This article was created by
e-Governance Academy
Share this article!
Insights from CERT-EU threat overview touching on Pegasus spyware in Serbia
For cybersecurity professionals in the ever-evolving cyber landscape of the Western Balkans, maintaining a comprehensive understanding of the evolving threat landscape is strategically essential. In this context, the insights and intelligence provided by entities such as CERT-EU and the Computer Emergency Response Team for the EU institutions, bodies, and agencies offer significant value.
The recent revelation concerning targeting two journalists from the Balkan Investigative Reporting Network (BIRN) in Serbia with NSO Group’s Pegasus spyware in February 2025 underscores threats present within the region. As reported by Amnesty International on March 28th, this incident marks the third documented instance in two years where Pegasus spyware has been deployed against civil society actors in Serbia.
CERT-EU’s analysis of sophisticated threat actors and their techniques can provide a broader context for understanding the capabilities and potential vectors of tools like Pegasus. For cybersecurity specialists in the region, the information disseminated by CERT-EU provides a wider contextual understanding of prevailing threats and attacker behaviours. This macro-level intelligence enables a more nuanced and practical approach to risk management and security implementation when considered alongside specific regional threats such as the Pegasus incidents. Proactive engagement with threat intelligence resources, coupled with a heightened awareness of targeted attacks, is essential for strengthening the cybersecurity resilience of organisations and safeguarding critical assets within the Western Balkans.
CERT-EU’s proactive monitoring of cyberattacks targeting EU entities and their broader digital ecosystem, coupled with its in-depth analysis of threat actors, motivations, and methodologies, is a critical resource for proactive defence and incident response strategies. Their timely dissemination of reports and alerts empowers organisations to anticipate and mitigate potential cyber incidents, contributing to a more resilient European cybersecurity posture.
Follow CERT-EU for regular briefs about the threat landscape.
Read more:
CERT-EU “Cyber Brief 05-2025”
Amnesty International “Serbia: BIRN journalists targeted with Pegasus spyware”
