Italy spyware – A report says Paragon Solutions has not responded to an Italian prosecutors’ information request in the Graphite spyware case—despite earlier promises to help.
Paragon’s stance in Italy’s spyware probe is turning into a test of accountability—at a time when governments and tech platforms are under pressure to explain what happened and who helped power the attacks.
The case traces back to last year. when WhatsApp and Apple notified people in Italy—including journalists and activists—that government spyware had targeted them.. WhatsApp pointed to Paragon Solutions. an Israeli-American surveillance technology provider. as the vendor behind a hacking campaign using its “Graphite” spyware.. Roughly 90 people worldwide were described as being targeted in that campaign. putting the issue squarely in the spotlight of both national and international cybersecurity scrutiny.
What matters now is the friction between Paragon and the legal process in Italy.. According to a report, Italian prosecutors sent a formal request for information to Paragon via the Israeli government.. But about a year after the investigations began, Paragon reportedly has not responded.. For victims and investigators. that non-engagement can slow forensics. complicate timelines. and leave key questions unanswered—especially in cases where the technical trail depends on cooperation from the toolmaker.
The broader scandal that unfolded in Italy did not start with paperwork.. It began with notifications that triggered outrage, criminal complaints, and a prosecutorial investigation.. After being informed of alleged spyware attacks, multiple victims filed complaints, and prosecutors moved forward.. Against that backdrop. Paragon had earlier publicly offered to assist with investigating whether a journalist was hacked and spied on using Graphite.
Instead of aligning with the investigation, Paragon is now described as refusing to cooperate.. Following the eruption of the scandal in Italy. the company publicly challenged the Italian government and said it had offered help that was rejected.. Paragon also canceled its contract with Italy’s two spy agencies. AISE and AISI. describing the decision as linked to the government’s refusal to accept its investigative offer.. Those actions made the dispute feel less like a technical dispute and more like a public fight over legitimacy.
That change—from offering help to reportedly not answering prosecutors—raises a practical question for anyone trying to understand how spyware accountability actually works: what happens after allegations move from screens and notifications into court?. In many legal systems, information access depends on cooperation by the entities that built, maintain, or distribute the tools.. When that cooperation is absent. investigations can become narrower. slower. or reliant on incomplete evidence—especially in complex cyber cases where details are often proprietary or restricted.
Paragon’s reported silence also lands in a wider geopolitical and legal pattern.. The report notes the possibility that Israeli government involvement could be part of why Paragon hasn’t responded.. In similar contexts involving surveillance vendors. governments can play an intermediary role—whether by facilitating compliance or by limiting what companies can disclose.. If that’s happening here. it underscores how spyware investigations often depend not just on technical evidence. but on the legal leverage and constraints between states.
For readers, the stakes are not abstract.. Spyware incidents can affect people’s work. safety. and trust in digital life—particularly when victims include journalists and activists whose reporting and advocacy may depend on secure communication.. The Italian victims named in this dispute include journalists Francesco Cancellato and Ciro Pellegrino. who were connected to the online news outlet Fanpage and whose phones were reported as hacked with Graphite.. Activists linked to Mediterranea Saving Humans. a nonprofit focused on rescuing migrants crossing the Mediterranean. were also part of the broader allegations.
The political dimension is equally important.. Italy’s government, under Prime Minister Giorgia Meloni, has denied hacking the two journalists.. At the same time, a research organization that investigates spyware misuse confirmed that both journalists were hacked using Graphite.. Inside Italy’s own oversight structures. the issue has produced mixed outcomes: a parliamentary committee overseeing the spy agencies concluded last June that targeting activists was lawful. but it also said it could not find evidence that Cancellato was targeted and did not investigate Pellegrino’s case.. Prosecutors later said forensic analysis confirmed Cancellato’s phone was hacked while they could not conclude the same for Pellegrino. leaving the investigation still open.
Why does this matter beyond Italy?. Paragon is not operating in a vacuum.. Spyware vendors have tried to position themselves differently in global markets—leaning on ethics narratives to distinguish themselves from competitors that have been tied to repeated controversies.. In that context, refusing cooperation with prosecutors can cut against the credibility such firms try to build.. It also sends a signal to governments. courts. and potential customers about what “support” might look like when legal scrutiny intensifies.
There’s also a market-level implication.. Paragon reportedly has an active contract in the United States with ICE. with law-enforcement officials stating that spyware is being used to counter terrorism and drug trafficking.. If investigations in one jurisdiction are met with non-cooperation in another. it raises the question of whether oversight mechanisms—parliamentary committees. prosecutors. and court systems—are equipped to demand timely answers from surveillance suppliers.
For now, the case is still unfolding, but the reported lack of response to prosecutors has already shifted the spotlight.. Italy’s probe may hinge on technical evidence. yet the outcome may also depend on something more basic: whether the companies that provided the tools will engage with the institutions tasked with investigating their use.. In spyware controversies, that engagement is often the difference between allegations and accountability.