Hackers have been discovered selling counterfeit Pegasus spyware, utilizing the NSO Group's name for illicit financial gain on the dark web; this trend aligns with Apple's warning of 'mercenary spyware' attacks targeting iPhone users globally, showcasing a worrisome misuse of the infamous spyware's reputation. CloudSEK's research uncovered threat actors distributing fraudulent Pegasus source code and tools for hefty sums, employing standard templates to fool buyers, further elaborating on the sale of Pegasus HVNC with six unique samples exchanged for hundreds of thousands of dollars each shared in CloudSEK's technical report. The scammers are even resorting to spreading malware under the facade of Pegasus to compromise devices, and urging users to download malware; revealing a sophisticated approach to scamming and highlighting the importance of vigilance against deceptive digital threats
https://www.hackread.com/threat-actors-spoofing-pegasus-spyware-fake-code/