leach, whatever the cost, football rebels on al jazeera, the ah morning government al jazeera as a you know me. ah, don't you on there with me? so rahman, reminder of our top stories presents joe biden and vladimir putin, our meeting in the swiss city of geneva. and front of the world's media, putin said he's hoping for a productive meeting. while barton says it's always better to meet face to face earlier. both sides said russia, us relations about the lowest point in yes. and the play don expectations of any

significant developments. whitehouse correspond, kimberly how it is following went forth from geneva. the hard work really starts now. it seems kimberly and a bit of a chaotic scene as things got underway. what we have heard in terms of the experience by reporters as they saw that photo opportunity of the 2 leaders flanked with their secretary state as well as foreign minister, was a lot of pushing and shoving and jostling between the us media and the russian media in fact, what we're hearing is that it got so chaotic at one point that the swiss security had to essentially kind of break it up if you will, and threatened to keep both sides of the reporting teams out from being able to cover this event. so not a very good start, at least in terms of media relations. let's hope the things in the closed or session of between the 2 leaders and the foreign ministers goes somewhat better. but we know there are difficult topics that need to be discussed in each side. has

sort of a diversion set of goals for the us part. they're looking to essentially build a framework to draw a line in the sand, to limit rushes destabilizing behavior. their behavior that the united states considers aggressive as for it to be halted. and if that does not happen, that the united states says it will respond in kind, in ways both seen and unseen. what they're looking for, a stability and predictability for it's part. russia is not expecting that there's going to be a repair of the rift as a result of their vision of crimea back in 2014. nor did they think that the financial sanctions that have been put in place by the united states and you will be lifted. but what they are hoping to see is that their security concerns are highlighted and that in fact they can find some basic channels of communication. these are the goals of the 2 leaders. they hope that if they can achieve these goals in the next few hours, that there even could be future meetings to come where the harder work can be

accomplished as well as some of those big goals like security arrangements as well . 6 as in the united states standpoint of holding human rights and democracy because back to you for an update as the day progresses. kimberly, how get there for us in geneva? not israel has come out at 1st and strikes on garza since he's fall, came into effect less than 4 weeks ago. it's military says warplanes a tank tomas target, south of garza city, and in con eunice and softer in century balloons were flown from garza into field into southern israel. a 2nd candidate has dropped out of iran's presidential race on the final day of campaigning. conservative ali, that's the connie says he's throwing his support behind the front. when i hear you say today, reformers most and also pulled out. but without backing anyone else, there were no 5 candidates left in the race. and our group in me was opposed to fabulous military q says it's halting attacks on government forces. the currently national defense force has been under pressure from the public to stop fighting in

higher state where it operates. more than a 100000 people have been displaced by the conflict. a, you and investigator has warned. they are at risk of starvation and disease. north korea, nita has warned a possible food shortages and says that could be extended. cro virus restrictions qindzhong and told a political conference that the food situation is getting tense. he says industrial output rose by 25 percent in the past year. but overall economic growth is hampered by kevin 1900 typhoons and limited food supplies. as for lincoln, family seeking asylum, illustrator has been reunited after they were separated when the youngest daughter became sick. not as a linger who got on the flower to flute to perth with his oldest daughter, could pick her from christmas island detention center in the indian nation. on tuesday now, his youngest daughter was being treated in hospital for blood poisoning due to untreated pneumonia. only her mother was allowed to travel with her. those were the headlines. nick clark will have more news. he announces era in half now next it's

out there. a wild until i do take her the. ready ah, the in mid 2020, a mobile phone belonging to odyssey or arabic, was hacked over the next few months, working with an organization called the citizen lab. the team for mosier unpacked

an extraordinary story, or some of the most advanced spyware in the world. and how it's used, not least on al jazeera journalists, ah, with a click of a button. you can bring down nations to the news very rapidly if you so desire. and if you're willing to take them, because every system can be a israel manufacturers pegasus. some of the most advanced spyware in the world. it 1st came to attention in 2016. since that various governments have bought the spyware for their own use. questions today are, how does pegasus work? who is using it, and who it's victims? well, there's very little in the actual details behind the pegasus spyware. the code,

the malicious code that was used, that's very, very difficult to find out more about thought was a little early and living again, i'm out of food because of these home. let me get rid of money and then i can use them or what can i help them from the mobile. how they only know about her been cut off and cut the seller the you for the 30 here on the amendment. i've had these holes in your arabic investigative report, a time that followed a complicated technical process to track this infamous spyware. over many months, he had one of his own phones, monitored constantly with the help of citizen lab and international research laboratory based in canada. but specializes in data surveillance. the citizen la was the 1st to expose the existence of israel's pegasus spyware. in 2016,

