Trump administration approves Paragon deal, granting immigration agents access to spyware

808     0
Trump administration approves Paragon deal, granting immigration agents access to spyware
Trump administration approves Paragon deal, granting immigration agents access to spyware

US immigration agents will have access to one of the world’s most sophisticated hacking tools after a decision by the Trump administration to move forward with a contract with Paragon Solutions, a company founded in Israel that makes spyware capable of hacking into any mobile phone, including encrypted applications.

The Department of Homeland Security first entered into a contract with Paragon, now owned by a US firm, in late 2024, under the Biden administration. However, the $2 million contract was put on hold pending a compliance review to ensure it adhered to an executive order restricting the US government’s use of spyware, reported Wired at the time.

That pause has now been lifted, according to public procurement documents, which list US Immigration and Customs Enforcement (ICE) as the contracting agency.

This means that one of the most powerful stealth cyberweapons ever created, which was produced outside the US, is now in the hands of an agency repeatedly accused by civil and human rights groups of violating people’s due process rights.

The story was first reported by journalist Jack Poulson on his All-Source Intelligence Substack newsletter.

Neither Paragon nor ICE immediately responded to a request for comment.

When successfully deployed against a target, the hacking software called Graphite can hack into any phone. By essentially taking control of the mobile phone, the user—in this case, ICE—can track an individual’s whereabouts, read their messages, look at their photographs, and open and read information held on encrypted applications like WhatsApp or Signal. Spyware like Graphite can also be used as a listening device by manipulating the phone’s recorder.

An executive order signed by the Biden administration sought to establish some guardrails around the US government’s use of spyware. It stated that the US “shall not make operational use of commercial spyware that poses significant counterintelligence or security risks to the United States government or significant risks of improper use by a foreign government or foreign person.” The Biden administration also took the extraordinary step of placing one of Paragon’s rival spyware makers, NSO Group, on a Commerce Department blacklist, saying the company had knowingly supplied foreign governments to “maliciously target” the phones of dissidents, human rights activists, and journalists.

Paragon has sought to differentiate itself from NSO Group. It has claimed that, unlike NSO—which previously sold its spyware to Saudi Arabia and other regimes—it only does business with democracies. It has also stated it has a no-tolerance policy and will cut off government clients who use the spyware to target members of civil society, such as journalists. Paragon refuses to disclose who its clients are and has said it does not have insight into how its clients use the technology against targets.

Spyware makers like Paragon and NSO have stated their products are intended to be used for preventing crime and terrorist attacks. However, both companies’ software has been used in the past to target innocent people, including individuals perceived to be government enemies.

John Scott-Railton, a senior researcher at the Citizen Lab at the University of Toronto, who is one of the world’s leading experts on cases in which spyware like Graphite has been abused by governments, said in a statement that such tools “were designed for dictatorships, not democracies built on liberty and protection of individual rights.”

“Invasive, secret hacking power is corrupting. That’s why there’s a growing pile of spyware scandals in democracies, including with Paragon’s Graphite,” he said, referring to a controversy in Italy that erupted last year.

Paragon broke off its ties to Italy after it was revealed that 90 people, including journalists and members of civil society, in two dozen countries, had been targeted with the spyware. The individuals targeted by the Italian government included human rights activists critical of Italy’s dealings with Libya. Several journalists were also targeted, though it remains unclear who ordered those hacking attacks.

The US government has resisted using spyware technology made outside the US in the past due to concerns that any company selling technology to multiple government agencies around the world represents a potential security risk.

“As long as the same mercenary spyware tech is going to multiple governments, there is an inherent counterintelligence risk. Since all of them now know what secret surveillance tech the US is using, they would have special insights on how to detect it and track what the US is doing with it,” Scott-Railton said. “Short of Paragon canceling all foreign contracts, I’m not sure how this issue will be resolved.”

Editorial Team

Thomas Brown

Head of Investigations

Print page

Comments:

comments powered by Disqus