Spy Software Attacks a European Politician
Spy Software Attacks a European Politician
間諜軟體攻擊歐洲政治人物
Introduction
A group called Citizen Lab found a problem. A man named Stelios Kouloglou worked for the European Parliament. Someone used a secret program called Pegasus to steal information from his phone.
一個名為 Citizen Lab 的組織發現了一個問題。一名在歐洲議會工作的男子 Stelios Kouloglou,其手機被他人使用名為 Pegasus 的秘密程式竊取資訊。
Main Body
The program entered his phone three times between 2022 and 2023. This happened while he worked on a special team. This team studied bad spy software.
該程式在 2022 年至 2023 年間進入了他的手機三次。當時他正於一個專門研究惡意間諜軟體的特別小組工作。
Citizen Lab does not know who did this. They do not think the Greek government did it. They think the same person attacked people from Russia and Belarus.
Citizen Lab 不清楚是誰所為。他們認為並非希臘政府所為,而認為是同一人攻擊了來自俄羅斯與白俄羅斯的人。
Pegasus is a program from a company called NSO Group. It lets people see everything on a phone. The United States says this company is dangerous.
Pegasus 是由一家名為 NSO Group 的公司開發的程式。它能讓使用者看到手機中的所有內容。美國表示這家公司很危險。
Other politicians are very angry. They say this is a crime. They want a special lab to stop this software, but the leaders have not made one yet.
其他政治人物感到非常憤怒。他們表示這是犯罪行為。他們希望建立一個特別實驗室來阻止這類軟體,但領導者尚未建立。
Conclusion
This shows that European leaders are not safe. The leaders are not doing enough to stop spy software.
這顯示出歐洲領導層並不安全。領導者在阻止間諜軟體方面做得不足。
Vocabulary Learning
🕒 Talking about the Past
In this story, we see a pattern for things that already happened. We call these Past Actions.
The Pattern: Most words just get an -ed at the end.
- Work Worked
- Study Studied*
- Attack Attacked
The 'Rule Breakers': Some words change completely. You must memorize these!
- Find Found
- Do Did
🛠️ Useful Word Pairs
Look at how these words describe the 'Bad Guys' and the 'Good Guys' in the text:
| The Bad Stuff | The Good Stuff |
|---|---|
| Secret program Hidden | Special lab Helpful |
| Dangerous Not safe | European Parliament Official |
Quick Tip: Use "not" to change a feeling.
- Safe Not safe
Vocabulary Learning
Investigation Confirms Pegasus Spyware Attack on Former European Parliament Member
調查確認前歐洲議會議員遭 Pegasus 監控軟體攻擊
Introduction
A technical analysis by Citizen Lab has confirmed that Stelios Kouloglou, a former Member of the European Parliament (MEP), was targeted by Pegasus spyware. This happened while he was serving on a committee investigating the illegal use of surveillance tools.
Citizen Lab 的技術分析確認,前歐洲議會議員 Stelios Kouloglou 成為了 Pegasus 監控軟體的目標。當時他正於一個調查非法使用監控工具的委員會任職。
Main Body
The attacks occurred while Mr. Kouloglou was part of the PEGA Committee, which was created in 2022 to study how mercenary spyware violates European Union law. Forensic data shows that his device was hacked on October 21, 2022, and again in March 2023. These dates are important because they match the time the committee was writing reports and holding high-level meetings. Interestingly, the first infection happened while he was in the hospital and in contact with a journalist who had also been targeted by similar software in Greece.
這些攻擊發生在 Kouloglou 先生擔任 PEGA 委員會成員期間,該委員會於 2022 年成立,旨在研究僱傭監控軟體如何違反歐盟法律。鑑識數據顯示,他的裝置在 2022 年 10 月 21 日及 2023 年 3 月被入侵兩次。這些日期至關重要,因為正值委員會撰寫報告及舉行高層會議的時間。有趣的是,第一次感染發生在他住院期間,而當時他正與一名在希臘同樣被類似軟體盯上的記者接觸。
Regarding who was responsible, Citizen Lab did not name a specific government, and they found no evidence that the Greek government was involved. However, researchers found a technical link—a specific Apple ID email—connecting these attacks to a campaign targeting seven Russian and Belarusian activists. This suggests the attacker had the ability to operate in both Greece and Belgium. The Pegasus software, created by the Israeli company NSO Group, allows users to remotely access almost all data on a device. Consequently, the U.S. government has previously blacklisted NSO Group for security reasons.
