Fresh Europe news is raising serious questions about democratic oversight inside the European Union. A former member of the European Parliament who helped investigate the abuse of Pegasus spyware was himself reportedly hacked, according to a new forensic report that is likely to fuel concern across Brussels, Athens and beyond.
Citizen Lab, the Toronto-based digital rights research group, said the iPhone of Greek investigative journalist and former MEP Stelios Kouloglou was infected with Pegasus at least three times in 2022 and 2023. The alleged infections happened while he was serving on the European Parliament’s PEGA Committee, which had been created to examine the illegal use of Pegasus and other commercial spyware inside the bloc.
Europe news: Former MEP reportedly targeted by Pegasus during inquiry
According to the report, the intrusions took place while Kouloglou was in Athens and Brussels. That timing is especially significant because it overlaps with his role on the committee responsible for scrutinising spyware abuse in the EU.
Citizen Lab said Apple later sent threat notifications warning of possible spyware activity, though those alerts reportedly arrived months after each suspected compromise. Kouloglou then asked the research group to carry out a forensic review of his device.
The findings add to a growing list of irish news, ireland news and broader European discussions about privacy, cybersecurity and the risks facing journalists, lawmakers and civil society figures in democratic states.
- Who was affected? Former Greek MEP and journalist Stelios Kouloglou
- What tool was used? Pegasus spyware, linked to Israel’s NSO Group
- When did it happen? At least three times in 2022 and 2023
- Why does it matter? He was investigating spyware abuse at the time
Why the case matters for the EU
Citizen Lab warned that any compromise of a PEGA Committee member could have exposed confidential communications, internal parliamentary exchanges and sensitive material connected to the committee’s work. In practical terms, that means people under scrutiny could potentially have gained insight into the investigators themselves.
That possibility strikes at the heart of democratic accountability. If lawmakers examining unlawful surveillance can be surveilled in return, then parliamentary independence and oversight mechanisms may be far more vulnerable than many assumed.
Read more: latest Ireland breaking political news and security updates | in-depth Irish digital rights and media policy coverage
What is Pegasus spyware and why is it so controversial?
Pegasus is a highly sophisticated surveillance tool developed by Israeli cyber firm NSO Group. Once installed on a device, it can give an operator covert access to messages, emails, photos, contacts and even a phone’s microphone and camera.
NSO Group has long argued that Pegasus is intended for lawful use by government agencies fighting serious crime and terrorism. However, repeated investigations over recent years have linked the spyware to alleged targeting of journalists, activists, dissidents, lawyers and political figures.
This latest Europe news report reinforces concerns that the commercial spyware market has outpaced effective legal and political controls.
Was Greece blamed?
Citizen Lab did not attribute the attack to a specific government. Importantly, the researchers said they found no evidence suggesting the Greek government was responsible for the hacking of Kouloglou’s device.
That leaves major unanswered questions. Who had access to the spyware? Who selected the target? And what information, if any, was extracted during the alleged infections?
Political and legal pressure is likely to grow
The case is expected to intensify pressure on European institutions to tighten rules around spyware procurement, deployment and oversight. Rights advocates say the issue goes far beyond one phone or one politician.
Rand Hammoud of the Center for Democracy and Technology Europe said the reported targeting should alarm anyone concerned with democracy, fundamental rights and rule of law standards in Europe. German MEP Hannah Neumann, who also served on the PEGA Committee, called for an immediate investigation by the European Parliament and argued that spyware weakens rather than protects democratic systems.
NSO Group did not immediately comment on the latest findings. The company has previously said it vets clients carefully and has cut off users found to have misused its technology.
The company has also faced legal and diplomatic pressure elsewhere:
- The US government blacklisted NSO Group in 2021.
- A US judge later barred the company from targeting WhatsApp.
- European scrutiny has continued amid repeated spyware abuse revelations.
Explore more: European affairs analysis and long-tail Ireland policy insights | best Ireland news coverage on privacy, democracy and EU institutions
FAQs
Who is Stelios Kouloglou?
He is a Greek investigative journalist and former member of the European Parliament who served from 2015 to 2024.
What is the PEGA Committee?
It is a special European Parliament committee formed in 2022 to investigate the illegal use of Pegasus and other spyware tools across the EU.
Did researchers say who carried out the hack?
No. Citizen Lab said it did not identify the specific actor behind the spyware infections.
Why is this story important for Ireland and Europe?
For readers following ireland news, irish news and wider EU governance, the case highlights how surveillance technology can threaten journalism, political independence and trust in democratic institutions across borders.
Conclusion
This Europe news story is more than another spyware headline. It is a warning about how advanced surveillance tools can undermine the very institutions meant to investigate abuse. If an EU lawmaker examining Pegasus could be targeted during that work, the debate over transparency, regulation and democratic safeguards is only going to intensify.




