Natalia Krapiva 🕊️👩🏻💻
@natynettle.bsky.social
Lawyer working on human rights, technology, spyware, litigation, Russia and Eastern Europe.
Currently Senior Tech-Legal Counsel at Access Now. Formerly OSINT investigator and prosecutor.
Currently Senior Tech-Legal Counsel at Access Now. Formerly OSINT investigator and prosecutor.
It was a pleasure to speak at #InternetCA ‘25 together with regional partners & Kazakhstan🇰🇿& Kyrgyzstan🇰🇬 officials.
I highlighted the disproportionality of internet shutdowns 🛜, the dangers of “white lists” ☑️‼️& the importance of protecting e2e encryption🔒
🙏 to MediaNET for the invitation
I highlighted the disproportionality of internet shutdowns 🛜, the dangers of “white lists” ☑️‼️& the importance of protecting e2e encryption🔒
🙏 to MediaNET for the invitation
November 3, 2025 at 5:30 PM
It was a pleasure to speak at #InternetCA ‘25 together with regional partners & Kazakhstan🇰🇿& Kyrgyzstan🇰🇬 officials.
I highlighted the disproportionality of internet shutdowns 🛜, the dangers of “white lists” ☑️‼️& the importance of protecting e2e encryption🔒
🙏 to MediaNET for the invitation
I highlighted the disproportionality of internet shutdowns 🛜, the dangers of “white lists” ☑️‼️& the importance of protecting e2e encryption🔒
🙏 to MediaNET for the invitation
This should be a big scandal!
U.S. hacking company employee is accused of selling trade secrets to Russia 🇷🇺 !
A stark reminder why commercial spyware industry is such a threat to U.S. & other Western democracies’ national security.
We need strict controls & enforcement!
U.S. hacking company employee is accused of selling trade secrets to Russia 🇷🇺 !
A stark reminder why commercial spyware industry is such a threat to U.S. & other Western democracies’ national security.
We need strict controls & enforcement!
NEW: The U.S. govt accused Peter Williams, ex general manager of hacking tool maker L3Harris Trenchant, of stealing trade secrets and selling them to buyer in Russia.
As we reported earlier, Trenchant investigated a leak of internal tools this year. It's unclear if that investigation is related.
As we reported earlier, Trenchant investigated a leak of internal tools this year. It's unclear if that investigation is related.
U.S. government accuses former L3Harris cyber boss of stealing trade secrets | TechCrunch
The U.S. Department of Justice accused Peter Williams, former general manager of L3Harris’ hacking division Trenchant, of stealing trade secrets and selling them to a buyer in Russia.
techcrunch.com
October 23, 2025 at 5:27 PM
This should be a big scandal!
U.S. hacking company employee is accused of selling trade secrets to Russia 🇷🇺 !
A stark reminder why commercial spyware industry is such a threat to U.S. & other Western democracies’ national security.
We need strict controls & enforcement!
U.S. hacking company employee is accused of selling trade secrets to Russia 🇷🇺 !
A stark reminder why commercial spyware industry is such a threat to U.S. & other Western democracies’ national security.
We need strict controls & enforcement!
New investigation by SentinelOne & partners from DSL Ukraine into phishing attack targeting humanitarian actors.
The attack chain overlaps with Russian FSB hacking group COLDRIVER/Star Blizzard which we at @accessnow.org & @citizenlab.ca reported on last year
www.sentinelone.com/labs/phantom...
The attack chain overlaps with Russian FSB hacking group COLDRIVER/Star Blizzard which we at @accessnow.org & @citizenlab.ca reported on last year
www.sentinelone.com/labs/phantom...
PhantomCaptcha | Multi-Stage WebSocket RAT Targets Ukraine in Single-Day Spearphishing Operation
SentinelLABS uncovers a coordinated spearphishing campaign targeting organizations critical to Ukraine's war relief efforts.
www.sentinelone.com
October 23, 2025 at 11:44 AM
New investigation by SentinelOne & partners from DSL Ukraine into phishing attack targeting humanitarian actors.