關於誰該負責,Citizen Lab 並未指名特定政府,且未發現希臘政府參與的證據。然而,研究人員發現了一個技術關聯——一個特定的 Apple ID 電郵——將這些攻擊與一場針對七名俄羅斯及白俄羅斯活動人士的行動聯繫在一起。這顯示攻擊者有能力在希臘與比利時兩地操作。Pegasus 軟體由以色列 NSO Group 公司開發,允許用戶遠端訪問裝置中幾乎所有數據。因此,美國政府先前因安全理由將 NSO Group 列入黑名單。
Several MEPs, including Hannah Neumann and Saskia Bricmont, emphasized that these breaches are an attack on the rule of law and the integrity of parliament. There is a strong concern that the attacker may have accessed confidential discussions and internal reports. Furthermore, although the committee recommended creating a specialized EU forensic lab and a task force to protect elections, these measures have not yet been put into action by the authorities.
包括 Hannah Neumann 與 Saskia Bricmont 在內的數名歐議會議員強調,這些入侵是對法治與議會完整性的攻擊。各界深感憂慮攻擊者可能已接觸到機密討論與內部報告。此外,儘管委員會建議成立一個專門的歐盟鑑識實驗室及一個保護選舉的專案小組,但這些措施尚未被當局採取。
Conclusion
This incident highlights a serious security weakness within European legislative institutions and shows a lack of a strong response to the spread of mercenary spyware.
此事件凸顯了歐洲立法機構內部嚴重的安全漏洞,並顯示出在面對僱傭監控軟體泛濫時,缺乏強而有力的應對措施。
Vocabulary Learning
⚡ The 'Connecting' Leap: From Simple to Sophisticated
At the A2 level, you likely use and, but, and because to join your ideas. To reach B2, you need Connectors of Logic. These words act like bridges, showing the reader exactly how one idea leads to another.
🔍 Spotlight: The Logic-Builders
Look at these specific words from the text that change a simple sentence into a professional one:
- "Consequently" (A2 version: So)
- Example: "The U.S. government has blacklisted NSO Group... Consequently, they cannot do business there."
- "Furthermore" (A2 version: Also / And)
- Example: "The attacker accessed reports. Furthermore, they may have seen private chats."
- "Although" (A2 version: But)
- Example: "Although the committee recommended a lab, the authorities did nothing."
🛠️ Practical Application: The "Swap" Technique
To move toward B2, stop using "But" at the start of your sentences. Try this transformation:
| A2 Style (Basic) | B2 Style (Advanced) | The Logic |
|---|---|---|
| He was in the hospital, but he was hacked. | Although he was in the hospital, he was hacked. | Contrast |
| The software is powerful, so it is dangerous. | The software is powerful; consequently, it is dangerous. | Result |
| They found a link, and they found an email. | They found a link; furthermore, they found an email. | Addition |
💡 Pro Tip: B2 speakers don't just give information; they guide the listener through the logic. Instead of a list of facts, use these 'bridges' to create a flow.
Vocabulary Learning
Forensic Identification of Pegasus Spyware Intrusion Targeting European Parliamentarian
法證識別針對歐洲議會議員的 Pegasus 監控軟體入侵
Introduction
A forensic analysis by Citizen Lab has confirmed that Stelios Kouloglou, a former Member of the European Parliament (MEP), was targeted by Pegasus spyware while serving on a committee investigating the misuse of such surveillance tools.
Citizen Lab 的法證分析證實,前歐洲議會議員 Stelios Kouloglou 在調查濫用監控工具的委員會任職期間,遭到 Pegasus 監控軟體針對。
Main Body
The intrusions occurred during the tenure of Mr. Kouloglou on the PEGA Committee, an entity established in 2022 to examine the contravention of European Union law via mercenary spyware. Forensic data indicates the device was compromised on October 21, 2022, and again on March 6 and 7, 2023. These temporal markers coincide with critical committee activities, including the drafting of reports and the conduct of high-level hearings. The initial infection occurred while the subject was hospitalized and in contact with Thanasis Koukakis, a journalist previously targeted by Predator spyware during the domestic surveillance scandal in Greece.
