Imagine finding out your government flew millions of dollars in cash out of the country on a private jet to buy a piece of cyber-weaponry. No paper trail. No budget approval. Just cold hard cash traded for the ability to turn any smartphone into a full-time spy.
That is exactly what Colombian President Gustavo Petro revealed when he publicly accused the previous administration of secretly buying Pegasus spyware from the Israeli firm NSO Group. He did not just claim his political campaign was targeted; he suggested the entire operation amounted to state-sponsored money laundering. Also making waves in this space: Why The Ajit Doval And Wang Yi Talks On Normalising India-china Ties Actually Matter This Time.
The story is a wild mix of high-stakes geopolitical drama, shadow finance, and zero-click hacking. It completely changes how we look at state surveillance in Latin America.
The Millions Flown From Bogota to Tel Aviv
The details of the transaction are bizarre. During a live televised broadcast, Petro broke protocol by reading from a highly classified document provided by Israel's financial intelligence unit. The report revealed that a representative from Colombia's police intelligence directorate, DIPOL, made a cash deposit of $5.5 million into NSO Group's account at Bank Hapoalim in Israel. Further insights on this are covered by NBC News.
A second cash installment followed, bringing the total contract value to $11 million.
The cash left Bogota by plane between June and September 2021. This timeline is incredibly important. It places the purchase right in the middle of widespread anti-government protests in Colombia and just months before the presidential election that brought Petro, the country's first leftist leader, to power.
Because the money never went through official national budget channels or the Credit Commission, there was absolutely no domestic record of it. Petro asked the obvious question. How does $11 million in cash leave state offices via a military airport without anyone noticing?
What Is Pegasus and Why Is It So Dangerous
To understand the panic in Bogota, you need to understand what Pegasus actually does. Unlike typical malware that requires you to click a sketchy link or download an infected file, Pegasus uses zero-click exploits. It slips into a phone without the user doing anything at all.
Once it infects a device, the attacker has total control. The software can silently:
- Download every text message, photo, and email
- Record voice calls and encrypted WhatsApp conversations
- Track real-time GPS location data
- Activate the phoneβs microphone and camera to listen to surrounding conversations
NSO Group has consistently maintained that it only sells its technology to vetted government agencies to combat terrorism and organized crime. But investigators around the world keep finding it on the devices of human rights defenders, journalists, and political opposition leaders.
A Growing Web of Espionage
This isn't a problem that vanished with the 2022 election. The fallout has continued to expand within the Colombian government. Acting Justice Minister Andres Idarraga recently revealed that forensic investigators found evidence suggesting his own phone had been hacked over 8,700 times using the Israeli spyware.
Idarraga was serving as Petro's anti-corruption czar and investigating military corruption when the tracking allegedly happened. Spies reportedly activated his camera and microphone 124 times, downloading gigabytes of data, including classified corruption complaints.
The political fallout has torn apart Colombia's diplomatic relationships. Petro used the scandal as a primary justification for cutting formal diplomatic ties with Israel, stating that he refused to respect confidentiality agreements or protect foreign intelligence data when he believed his citizens' constitutional rights were being stripped away.
The Real Agenda Behind Hidden Tech
When a government buys cyber-weapons off the books, accountability completely breaks down. There are no court orders, no judicial oversight, and no warrants. It turns state intelligence agencies into private enforcement tools for whoever happens to hold the keys at the time.
The Colombian Attorney General's Office has launched a deep forensic audit to track down where the software is currently located and who holds operational access. If a state can hide millions in cash to buy digital weapons, it can hide anything.
The next step for international watchdogs and local citizens isn't just watching the courts. It requires pushing for strict, transparent tracking of all state-level cyber procurement. If you want to protect your privacy, you have to start by demanding a clear paper trail for the tools meant to protect the state.