The attack chain overlaps with Russian FSB hacking group COLDRIVER/Star Blizzard which we at @accessnow.org & @citizenlab.ca reported on last year
www.sentinelone.com/labs/phantom...
The attack chain overlaps with Russian FSB hacking group COLDRIVER/Star Blizzard which we at @accessnow.org & @citizenlab.ca reported on last year
www.sentinelone.com/labs/phantom...
Reposted by Natalia Krapiva 🕊️👩🏻💻
🇷🇺 🇺🇦 Russian forces struck a kindergarten in Kharkiv with killer drones on Wednesday morning, according to top Ukrainian officials.
www.politico.eu/article/russ...
#Russia #Ukraine
www.politico.eu/article/russ...
#Russia #Ukraine
Russia bombs kindergarten in Kharkiv, Ukraine says
“These strikes are Russia’s spit in the face of anyone who insists on a peaceful solution,” rages Ukrainian leader Volodymyr Zelenskyy.
www.politico.eu
October 22, 2025 at 10:05 AM
🇷🇺 🇺🇦 Russian forces struck a kindergarten in Kharkiv with killer drones on Wednesday morning, according to top Ukrainian officials.
www.politico.eu/article/russ...
#Russia #Ukraine
www.politico.eu/article/russ...
#Russia #Ukraine
Today’s WhatsApp v NSO injunction is a BIG DEAL & may essentially kill Pegasus spyware *as we know it.*
To comply, NSO would have to ensure that their spyware cannot access WhatsApp messages or break WhatsApp’s encryption.
This means that NSO can no longer offer “unlimited” access to victims’ 📱s
To comply, NSO would have to ensure that their spyware cannot access WhatsApp messages or break WhatsApp’s encryption.
This means that NSO can no longer offer “unlimited” access to victims’ 📱s
October 18, 2025 at 1:16 AM
Today’s WhatsApp v NSO injunction is a BIG DEAL & may essentially kill Pegasus spyware *as we know it.*
To comply, NSO would have to ensure that their spyware cannot access WhatsApp messages or break WhatsApp’s encryption.
This means that NSO can no longer offer “unlimited” access to victims’ 📱s
To comply, NSO would have to ensure that their spyware cannot access WhatsApp messages or break WhatsApp’s encryption.
This means that NSO can no longer offer “unlimited” access to victims’ 📱s
Reposted by Natalia Krapiva 🕊️👩🏻💻
💡Some key recommendations from @accessnow.org's @natynettle.bsky.social, @mdedora.bsky.social, & Rand Hammoud on 🇺🇸ICE's contract with #spyware vendor Paragon Solutions.
👇👇👇
👇👇👇
October 15, 2025 at 8:20 PM
💡Some key recommendations from @accessnow.org's @natynettle.bsky.social, @mdedora.bsky.social, & Rand Hammoud on 🇺🇸ICE's contract with #spyware vendor Paragon Solutions.
👇👇👇
👇👇👇
Great News! 👏
Apple announced they will be donating 1000 iPhone 17s with the much more secure Memory Integrity Enforcement to high-risk users!
Another meaningful step that Apple is taking to protect journalists, activists & dissidents from commercial spyware! 1/
security.apple.com/blog/apple-s...
Apple announced they will be donating 1000 iPhone 17s with the much more secure Memory Integrity Enforcement to high-risk users!
Another meaningful step that Apple is taking to protect journalists, activists & dissidents from commercial spyware! 1/
security.apple.com/blog/apple-s...
October 13, 2025 at 9:59 AM
Great News! 👏
Apple announced they will be donating 1000 iPhone 17s with the much more secure Memory Integrity Enforcement to high-risk users!
Another meaningful step that Apple is taking to protect journalists, activists & dissidents from commercial spyware! 1/
security.apple.com/blog/apple-s...
Apple announced they will be donating 1000 iPhone 17s with the much more secure Memory Integrity Enforcement to high-risk users!
Another meaningful step that Apple is taking to protect journalists, activists & dissidents from commercial spyware! 1/
security.apple.com/blog/apple-s...
A highly concerning development.
NSO and its customers have been targeting U.S. companies like WhatsApp and government officials in violation of U.S. laws and national security.
