Attacks in Lebanon put spotlight on Israel’s cybersecurity activities

By Abdulkadir Gunyol

ISTANBUL (AA) - A recent cyberattack in Lebanon has reignited discussions about Israel’s history of cyber operations, such as the Stuxnet virus and the Pegasus Project.

At least 37 people were killed and more than 3,250, including children and women, were injured as “pagers” and “ICOM” wireless communication devices exploded Tuesday and Wednesday in Lebanon.

Lebanese officials have blamed Israel for the explosions of the devices that were reportedly used by Hezbollah.

Faik Tanrikulu, a lecturer at Istanbul Medipol University, told Anadolu that Israel is a major global player in cybersecurity, frequently ranking high in global innovation indices.

Israel has around 450 cybersecurity companies, making it the second-largest country in the sector after the US, said Tanrikulu.

There has been no statement by Israeli authorities about the attacks, though Tel Aviv is known for conducting attacks of a similar nature.

“It has built a comprehensive cyber ecosystem through state-backed projects and private sector cooperation, investing heavily in high-tech and cyber defense,” he said.

Tanrikulu emphasized that Israel’s focus on cybersecurity began early, recognizing its importance as a critical tool.

He noted that Unit 8200, an elite division of the Israel Defense Forces (IDF), played a pioneering role in Israel’s cybersecurity advancements and many of the unit’s veterans have transferred their knowledge to the civilian sector, leading to innovations in commercial cybersecurity.

- Stuxnet hit Iran's nuclear program

One of the most prominent examples of Israeli cyberactivity was the 2010 Stuxnet virus, which targeted Iran’s nuclear program, according to Tanrikulu.

The virus was designed to sabotage centrifuges at the Natanz nuclear facility, he said, adding that Stuxnet is one of the first concrete examples that demonstrated the effectiveness and destructive potential of cyberattacks.

- Pegasus Spyware scandal

Tanrikulu highlighted the widespread effect of Israel's Pegasus spyware, developed by the NSO Group.

“Pegasus can infiltrate targeted individuals' smartphones, gaining access to personal data such as messages, emails, photos and even live conversations. The 2021 Pegasus Project investigation revealed that over 50,000 phone numbers worldwide were monitored by this software, causing a major scandal,” said Tanrikulu

He pointed out that an investigation said targets included French President Emmanuel Macron, associates of slain Saudi journalist Jamal Khashoggi and opposition leaders in India.

The scandal led to the US blacklisting the NSO Group and legal action from companies like Apple and WhatsApp, he said.

The use of Pegasus to spy on journalists, activists and politicians heightened concerns about cybersecurity and privacy, he said.

- National cybersecurity strategic necessity

Tanrikulu stressed that cybersecurity has become a strategic necessity for nations, warning that digital attacks now target critical infrastructures, banking systems, energy grids, defense mechanisms and even election processes.

In Türkiye, efforts are being made to bolster cybersecurity, with defense industry companies like ASELSAN, TUBITAK and HAVELSAN developing solutions, he noted.

Tanrikulu urged, however, a more comprehensive national strategy, calling for mobilization to address the growing threats in the digital age.

“We need to prepare our public institutions and private sector for the threats of this new era. Time is working against us, so swift action is essential,” he said.

He referenced an update error in the CrowdStrike security software, which caused disruptions at many companies; and issues with Israel’s Heron UAVs, which Türkiye had leased.

The incidents underscore the dangers of relying on foreign technologies in critical sectors, said Tanrikulu.

Countries like China are accelerating the transition to domestic software in key industries, and Türkiye should follow a similar strategy, he added.