they disclose details of what they called on exploit infrastructure. connected to a phone belonging to an activist from the united arab emirates, the infiltration, the heck led to the arrest of a madman saw remains in prison to this day. the new hacking technique was called as 0 day exploits. and pegasus was, the spyware used to infiltrate, man, whose phone bill muscle from citizen lab has worked for several years to expose pegasus. so what happened in 2016 started with vis man madman sword, the activist in the u. e. and he noticed some suspicious messages on his phone that he was getting the s m s. he thought they were weird because they came from unknown numbers and they were promising information about human rights. so he forwarded them to me at citizen lab. we had known each other for a while. i got

a burner phone, not obviously my, my real phone burner phone and clicked on the links. and while i was doing this, i was recording the internet traffic and recording the activity on the phone and what was installed. when i clicked the link was a very sophisticated, spyware payload. and the interesting question was, but who could be behind us? who might have programmed the spyware who might have sold it, who might be using it, and the process to figure that out is called attribution. so what we did in the report is we noticed that when you clicked on the link a 2nd time, it wouldn't cause the infection is only limited to the 1st click. and the 2nd click would send you to a decoy website to try and make it look innocuous or benign. so we clicked on the 2nd time we got redirected to google, but it wasn't just any redirect to google. it was a very specific piece of code that someone had sat down and written on their computer. so we figured, well,

maybe this is part of this spyware somehow. and if we can scan the internet, we can find other servers that had the same weird redirect to google. so this is exactly what we did. we use the popular open source v map program. we scan the internet and found 149 other servers, and this is where it gets interesting because this 2nd redirect to google was also returned by 3 servers and s o q a dot com q a n q a dot com, and mail one dot and s o group dot com and the name here and a so group we found in a brochure in these really government's website. they had a brochure for this company, and a so group, which is based in israel and sells a product called pegasus, which is spyware, for mobile phones. in the case of pegasus citizen lab did very good work and was very, very inclusively able to say that pegasus had been written by and over. but it's actually stream we rare that we're able to get that sort of concrete attribution

and say this malware was written by this company. the n s o group is a technology company based in hatch. leah in israel founded in 2010. it employs over 500 cybersecurity experts, pegasus spyware, is viewed as its most important product use. israel is one of the most sophisticated cyber actors in the world. and i think that a lot of this is because the israeli army is training people to do this sort of offensive, packing for you know, in their military service. more of them allow me and if he how he should get home, how do you men wish that someone telephone within the huff a way the way is is done the list of what all alaska eligibility. yeah. aluminum

and will be the cut, the whole door shut. it can remark about a little harbor was all at the thought was a little slightly r n a say which is called unit a 200. it's pretty big. we allow them to create companies and we, and order for the companies to develop. they need to make what they need to make money. they need to make money. thomas almost house spoke to william benny, who for over 30 years, worked with the us national security agency, a former cryptography, and later whistleblower benny was the n s. a technical leader of intelligence. many has a high level understanding of the agencies data collection systems. what that means is, any i phone or any phone in the world, 1st connecting to the network,

when you want to use it, you're immediately known worldwide. i mean, all the switches have you and capture your ip and all, and your phone and mac numbers and all that. that's how they bill you. so that also is the known by the network and the implants, computer network exploitation implants, they have around the world over this was in 2004 or 2010, somewhere in that range. they had over 50000 implants and all these switches, servers and networks worldwide. i mean that means they own the entire network. so that if you, your phone comes on the air, then they can, they can know who you are and where you are when citizen loud exposed to n. s. so, and it's pegasus spyware. in 2016, it attracted, worldwide control oversee. and as so, claims its mission is to develop technology for government agencies to quote, detect and prevent terrorism and crime. however, the nature of its targets,

the individuals whose phones have been hacked, raises questions about these claims. when pegasus was released a few years ago, it was mainly targeted on human rights activists, journalists, and politicians, and targeted people, maybe of people with high wealth. but it's never really going to be used on the, on joe public. if you were to target everyone in math net, i don't think that will be as important to the people behind it. they don't want to see my day today. that was your day today, going off to specific people in the danger of such by ram is its ability to infiltrate every piece of private information and hacked a targeted device to the most used applications in 2019 whatsapp owned by facebook accused and so of hacking the popular communications to this waste fear,

amongst the huge numbers of global users and fort sab, especially at a time when some targeted victims appeared to meet with dreadful consequences. it came, she left a la softly darville visit phone miss. they must say, listen lane, or the bell over. so did the little house fuji, a couple of us for lovely dogs de la garza, my uncle, shave mon cortez my will, ma'am. the bazaar. most of all of them. the stars i saw, nor was there something makes me quite up on me. she never mexico visual to be the one i make. see connie, there's a lot of nozzles to hold on the layer a qu away. it will ny she do. i will be called to mr la la la v. oh my god do when they alarm. so if you do think that you are someone who is an important target, you're likely to face scrutiny by some government in the middle east or elsewhere.

