Security News > 2021 > October > That 'anti-NSO Pegasus spyware' download is actually a Trojan – so don't touch it
A malware peddler has created a fake website posing as Amnesty International to serve gullible marks with software that claims to protect users against NSO Group's Pegasus malware.
Trading on fears about the Pegasus malware, this development takes the usual evolution of malware download lures and picks a particularly nasty vector, preying on those looking for protection against advanced threats.
The malware "Scans" the user's machine, while in reality dropping a Trojan; the malicious app itself is superficially camouflaged to fool non-technically-adept users into thinking they've downloaded safe software.
Pegasus is an iPhone exploit suite developed by Israeli malware vendor NSO Group.
The use of fake domains and Trojanised downloads to spread malware is almost as old as malware itself.
The organisation has been vocal about NSO Group's supplying of malware and hacking tools to dodgy governments, along with tech-focused orgs such as Canada's Citizen Lab and Britain's Privacy International.