A recent report from Amnesty International reveals that NSO Group's spyware, Pegasus, was used in attempted hacks against two Serbian journalists from the Balkan Investigative Reporting Network. The journalists received phishing text messages leading to malicious domains linked to NSO's infrastructure. Amnesty's Security Lab has identified patterns in these attacks, suggesting that NSO is losing its ability to operate unnoticed. The ongoing scrutiny has highlighted the risks faced by journalists and activists globally, with Apple also notifying victims of spyware. NSO's continued sales to oppressive regimes raises serious concerns about operational security.