Paragon Is Not Collaborating with Italian Authorities Probing Spyware Attacks, Report Says

The Graphite spyware scandal erupted after WhatsApp and Apple warned Italian users that their devices had been compromised by a tool linked to Paragon Solutions. Victims, including journalists Francesco Cancellato and Ciro Pellegrino, filed criminal complaints, prompting prosecutors in Rome and Naples to seek detailed technical data from the vendor. Paragon’s silence—despite a formal request routed through the Israeli government—has stalled forensic analysis and fueled speculation that diplomatic pressure is curbing corporate transparency.

Paragon’s non‑cooperation is significant because it mirrors the broader pattern of surveillance firms evading legal scrutiny, as seen with NSO Group’s own disputes with foreign authorities. By canceling contracts with Italy’s AISE and AISI, the company signaled a willingness to abandon state clients that demand accountability, yet it continues to supply its technology to U.S. Immigration and Customs Enforcement for counter‑terrorism and drug‑trafficking operations. This dual strategy underscores a market where firms can pivot between democratic allies and authoritarian regimes, complicating efforts to enforce international norms on cyber‑espionage.

Looking ahead, the unresolved Italian probe may set a precedent for how European regulators confront foreign spyware vendors. With Paragon’s website offline and its legal posture ambiguous, civil‑society groups and investigative labs like Citizen Lab will likely intensify pressure for disclosure. Meanwhile, the U.S. government’s procurement of Graphite raises questions about oversight mechanisms within law‑enforcement agencies. Stakeholders—from privacy advocates to corporate risk officers—must monitor these developments as they shape the regulatory landscape for surveillance technology worldwide.