It should not be rewarded with American investments.
NSO and its customers have been targeting U.S. companies like WhatsApp and government officials in violation of U.S. laws and national security.
It should not be rewarded with American investments.
SCOOP: Spyware maker NSO Group confirmed to us that the company has been acquired by a U.S. investment group.
NSO's spokesperson said the group "has invested tens of millions of dollars in the company and has acquired controlling ownership," but declined to say who is behind the investment.
NSO's spokesperson said the group "has invested tens of millions of dollars in the company and has acquired controlling ownership," but declined to say who is behind the investment.
Spyware maker NSO Group confirms acquisition by US investors | TechCrunch
NSO Group confirmed to TechCrunch that an unnamed group of American investors has taken “controlling ownership” of the surveillance tech maker.
techcrunch.com
October 10, 2025 at 4:59 PM
A highly concerning development.
NSO and its customers have been targeting U.S. companies like WhatsApp and government officials in violation of U.S. laws and national security.
It should not be rewarded with American investments.
NSO and its customers have been targeting U.S. companies like WhatsApp and government officials in violation of U.S. laws and national security.
It should not be rewarded with American investments.
Reposted by Natalia Krapiva 🕊️👩🏻💻
In English: www.calcalistech.com/ctechnews/ar...
🚨Hollywood producer Robert Simonds of STX Entertainment, together with a group of 🇺🇸US private investors, has taken over #spyware vendor NSO Group to “save it from debt and help rescue it from the US Dept. of Commerce’s blacklisting,” 🇮🇱 business outlet Globes reports.
www.globes.co.il/news/article...
www.globes.co.il/news/article...
חוב של מאות מיליונים נמחק: הניסיון החדש להציל את NSO | בלעדי
www.globes.co.il
October 10, 2025 at 6:31 AM
In English: www.calcalistech.com/ctechnews/ar...
Reposted by Natalia Krapiva 🕊️👩🏻💻
With the mercenary spyware industry booming, Apple VP Ivan Krstić tells WIRED that the company is also offering bonuses that could bring the max total reward for iPhone exploits to $5 million. www.wired.com/story/apple-...
Apple Announces $2 Million Bug Bounty Reward for the Most Dangerous Exploits
With the mercenary spyware industry booming, Apple VP Ivan Krstić tells WIRED that the company is also offering bonuses that could bring the max total reward for iPhone exploits to $5 million.
www.wired.com
October 10, 2025 at 9:21 AM
With the mercenary spyware industry booming, Apple VP Ivan Krstić tells WIRED that the company is also offering bonuses that could bring the max total reward for iPhone exploits to $5 million. www.wired.com/story/apple-...
Reposted by Natalia Krapiva 🕊️👩🏻💻
[9/10] “It is very concerning that EU bodies' and member states' 💶money may be going into funding the spyware industry,” says @accessnow.org's @natynettle.bsky.social. “This in turn breeds corruption and abuse. There should be strict scrutiny applied to these types of investments.”
September 16, 2025 at 5:34 AM
[9/10] “It is very concerning that EU bodies' and member states' 💶money may be going into funding the spyware industry,” says @accessnow.org's @natynettle.bsky.social. “This in turn breeds corruption and abuse. There should be strict scrutiny applied to these types of investments.”
⚖️ 🔍 My new op-ed for @justsecurity.org + @atlanticcouncil.bsky.social about the opportunities & dangers of discovery in U.S. spyware litigation
Civil litigation discovery is a double-edged sword: it facilitates fact-finding but can also expose sensitive data, threaten security, and undermine privacy.
This op-ed by @natynettle.bsky.social discusses important lessons for advocacy experts 🔽 www.justsecurity.org/118409/disco...
This op-ed by @natynettle.bsky.social discusses important lessons for advocacy experts 🔽 www.justsecurity.org/118409/disco...
Discovery in U.S. Spyware Litigation: A Double-Edged Sword?
