You can also read a pdf version of this technical briefing.

Two journalists from Balkan Investigative Reporting Network (BIRN), an award-winning Serbian network of investigative journalists, were targeted with NSO Group’s Pegasus spyware last month, a new Amnesty International investigation reveals.  

Novo istraživanje Amnesty International-a otkriva da su dve novinarke iz Balkanske istraživačke mreže (BIRN), nagrađivane mreže istraživačkih novinara iz Srbije, prošlog meseca bile meta špijunskog softvera Pegasus.  

Responding to the publication of a Citizen Lab report identifying multiple cases involving the use of Paragon’s spyware against journalists and human rights defenders in Italy, the Head of Amnesty International’s Security Lab, Donncha Ó Cearbhaill, said:

Amnesty International’s Security Lab, in collaboration with Amnesty’s European Regional Office, has uncovered a new case of misuse of a Cellebrite product to break into the phone of a youth activist in Serbia. The attack closely matches the form of attack that we previously documented in a report, ‘A Digital Prison’, published in December 2024. This new case provides further evidence that the authorities in Serbia have continued their campaign of surveillance of civil society in the aftermath of our report, despite widespread calls for reform, from both inside Serbia and beyond, as well as an investigation into the misuse of its product, announced by Cellebrite.

On 26 February 2025, Amnesty International filed written submissions to the European Court of Human Rights in the case of Krzysztof Brejza v. Poland and 8 Other Applications. The case raises important questions of significance for domestic and regional legal systems around the world grappling with the intersection of human rights and digital surveillance through spyware. Based on its research, Amnesty International submits that, to comply with international and regional human rights law and standards, states should adopt a ban on highly invasive spyware because, as is explained, its technical features render it incompatible with international human rights law and standards.

Responding to Cellebrite’s announcement that it will stop the use of its digital forensic equipment for some of their customers in Serbia, following Amnesty International’s report on the misuse of spyware and mobile forensic products by Serbian authorities to unlawfully target activists and journalists, Donncha Ó Cearbhaill, Head of the Security Lab at Amnesty International, said:

This is the Executive Summary of Amnesty International’s report on surveillance and the suppression of civil society in Serbia. Please click here for the full report in PDF format.

This press release is also available in Serbian “Srbija: Vlasti koriste špijunske softvere i forenzičke alate kompanije Cellebrite za hakovanje novinara i aktivista”.

Policija i obaveštajne službe u Srbiji koriste moderan špijunski softver za mobilne uređaje zajedno sa mobilnim forenzičkim alatima kako bi nezakonito targetirali novinare, ekološke aktiviste i druge pojedince u kampanji tajnog nadzora, otkriva novi izveštaj Amnesty International-a.

This is a companion blogpost to our report “A Digital Prison” – Surveillance and the Suppression of Civil Society in Serbia. 

In response to the Bangkok Civil Court’s dismissal of Thai activist, Jatupat Boonpattararaksa’s lawsuit against NSO Group Technologies Ltd for allegedly failing to prevent him from being targeted with spyware, Amnesty International’s Thailand Researcher Chanatip Tatiyakaroonwong said: