According to a report by inside story (23 January 2023), an investigation by the Hellenic Data Protection Authority identified 40 text messages containing infected links sent to over 20 phone numbers, with the aim of illegally tracking citizens by infecting their mobile phones with the malicious Predator spyware. The independent authority’s investigation is still ongoing, which means that this number may increase.
These revelations follow the confirmed surveillance of Thanasis Koukakis and the targeting of PASOK President Nikos Androulakis with the same software.
Predator is a powerful surveillance tool, allowing its operator full and permanent access to the target device. It enables the extraction of important information such as passcodes, files, photos, contacts and web browsing history, and can take screenshots. The operator can also activate the device’s microphone and camera, making it possible to monitor any activity through or near the device, such as conversations taking place in the same room as the device.
In Greece no legislative framework has been passed that provides for the legal use of spyware software such as Predator. Furthermore, the basic law governing the operation of the National Intelligence Service (NIS) does not provide for the use of such software (Law 3649/2008 – Government Gazette 39/Α’/3.3.2008, as recently amended by 5002/2022 ). Therefore, the targeting and hacking of victims through Predator or any other similar spyware in Greece is illegal, whether done by the state authorities or by a private actor, and is in violation of Article 19 of the Constitution, which enshrines the absolute inviolability of communications.
The Greek government has denied any involvement with the use of Predator or any other malware, however they have yet to discover who is using Predator in Greece. Mounting evidence of illegal surveillance raises questions not only about the use of malicious software in Greece, but also about the modus operandi of the National Intelligence Service, for which the prime minister is institutionally responsible. Following his victory in the 2019 elections Kyriakos Mitsotakis placed the agency under his direct control (Official Gazette: Issue Α’/119/8.7.2019).
Although Article 19 of the Constitution guarantees the absolute inviolability of the privacy of communications, an investigation by the Hellenic Personal Data Protection Authority revealed the mass targeting of dozens of targets in Greece for the purpose of illegal monitoring through the malicious Predator spying software.
Bank Account number: 1100 0232 0016 560
IBAN: GR56 0140 1100 1100 0232 0016 560
BIC: CRBAGRAA
In a time where the very foundations of democracy are gradually being eroded by the rise of extreme nationalism, alt-right movements, the spread of disinformation and corporate capture, the efforts of organisations such as Vouliwatch are more relevant than ever.
We rely on the generosity of each and every one of you to continue with our efforts for more transparency and accounta
By financially supporting Vouliwatch you support our litigation strategy, our campaigns for transparency and accountability in the political system, the development of new civic tech tools, our research projects and last but not least our impartial and accurate