Despite its inherent risks, civil society and policymakers can learn how to benefit from the discovery process in spyware cases.
www.justsecurity.org
August 19, 2025 at 5:47 PM
⚖️ 🔍 My new op-ed for @justsecurity.org + @atlanticcouncil.bsky.social about the opportunities & dangers of discovery in U.S. spyware litigation
Spoke to @businessinsider.com about Russia's wide-scale internet shutdowns and their devastating effect on the regular people and the country's digital economy.
www.businessinsider.com/russia-econo...
www.businessinsider.com/russia-econo...
Russia has been cutting the internet to stop drones — and it's driving a cash comeback
Internet outages have surged in recent months, from 69 incidents in May to 662 in June and 2,099 in July.
www.businessinsider.com
August 14, 2025 at 6:32 PM
Spoke to @businessinsider.com about Russia's wide-scale internet shutdowns and their devastating effect on the regular people and the country's digital economy.
www.businessinsider.com/russia-econo...
www.businessinsider.com/russia-econo...
⚖️ An important ECtHR ruling that some may have missed:
The Court ruled that Russia breached Free Expression rights by imposing excessive fines on Google for failure to remove YouTube channels & videos critical of the gov + suspending sanctioned pro-gov Tsargrad TV accounts
The Court ruled that Russia breached Free Expression rights by imposing excessive fines on Google for failure to remove YouTube channels & videos critical of the gov + suspending sanctioned pro-gov Tsargrad TV accounts
July 22, 2025 at 8:29 PM
⚖️ An important ECtHR ruling that some may have missed:
The Court ruled that Russia breached Free Expression rights by imposing excessive fines on Google for failure to remove YouTube channels & videos critical of the gov + suspending sanctioned pro-gov Tsargrad TV accounts
The Court ruled that Russia breached Free Expression rights by imposing excessive fines on Google for failure to remove YouTube channels & videos critical of the gov + suspending sanctioned pro-gov Tsargrad TV accounts
Reposted by Natalia Krapiva 🕊️👩🏻💻
Das israelische Staatstrojaner-Unternehmen Paragon hat auch eine GmbH in Deutschland. Die Bundesregierung verweigert eine Antwort, ob deutsche Behörden mit diesen Firmen in Kontakt sind. Gefragt hatte @donatavogtschmidt.bsky.social. dserver.bundestag.de/btd/21/004/2...
June 26, 2025 at 8:39 AM
Das israelische Staatstrojaner-Unternehmen Paragon hat auch eine GmbH in Deutschland. Die Bundesregierung verweigert eine Antwort, ob deutsche Behörden mit diesen Firmen in Kontakt sind. Gefragt hatte @donatavogtschmidt.bsky.social. dserver.bundestag.de/btd/21/004/2...
Incredible news!
⚡ Belarus has freed 14 political prisoners, including Siarhei Tsikhanouski, husband of opposition leader Sviatlana Tsikhanouskaya. The release follows a meeting between Alexander Lukashenko and U.S. envoy Keith Kellogg.
meduza.io/en/news/2025...
meduza.io/en/news/2025...
Belarus releases Siarhei Tsikhanouski and 13 other political prisoners after Lukashenko meets with Trump envoy — Meduza
The Belarusian authorities have released 14 political prisoners, including Siarhei Tsikhanouski, the husband of opposition leader Sviatlana Tsikhanouskaya, according to the newspaper Nasha Niva.
meduza.io
June 21, 2025 at 3:14 PM
Incredible news!
Reposted by Natalia Krapiva 🕊️👩🏻💻
In Belarus, the husband of opposition leader Sviatlana Tsikhanouskaya,Syarhey, has been released,along with several other prisoners
They had been sentenced following the attempted overthrow of Lukashenko in 2020
Their release coincided with the visit of Kellogg to Belarus
They had been sentenced following the attempted overthrow of Lukashenko in 2020
Their release coincided with the visit of Kellogg to Belarus
June 21, 2025 at 2:33 PM
In Belarus, the husband of opposition leader Sviatlana Tsikhanouskaya,Syarhey, has been released,along with several other prisoners
They had been sentenced following the attempted overthrow of Lukashenko in 2020
Their release coincided with the visit of Kellogg to Belarus
They had been sentenced following the attempted overthrow of Lukashenko in 2020
Their release coincided with the visit of Kellogg to Belarus
Russian hackers continue targeting civil society with phishing.