and you are a journalist, an activist, or a member of civil society. i'd recommend that. yes. please do get in touch with, with citizen lab or other researchers who work in this space in the art. yeah, any time at all. and michelle wanted to know how difficult it was to monitor phone suspected or being hacked. and here how many a santa basically it involves installing an app on the phone, which allows us to inspect the internet traffic. and we do this for some period of time depending on what the user would like. we can do it for a short time. we can do it for a long time and try and identify suspicious patterns or evidence that the phone might be hacked. me while working as an investigative journalist almost housed with swipes and other suspicious messages to different apps, me. the threats increased over the months ramping up. as he worked on more

sensitive regional subjects, he decided to install a tracking up on his work phone, developed by citizen lab to trace possible hacking the conventional way to hack a smart phone is to send a suspicious message to the targeted form that includes a short text and a length. when the user clicks on the link, software takes control of the phone and thus makes the device accept any commands sent through the link. the device is then automatically connected to a server used by the hackers, and that is how the spyware gets installed on the phone. the user doesn't see the spyware on their phone, which is already being hacked. the hackers can then control the device and all its functions. the main challenge for spyware is to find

a vulnerability in the targeted phone, particularly as modern smartphone security protection techniques have developed significantly, package as managed to advance this capability considerably. to be able to penetrate the various kinds of smartphone. once the infection happens, the malware itself did the same stuff that we see a lot of malware do, which is a spy on phone calls, spy on text messages and what's messages and any other encrypted messages you're sending and turn on your microphone and turn on your camera, what made it especially sophisticated was that they were willing to use brand new exploits for i phones to infect their victims. and some of these exploits could cost upwards of a $1000000.00. ah, each supplier packets, the spyware to its clients, cost millions of dollars, and it can only used for a limited period of time. that means targeting a large number of smartphones for long periods of time,

cost hundreds of millions of dollars. this extremely expensive cars, raises questions, who can afford this spyware? who are an esl groups, main clients, on its website, and as a group says it, spyware is quote, used exclusively by government intelligence, as efficiently requested by the governance themselves. does this mean that pegasus cannot be purchased by other parties? when people leave the israeli military service, they have all this very specialized, very highly sought after wellpaid knowledge. and so they take it to private companies such as an s o group, right. and then they, they sell it to countries that are known to violate human rights. because, you know, even though they are perhaps very intelligent and by computer security, they clearly haven't thought so much about the human rights implications of what

they're doing. or maybe they don't care a whole lot, but each more have it eat to and that you more likely will finish mean more mish doubled. she'll be the honcho may denote air of a 100 years ago on the got go. me mom on the lawyer. they are the mortality zillow, 1000, them a lot of a l. i'm how the lexical law got the same love a deep wildly whole day meal, the old and the holly, or the columbia of bell. ben or mid, you know, bo alarm for working on this investigation. time on this house, so many signs of hacking attempts on his phone, the one he had fitted out to track any infiltration. after 7 months, the 19th of july 2020, he received a phone call from citizen lab, informing him that the phone had been hacked.

the hacking happened a few days after he had entered an investigative documentary about an indian tie. truth which disclosed controversial leaked documents about the tie. coons linked to the you eat and his flight from the country are miss hall. had used the same phone to communicate with officials and individuals in the u. e. in order to give them the right to reply to the allegations and the film. so the 1st thing that we saw on your phone was on july 19th between about 103311288. m, g, m g. there were a very high number of connections to apple servers. now usually your phone will just communicate with one apple server for icloud, for your backups, for your contact thinking the information. but in this case, in less than an hour, we saw your phone communicate with 18 different apple servers. and this was very

unusual. you don't usually see those on phones, so that was the 1st clue that something suspicious was going on. and immediately after this communication stopped, we saw your phone reach out to this website regular, ours dot net. in other words, your phone connected to this website. and this website stands out, because we know from our research, a citizen lab that regular ours dot net, this website is linked to in a, so group pegasus spyware. so we saw your phone reaching out to this. and if so, pegasus spyware server, which let us to suspect, and then later conclude that your phone was infected. so what we can see from the recording of your internet traffic. so let's go to this point in time here, 1129, where the phone communicates with the pack us a server. and we can look beforehand to see what was going on immediately before that. and the only thing that we see is this communication with i cloud with apple

