the European Parliament investigating spyware abuse was himself repeatedly hacked with Pegasus spyware during his investigation. Citizen Lab confirmed the attacks targeted someone actively working to expose surveillance tool misuse. If investigators studying these threats can be compromised, every family's devices are vulnerable too.
The Details
Pegasus is sophisticated spyware that can take complete control of smartphones. It reads your messages, listens through your microphone, accesses your photos, and tracks your location. Victims don't need to click anything. The spyware installs silently.
This Parliament member served on a committee specifically examining how commercial spyware like Pegasus gets abused across Europe. While doing this work, attackers infected his device multiple times. Think about that: someone investigating surveillance became a surveillance target using the exact tools he was studying.
The assumption that certain roles, positions, or affiliations provide protection is dangerously wrong. Your job title doesn't secure your phone. Your good intentions don't block malware. Device security comes from deliberate personal practices, not from being on the right side of an issue or holding an important position.
Who Is Affected
This matters for everyone who owns a smartphone or computer. Parents managing family photos and financial apps face the same fundamental vulnerabilities as government officials. Seniors coordinating healthcare through digital devices need the same protections as investigators.
Professionals often believe their institutional IT departments handle security completely. That's partially true for work devices during work hours. But personal devices, home networks, and family accounts remain your responsibility. No organization can protect what happens on your phone after hours or on your home WiFi.
What You Should Do Right Now
Update every device in your household today. Go to Settings on phones and tablets, check for system updates, and install them. Updates patch security holes that spyware exploits.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
Enable automatic updates on all family devices. This removes the burden of remembering. Your devices will install critical security patches without requiring your attention.
Review what apps have microphone and camera permissions. Remove access for apps that don't genuinely need these features. That old game doesn't need your microphone.
Restart your phones weekly. Simple restarts can disrupt certain types of spyware, especially less sophisticated versions. Make it a Sunday evening routine.
Use different strong passwords for important accounts. Your email, banking, and phone unlock codes should never match. Consider a password manager to track them safely.
The Bigger Picture
Commercial spyware continues spreading beyond government intelligence agencies. Private companies sell these tools with minimal oversight about who buys them or how they get used. This incident proves that targets include not just activists or journalists, but anyone asking uncomfortable questions.
Staying informed about these threats helps families make better security decisions. Threats evolve constantly, and what protected you last year may not work today.
How GetCyberRight Can Help
Our Awareness Hub provides ongoing privacy and security education designed for real families, not cybersecurity experts. You'll learn practical steps for maintaining personal device security without needing a technical background. We translate complex threats into actions you can take this weekend to protect everyone in your household. Because device security is always personal responsibility, not positional immunity.
Curated from trusted cybersecurity sources by GetCyberRight
Source: GetCyberRight IntelligenceStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

How Hackers Trick Developers with Fake Software Packages
North Korean hackers are creating fake copies of trusted developer tools to steal sensitive information. Here's what families need to know.
3 min readWhy Holiday Sales Weekends Are Prime Time for Account Takeovers
Cybercriminals time attacks to match holiday shopping rushes when retailers lower security guards. Here's how to protect your accounts before you shop.
3 min readHoliday Weekend Sales Hide Dangerous Phishing Scams
Cybercriminals disguise phishing attacks as holiday sale promotions when families are most distracted. Here's how to shop safely this weekend.
4 min readWhy Microsoft Login Pages Aren't Always What They Seem
A new phishing tool called ARToken makes fake Microsoft 365 login pages nearly impossible to spot. Here's how to protect yourself and your family.
4 min read