Cellebrite Suspends Serbia Over Spyware Claims

Cellebrite Halts Technology Use in Serbia Amid Spyware Allegations

Cellebrite announced on Tuesday the suspension of its technology provision to Serbia. This action follows accusations that Serbian law enforcement and intelligence agencies utilized Cellebrite’s tools to gain access to the mobile devices of a journalist and an activist.

Subsequent to unlocking these devices, allegations surfaced regarding the installation of spyware. This development raises serious concerns about potential surveillance and privacy violations.

Amnesty International Report Details Alleged Hacking

A report released by Amnesty International in December 2024 detailed claims of Serbian police employing Cellebrite’s forensic tools to compromise the cellphones of a local journalist and an activist.

Following successful access, authorities allegedly deployed an Android spyware application, identified by Amnesty as Novispy, to maintain ongoing surveillance of the individuals.

Cellebrite's Response and Investigation

In an official statement, Cellebrite indicated that, “following a thorough review of the allegations presented in the December 2024 Amnesty International report, the company undertook specific investigative measures. These measures were conducted in alignment with our established ethics and integrity policies.”

The company determined that ceasing the use of its products by the implicated customer was the appropriate course of action at this juncture.

Customer Identity and Suspension Details

While Cellebrite refrained from explicitly naming the customer in its statement, the company acknowledged awareness of the nonprofit’s “findings concerning the deployment of surveillance technologies against civil society within Serbia” when initially responding to Amnesty’s report in December.

Victor Cooper, a spokesperson for Cellebrite, declined to provide further clarification when questioned by TechCrunch regarding the duration of the suspension – whether it is permanent or temporary – and the potential steps for customer reinstatement.

Calls for Investigation and Accountability

“The withdrawal of licenses from customers who have demonstrably misused the equipment for political purposes represents a crucial initial step,” stated Donncha Ó Cearbhaill, head of the Security Lab at Amnesty International.

Ó Cearbhaill further emphasized the urgent need for Serbian authorities to initiate a comprehensive and impartial investigation, hold those responsible accountable, provide redress to victims, and implement robust safeguards to prevent future abuses.

These actions are vital to protect civil liberties and ensure responsible use of powerful forensic technologies.