Overview
- Investigative partners published leaked internal files, marketing decks and training footage, with technical analysis by Amnesty and corroboration from Google and Recorded Future.
- Researchers detail a zero-click infection system dubbed Aladdin that delivers exploits via targeted mobile ads routed through shell companies across multiple countries.
- Amnesty says leaked footage shows Intellexa staff remotely accessing customer Predator systems via tools like TeamViewer, exposing victims’ photos, messages and other data.
- Amnesty reports a 2025 Predator attempt against a human rights lawyer in Pakistan, while Pakistani officials publicly reject the findings as false.
- Google links Intellexa to extensive mobile zero-day use and says ad partners shut down identified accounts, as Recorded Future tracks ongoing Predator activity including in Iraq.