servers. we don't see any evidence that you pressed on a link or clicked on anything or went to any website. so what we think happened is that these communications with the apple servers delivered the initial exploit to have your phone. in other words, you didn't click on anything. your phone was automatically hacked, a so called 0 click, like we said 0 click exploits delivered through apple servers. this is a very expensive export. yes, this is if you think about the sophistication of exports to break into phones. this is as good as it gets 0 click means hacking, without clicking on any links. pegasus does not require any action by the user or a click on any suspicious links. the user receives a call from an unknown caller through the internet, and the phone gets hacked, even without answering the phone call. after that pegasus spyware is installed on

the targeted phone. taking full control of the device was definitely the most sophisticated attack i've seen in the last few years. the fact it was able to be installed on a target device without the target increasing, but i think there's 0 click attack. this is incredibly impressive and i did a very rarely thing to better do that. it so sophisticated. but as it is rare, is difficult for us to really know much more about it and something of this math and she was able to be conducted to still such data is a bit of a worry. she had that struck 0 clip tom, i don't miss how i wanted to know if the 0 click process enabled, complete access to all the applications and content on his folder with milan island you had as far as we know, they can access everything on the phone we saw from looking at the log files on

your phone that they were able to access the media framework. so they were able to turn on the microphone turn on the camera if they wanted to, and looked into meetings or conversations going on around your device. they were also able to tap into the key chain on the phone, and this is where your passwords for email accounts. social media maybe stored the fact that citizen lab was tracking thomas phone helped him take precautionary measures to prevent sensitive information being accessed. the most important thing was for him to discover the moment of the hacking to place and who else was affected. we found working together with l just here as i t team is that your case was not the only one. there were at least 36 other cases inside, all just a phones that we're communicating with servers that we linked to. and so groups, pegasus spyware. in other words, there were many different people at all just here who were hacked and target is not

just you. i'll miss holland, the team from citizen lab, analyze the data connected to the hacking technology which targeted these devices. the hack appeared to be part of an organized campaigns targeting symbol, teeniest me, the mobile phones of dozens of ologist, either journalists in order to spy on them. ah, according to citizen labs technical report, israel's packers, a spyware, was used to infiltrate these phones by looking at the links and the accounts, the hacking of the phones was carried out, mainly in the e and saudi arabia. the 2 countries that most use this advance is rarely technology in the region for what we saw with the infections inside l g 0, is that about half of them were from this operator that we call monarchy. if the

code name that we give these operators when we refer to them inside citizen lab, and this operator is spying mostly in saudi arabia and cutter, but not very many other countries. so this tells us, well, if they're spying mostly in saudi arabia, maybe it is, in fact the saudi arabian government and the other half were from this other operator that we call smithy castro inside citizen left. and this operator seems to be mostly targeting inside the united arab emirates and car. so this tells us that the government, in this case may be the united arab emirates government, in other words, to different governments. it, like we're behind this campaign, ah, deals to purchase pegasus spyware on no longer a secret. many reports claim that saudi arabia and the u. a. e, have spent hundreds of millions of us dollars to buy packages from israel. such

deals seemed to be reinforced after the recent us brokers so called normalization deal between the us and israel. ah, the untold story. ah, we speak when others don't. ah, we cover all sign. ah, no matter where it takes a police fan here guys. my i in power in pasha. we tell your story. we are your voice. you knew your net back out here was a bag in energy and change to every part of our universe. or

small to continue the change all around the shape, my technology and human ingenuity we can make it work for you and your business. ah, welcome to port on your gateway to the very best advantage there. an online content that you may have met. a new program that this through our platforms makes a connection and presents a digestible, seeing each the award winning online content on their audience portal with me founder gatlin on how to 0 new go to the from one of the top was what rooms were made. it

turned into a nightmare of a rest in torture by argentine as military johnson footballing legend, eric tend to introduce his cloud, your temporary one of the special views up for their beliefs, whatever that cost football rebels on al jazeera. oh hello. no clock into how it's up stories here on out 0 and president joe biden invited me put in a meeting in the swiss city of geneva. i preached and says, he's hoping for a productive meeting or by and says it's always better to meet face to face by side said us russia relations are the lowest point in yes. and a play down expectations of any significant developments. a bit of

a chaotic scene as things got underway. what we have heard in terms of the experience by reporters as they saw that photo oper.