:

UK WARNS: 100 COUNTRIES HAVE PHONE-HACKING SPYWARE

SECURITY DESK2 MIN READ
WED, APR 22, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

The UK's cybersecurity chief has warned that businesses and critical infrastructure are underestimating threats from spyware, as more governments gain access to powerful surveillance technology than ever before.

The UK government has raised alarms over the widespread proliferation of spyware capabilities among nation-states. According to the nation's cybersecurity leadership, approximately 100 countries now possess access to advanced surveillance tools capable of infiltrating mobile devices. The warning comes as UK businesses and critical infrastructure operators are accused of failing to adequately assess the risks posed by such attacks. The cybersecurity chief emphasized that the threat level has intensified due to the increased number of governments holding access to these technologies. Spyware of this caliber—often referred to as "lawful intercept" tools—can grant attackers comprehensive access to phone data including messages, calls, location data, and sensitive files. The technology has traditionally been associated with authoritarian regimes, but its proliferation across a larger number of states represents a notable shift in the threat landscape. The warning suggests that organizations have not kept pace with the evolving security challenges. Critical infrastructure sectors, including energy, finance, and communications, are particularly vulnerable if they have not implemented robust defenses against sophisticated surveillance threats. This disclosure aligns with growing international concern over commercial spyware products, such as NSO Group's Pegasus, which have been documented as being used by multiple governments for surveillance purposes. The UK's assertion that 100 countries possess similar capabilities indicates either wider distribution of existing tools or development of domestic alternatives. The UK government has not provided specifics on which countries possess the technology or how it plans to address the vulnerability. However, the warning serves as a call for enhanced cybersecurity measures across both private and public sectors. Organizations are being advised to strengthen their security posture against mobile device compromise, including deployment of advanced threat detection systems and employee security training.

■ SOURCES

TechCrunch

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Fraudsters are creating convincing counterfeit news articles impersonating major publishers like the Guardian to direct social media users to bogus investment sites. The fake stories feature fabricated celebrity endorsements and financial narratives designed to establish credibility.

4H AGOIndustry Desk

A security analysis reveals xAI's Grok Build command-line tool transmits complete source code and project files to xAI's servers. The discovery raises data privacy questions for developers using the tool.

9H AGOAI Desk

A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.

21H AGOAI Desk

The Australian Cyber Security Centre has issued an alert about coordinated exploitation of vulnerable content management systems and plugins worldwide. The campaign targets organizations using outdated or unpatched CMS software.

23H AGOAI Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.