NSO Group
Israeli cyber-surveillance firm behind Pegasus spyware used to target journalists, activists, and human rights defenders worldwide
Take Action
Apply pressure where it matters. Use these tools and personalise your message with evidence from this page.
- Contact Corporate LeadershipPre-filled letter templates for email or post
- Report New IntelligenceSubmit evidence of contracts, partnerships, or complicity
- Share This ProfileShare on LinkedIn to reach procurement and compliance professionals
- Strategic AnalysisIn-depth analysis and engagement strategy
Before taking action, review our Code of Conduct for professional standards and ethical guidelines.
Help Us Hold NSO Group Accountable
Your skills and knowledge can strengthen this campaign. Join our volunteer research team or share insider information securely.
Leverage Your Expertise
Do you work in this sector? We need professionals who understand procurement cycles, regulatory compliance, and corporate governance. Don't just boycott - lead!
Decision-Maker Directory
Key individuals with influence over corporate partnerships and procurement decisions. Direct your correspondence to the most relevant role.
Material Risk Framing
Frame your message around business risks. These talking points resonate with corporate stakeholders and institutional investors.
Subject to multiple lawsuits including WhatsApp verdict ($168M damages), on US Commerce Department Entity List (blacklisted), faces international regulatory scrutiny for facilitating human rights abuses
Lost approximately $12 million in 2024, $500 million in debt, hemorrhaging customers since US blacklisting, ownership instability with multiple changes since 2019
Directly implicated in Jamal Khashoggi assassination, documented abuse against journalists in 45+ countries, condemned by Amnesty International, Citizen Lab, and major human rights organisations
US Entity List blocks American technology purchases, restricted export licensing from Israeli Ministry of Defence, talent exodus since 2021 blacklisting
Strategic Analysis
In-depth assessment of the company's position, vulnerabilities, and recommended approaches for effective engagement.
High severity, high vulnerability — campaigns with the best chance of making an impact
Learn about our methodology — companies are categorised based on severity (harm potential) vs strategic vulnerability (campaign leverage).
Why do these scores change?
Unlike static boycott lists, our targeting model is dynamic. This company's position on the matrix is re-evaluated continually as we verify new contracts, divestments, or policy changes. Your reporting directly impacts this score.
NSO Group represents the paradigm case of Israeli surveillance technology enabling human rights abuses worldwide. As the developer of Pegasus spyware, classified as a weapon by the Israeli government and directly implicated in the assassination of journalist Jamal Khashoggi, NSO embodies the nexus between Israeli occupation technology and global authoritarian repression. The company's position on the US Commerce Department Entity List since 2021 and $168 million WhatsApp verdict demonstrate significant legal and financial vulnerability.
Key Leverage Points
- US Entity List Status: Blacklisting restricts access to American technology and creates cascading compliance obligations for any company doing business with NSO
- Investor Instability: Multiple ownership changes since 2019 and ongoing financial losses ($12M in 2024) indicate vulnerability to sustained pressure
- Legal Precedent: WhatsApp verdict establishes that spyware vendors can be held directly liable for client abuses, opening further litigation exposure
- Israeli Government Dependency: All exports require Ministry of Defence approval; international pressure can restrict licensing
Evidence Summary
The evidence base against NSO Group is exceptionally strong. Citizen Lab research documents Pegasus operations in 45 countries, while Amnesty International's Pegasus Project revealed 50,000 potential surveillance targets including heads of state, journalists, and Khashoggi family members. The US Commerce Department explicitly cited "malicious cyber activities" and "transnational repression" as grounds for blacklisting. Court proceedings established that NSO Group itself "installs and extracts" data from targeted devices, demolishing claims of customer-only liability. Who Profits documents the company's direct recruitment from IDF Unit 8200 and commercialisation of occupation surveillance technology.
Engagement Strategy
Focus on institutional divestment and contract review by any entity considering business relationships with NSO or its new US investors. Emphasise the compliance risks created by Entity List status and precedent-setting legal liability. Target investor relations and procurement professionals at companies potentially exposed to NSO technology in their supply chain. Engage elected representatives to maintain Entity List designation and support legislation restricting spyware trade. Document and publicise any evidence of continued abuses to support ongoing litigation and regulatory pressure.
Evidence & Sources
Verified sources including NGO reports, regulatory filings, and primary documents. Use these to substantiate your correspondence.
Federal jury awarded $167.25 million in punitive damages plus $444,719 in compensatory damages to WhatsApp
Open sourceUS District Court ruled NSO Group violated federal anti-hacking laws by targeting 1,400 WhatsApp users including journalists and activists
Open sourceInvestigation confirms Pegasus spyware was on Hanan Elatr's phone months before Jamal Khashoggi's murder
Open sourceSix devices belonging to Palestinian human rights defenders confirmed hacked with Pegasus spyware
Open sourceNSO Group added to US export blacklist for developing spyware used to maliciously target government officials, journalists, businesspeople, activists, and academics
Open sourceInvestigation revealed 50,000 phone numbers of potential surveillance targets including heads of state, journalists, and Jamal Khashoggi's family
Open sourceDocuments NSO's connection to Israeli occupation, military recruitment from Unit 8200, and privatization of surveillance technology
Open sourceResearch identified Pegasus spyware operations in 45 countries, documenting 36 distinct operators targeting civil society
Open sourceUpdates & Milestones
- US Investors Acquire Company
Investment group led by Robert Simonds acquires controlling stake; co-founder Omri Lavie exits
- Jury Awards $168M Damages
Federal jury orders NSO Group to pay $167.25 million in punitive damages plus compensatory damages to WhatsApp
- WhatsApp Wins Liability Ruling
US District Court rules NSO Group violated federal anti-hacking laws, case proceeds to damages trial
- CEO Steps Down
Shalev Hulio resigns as CEO amid financial troubles; COO Yaron Shohat takes over
- Palestinian Activists Targeted
Amnesty International confirms six Palestinian human rights defenders' devices hacked with Pegasus
- Apple Files Lawsuit
Apple sues NSO Group to hold company accountable for surveillance and targeting of Apple users (later dropped September 2024)
- US Commerce Department Blacklist
Biden administration adds NSO Group to Entity List for malicious cyber activities contrary to US national security
- Pegasus Project Published
Amnesty International and 17 media organisations reveal 50,000 potential surveillance targets including heads of state and journalists
- WhatsApp Files Lawsuit
Facebook sues NSO Group for exploiting WhatsApp vulnerability to install Pegasus on 1,400 devices
- Khashoggi Murder Connection
Citizen Lab reveals Pegasus was used to surveil Jamal Khashoggi's inner circle before his assassination in Istanbul
- Million Dollar Dissident
Citizen Lab discovers Pegasus targeting UAE human rights defender Ahmed Mansoor using three iOS zero-day exploits
- NSO Group Founded
Company established in Herzliya, Israel by Niv Karmi, Shalev Hulio, and Omri Lavie