入侵發生在 Kouloglou 先生於 PEGA 委員會任職期間,該委員會於 2002 年成立,旨在檢查透過僱傭監控軟體違反歐盟法律的情況。法證數據顯示,裝置於 2022 年 10 月 21 日遭到入侵,隨後於 2023 年 3 月 6 日及 7 日再次遭到入侵。這些時間點與委員會的關鍵活動相吻合,包括起草報告及舉行高層聽證會。最初的感染發生在當事人住院期間,當時他與 Thanasis Koukakis 有接觸,後者是一名在希臘國內監控醜聞中被 Predator 監控軟體針對的記者。
Regarding attribution, Citizen Lab has not identified a specific state actor; however, the analysis noted the absence of evidence implicating the Greek government. Conversely, the researchers identified technical overlaps—specifically a unique Apple ID email—linking these attacks to a campaign targeting seven Russian- and Belarusian-speaking activists and journalists. This suggests the operator possessed licenses for deployment within Greece and Belgium. The Pegasus software, developed by the Israeli firm NSO Group, facilitates comprehensive remote access to device hardware and data. NSO Group has previously been blacklisted by the United States administration for activities deemed contrary to national security interests.
關於歸屬問題,Citizen Lab 尚未識別出特定的國家級參與者;然而,分析指出缺乏證據顯示希臘政府牽涉其中。相反,研究人員發現了技術上的重疊——特別是一個唯一的 Apple ID 電郵——將這些攻擊與一次針對七名俄語及白俄羅斯語活動人士與記者的行動聯繫起來。這表明操作者擁有在希臘及比利時部署的許可證。Pegasus 軟體由以色列公司 NSO Group 開發,可實現對裝置硬體及數據的全面遠端存取。NSO Group 先前因被認定有違國家安全利益的活動,而被美國政府列入黑名單。
Stakeholders within the European Parliament, including MEP Hannah Neumann and Saskia Bricmont, have characterized these breaches as an assault on the rule of law and parliamentary integrity. There is a prevailing concern that the compromise of a PEGA Committee member may have granted the adversary access to confidential deliberations and internal findings. Despite the committee's recommendations for the establishment of a specialized EU forensic laboratory and an election-focused spyware task force, these measures have not yet been implemented by the relevant institutions.
歐洲議會的利害關係人,包括議員 Hannah Neumann 及 Saskia Bricmont,將這些入侵定性為對法治及議會誠信的攻擊。目前普遍擔心,PEGA 委員會成員遭到入侵,可能使對手獲取機密商議過程及內部調查結果。儘管委員會建議成立一個專門的歐盟法證實驗室及一個專注於選舉的監控軟體專案小組,但相關機構尚未實施這些措施。
Conclusion
The incident underscores a systemic vulnerability within European legislative bodies and a perceived lack of institutional response to the proliferation of mercenary spyware.
此次事件突顯了歐洲立法機構內部的系統性漏洞,以及制度上對於僱傭監控軟體泛濫缺乏回應。
Vocabulary Learning
The Architecture of 'Nominal Density' and Formal Cohesion
To transition from B2 to C2, a student must move beyond simple narrative flow and master Nominalization—the process of turning verbs and adjectives into nouns to create a 'dense' academic style. This article is a prime specimen of high-density formal English, where action is stripped of its subject to prioritize the concept over the actor.
◈ The Mechanism: Action Entity
Observe how the text avoids simple sentences (e.g., "They broke into the phone") in favor of nominal clusters:
- "The proliferation of mercenary spyware" Instead of saying "Spyware is spreading quickly," the writer transforms the verb proliferate into a noun. This shifts the focus from the movement to the phenomenon itself.
- "The contravention of European Union law" Instead of "They broke the law," the noun contravention elevates the register to a legalistic, impersonal tone characteristic of C2-level discourse.
◈ Precision via 'Temporal and Spatial Markers'
C2 mastery requires the ability to anchor events with surgical precision without relying on repetitive time-connectors (First, then, after that). Note the use of:
*"These temporal markers coincide with critical committee activities..."
By labeling dates as "temporal markers," the author treats time as a data point. This is metadiscourse—talking about the structure of the evidence while presenting the evidence itself.
◈ Nuanced Hedge-Words & Attribution
Notice the strategic use of qualifiers to avoid absolute claims, a hallmark of scholarly writing:
- "...activities deemed contrary to..."
- "...a perceived lack of institutional response..."
C2 Insight: Using "perceived" instead of "actual" allows the writer to report a sentiment without taking personal responsibility for the truth of that sentiment. It creates a layer of professional detachment.
◈ Syntactic Sophistication: The 'Appositive' Expansion
Look at the phrasing: "...the PEGA Committee, an entity established in 2022 to examine..."
This is an appositive phrase. Rather than starting a new sentence ("The PEGA Committee was established in 2022"), the C2 writer embeds the definition directly into the sentence flow. This increases the information density and maintains a sophisticated, uninterrupted rhythmic cadence.