The Congress lashed out at the Narendra Modi government on recent accusations of public surveillance through WhatsApp questioning which department purchased the Israeli software Pegasus and who gave allowed it to spy on journalists and activists.

Senior Congress leader Kapil Sibal took to Twitter and targeted the Centre saying, “Which wing of government purchased Pegasus”. He said, “Israeli NSO sold spyware Pegasus only to governments. Before WhatsApp answers, our government must tell us: Which wing of government purchased Pegasus, at what price, who handled its operations, who gave instructions for snooping and which other platforms are compromised.”

On Thursday, WhatsApp said it had informed several Indian users this week that they had been spied upon by Israeli spyware Pegasus among those globally targeted by unnamed entities, earlier this year. Those hit by the spyware included journalists, activists, lawyers and senior government officials.

Sibal’s remarks came a day after the government, under fire from journalists and the Opposition, demanded a clarification from WhatsApp and questioned why it had kept the information about spying on Indian citizens hidden from the Indian authorities despite recent meetings with the company CEO.

Earlier, on Friday former Congress president Rahul Gandhi and Congress General Secretary Priyanka Gandhi too tweeted on the issue. Priyanka Gandhi tweeted, “If the BJP or the government has engaged Israeli agencies to snoop into the phones of journalists, lawyers, activists and politicians, it is a gross violation of human rights and a scandal with grave ramifications on national security. Waiting for the government’s response.”

Congress leader Rahul Gandhi too tweeted on the matter and said, “The Govt seeking WhatsAap’s response on who bought Pegasus to spy on Indian citizens, is like Modi asking Dassault who made money on the sale of RAFALE jets to India!”

The Electronics and Information Technology Ministry had written to WhatsApp on Thursday seeking its response on the matter, a senior government official told news agency PTI. WhatsApp has been asked to submit its reply to the government by November 4.

The Congress called it “blatant illegal hacking” of phones and demanded a Supreme Court monitored probe in this case.

Facebook WhatsApp’s parent company has sued Israeli cybersecurity company NSO on Tuesday for allegedly using WhatsApp servers to spread malware to 1,400 users across 20 countries by spyware Pegasus, in April.
In a statement on Friday, Facebook-owned WhatsApp said it agrees with the strong demand made by the Indian government to explain the kind of breach to safeguard the privacy of millions of Indian citizens. It also claimed that it had informed the Indian government about the ‘security issue’ in May.

“Our highest priority is the privacy and security of WhatsApp users. In May, we quickly resolved a security issue and notified relevant Indian and international government authorities,” the WhatsApp statement said.

However, the government countered the WhatsApp claims saying that the information provided was “pure technical jargon”.

Government sources said WhatsApp had given information to CERT-IN, a government agency in May, but without any mention of Pegasus or the extent of the breach. It also insisted that the information shared was only about a technical vulnerability and had nothing to do with the fact that privacy of Indian users had been compromised.

To back its claim, a screenshot of the information shared with CERT-IN by WhatsApp was circulated by government sources.

WhatsApp snooping of human rights activists and journalists in India via an Israeli spyware called Pegasus has snowballed into a major political controversy. Pegasus allegedly exploited WhatsApp’s video calling system by installing the spyware via giving missed calls to snoop on 1,400 select users globally, including nearly 30-40 people in India.

The owner of Pegasus, Israel-based NSO Group, limits the sale of the spyware to state intelligence agencies and others as it has the ability to collect intimate data from a target device. Pegasus software can be installed on devices as “exploit links”. The Indian government has denied purchasing or planning to buy Pegasus from NSO Group.