Excellent new investigation by @citizenlab.ca and Google uncovers sophisticated phishing attack against prominent Russia expert Keir Giles. The hackers were impersonating US State Department.
citizenlab.ca/2025/06/russ...
Excellent new investigation by @citizenlab.ca and Google uncovers sophisticated phishing attack against prominent Russia expert Keir Giles. The hackers were impersonating US State Department.
citizenlab.ca/2025/06/russ...
Same Sea, New Phish: Russian Government-Linked Social Engineering Targets App-Specific Passwords - The Citizen Lab
Keir Giles, a prominent expert on Russia, was targeted with a new form of social-engineering attack that leverages App-Specific Passwords. Google links the operation to UNC6293, a Russian state-backed...
citizenlab.ca
June 18, 2025 at 6:00 PM
Russian hackers continue targeting civil society with phishing.
Excellent new investigation by @citizenlab.ca and Google uncovers sophisticated phishing attack against prominent Russia expert Keir Giles. The hackers were impersonating US State Department.
citizenlab.ca/2025/06/russ...
Excellent new investigation by @citizenlab.ca and Google uncovers sophisticated phishing attack against prominent Russia expert Keir Giles. The hackers were impersonating US State Department.
citizenlab.ca/2025/06/russ...
Reposted by Natalia Krapiva 🕊️👩🏻💻
New: *Another* Italian journalist was targeted using Paragon’s spyware, per @citizenlab.ca
www.reuters.com/business/med...
www.reuters.com/business/med...
Second Italian journalist targeted with Paragon spyware, watchdog group says
A second Italian journalist was recently targeted by software made by U.S.-owned surveillance company Paragon, internet watchdog group Citizen Lab said, raising new questions about a surveillance scandal that has already led Prime Minister Giorgia Meloni's government and Paragon to part ways.
www.reuters.com
June 12, 2025 at 12:52 PM
New: *Another* Italian journalist was targeted using Paragon’s spyware, per @citizenlab.ca
www.reuters.com/business/med...
www.reuters.com/business/med...
New bombshell report from Citizen Lab confirming with high confidence that Italian Fanpage.it journalist Ciro Pellegrino + anonymous European journalist were targeted with Paragon’s Graphite mercenary spyware.
This scandal is not going away…
citizenlab.ca/2025/06/firs...
This scandal is not going away…
citizenlab.ca/2025/06/firs...
Graphite Caught: First Forensic Confirmation of Paragon’s iOS Mercenary Spyware Finds Journalists Targeted - The Citizen Lab
We conducted a forensic analysis of devices belonging to two journalists who were notified by Apple that they were targeted with advanced spyware.
citizenlab.ca
June 12, 2025 at 12:13 PM
New bombshell report from Citizen Lab confirming with high confidence that Italian Fanpage.it journalist Ciro Pellegrino + anonymous European journalist were targeted with Paragon’s Graphite mercenary spyware.
This scandal is not going away…
citizenlab.ca/2025/06/firs...
This scandal is not going away…
citizenlab.ca/2025/06/firs...
Reposted by Natalia Krapiva 🕊️👩🏻💻
Various agencies are in possession of lists of confirmed or potential victims, but it’s not clear if the tallies are consistent. CISA, for instance, has a list of both telecom and IT companies, but an FBI tabulation shows different entities.
www.nextgov.com/cybersecurit...
www.nextgov.com/cybersecurit...
US agencies assessed Chinese telecom hackers likely hit data center and residential internet providers
Data center giant Digital Realty and mass media titan Comcast were documented as likely victims of the Salt Typhoon cyberespionage group, people familiar say, marking a potentially major expansion of ...
www.nextgov.com
June 9, 2025 at 5:20 PM
Various agencies are in possession of lists of confirmed or potential victims, but it’s not clear if the tallies are consistent. CISA, for instance, has a list of both telecom and IT companies, but an FBI tabulation shows different entities.
www.nextgov.com/cybersecurit...
www.nextgov.com/cybersecurit...
