Claim ID: 00008

The following claim was made public and reported by many news websites:

Pegasus spyware contains comments in the Chinese language

The claim is considered: FALSE

Why is it false?

The rumour about a Pegasus sample containing comments in the Chinese language started on Twitter where one user mistakenly attributed an Android application used in game cheating as belonging to the Pegasus family of spyware. However, detailed analysis of the sample showed that it is available on two different Chinese app markets and just shared an open source library with old Android Pegasus samples¹. This analysis was later independently confirmed by another researcher².

Pegasus is made by an Israeli company called “NSO Group”³. However, the claim was still reported by many news websites, particularly in Poland. It was so widely reported that a question about supposed Chinese origins of Pegasus was asked during the Polish Senate committee hearing. In fact some of the news articles (listed below) still repeat that claim.

Statement sources

The websites below repeat the claim. This is not a full list of websites.

• Telepolis, Pegasus trafił do sieci. Każdy może pobrać i sprawdzić (in Polish) - link
• Wprost, Szpiegujący Pegasus do pobrania. Na GitHub trafiła wersja 5.1 na Androida (in Polish) - link
• Polityka, Pegasus. Jakie telefony infekuje? Czy zagraża zwykłym ludziom? (in Polish) - link

Campaigns

The misinformation campaigns below have used this claim.

• Pegasus misinformation campaign.

Footnotes

1. Twitter thread with the analysis of the supposed sample ↩

2. Twitter thread confirming the analysis ↩

3. LinkedIn post in which NSO Group confirms the origin of the name Pegasus ↩