Spoke to @suzannesmalley.bsky.social about the ongoing Paragon spyware scandal in Italy.
If Paragon indeed offered help investigating Francesco Cancellato’s case and Italian gov refused it, it puts the conclusions of the COPASIR report under question…
If Paragon indeed offered help investigating Francesco Cancellato’s case and Italian gov refused it, it puts the conclusions of the COPASIR report under question…
For 1st time spyware co publicly ends contract with a govt client for abuses. Paragon: It cut ties w/ Italy bc officials wouldn't let it independently verify intel agencies didn't use its product to hack journalist. Govt had said it found no evidence journo was hacked
therecord.media/paragon-spyw...
therecord.media/paragon-spyw...
Spyware maker cuts ties with Italy after government refused audit into hack of journalist’s phone
Israel-based spyware maker Paragon and Italy's government had a falling out over the company's offer to help investigate what happened on journalist Francesco Cancellato's phone.
therecord.media
June 10, 2025 at 12:02 AM
Spoke to @suzannesmalley.bsky.social about the ongoing Paragon spyware scandal in Italy.
If Paragon indeed offered help investigating Francesco Cancellato’s case and Italian gov refused it, it puts the conclusions of the COPASIR report under question…
If Paragon indeed offered help investigating Francesco Cancellato’s case and Italian gov refused it, it puts the conclusions of the COPASIR report under question…
Russian authorities imposed a wide scale mobile #internetshutdowns 🛜 in 30+ regions of Russia during the WWII Victory Day celebrations.
Here is the statement from the #KeepItOn coalition
www.accessnow.org/press-releas...
Here is the statement from the #KeepItOn coalition
www.accessnow.org/press-releas...
#KeepItOn: Kremlin Must End Internet Shutdowns at National Events
The undersigned strongly condemn the internet shutdowns imposed by Russian authorities during the 80th anniversary of World War II victory.
www.accessnow.org
May 12, 2025 at 7:52 PM
Russian authorities imposed a wide scale mobile #internetshutdowns 🛜 in 30+ regions of Russia during the WWII Victory Day celebrations.
Here is the statement from the #KeepItOn coalition
www.accessnow.org/press-releas...
Here is the statement from the #KeepItOn coalition
www.accessnow.org/press-releas...
NSO to pay almost 168 million in damages!
Congrats to WhatsApp on this historic (yes, historic) jury verdict against NSO Group!
This is also a win for all the researchers, advocates & victims who have been tirelessly exposing NSO's abuses & advocating for justice!
www.accessnow.org/press-releas...
Congrats to WhatsApp on this historic (yes, historic) jury verdict against NSO Group!
This is also a win for all the researchers, advocates & victims who have been tirelessly exposing NSO's abuses & advocating for justice!
www.accessnow.org/press-releas...
NSO Fined $168 Million for Pegasus Spyware Attack on WhatsApp
In a landmark verdict, NSO Group must pay almost $168 million in damages for using Pegasus spyware to target WhatsApp.
www.accessnow.org
May 6, 2025 at 10:45 PM
NSO to pay almost 168 million in damages!
Congrats to WhatsApp on this historic (yes, historic) jury verdict against NSO Group!
This is also a win for all the researchers, advocates & victims who have been tirelessly exposing NSO's abuses & advocating for justice!
www.accessnow.org/press-releas...
Congrats to WhatsApp on this historic (yes, historic) jury verdict against NSO Group!
This is also a win for all the researchers, advocates & victims who have been tirelessly exposing NSO's abuses & advocating for justice!
www.accessnow.org/press-releas...
Reposted by Natalia Krapiva 🕊️👩🏻💻
Here is a screenshot the hacker provided of their access to TeleMessage's systems. This was a list of Customs and Border Protection officials. I called a bunch of them, confirmed the numbers do belong to CBP officials www.404media.co/the-signal-c...
May 4, 2025 at 10:36 PM
Here is a screenshot the hacker provided of their access to TeleMessage's systems. This was a list of Customs and Border Protection officials. I called a bunch of them, confirmed the numbers do belong to CBP officials www.404media.co/the-signal-c...