Meta demands US government action against Israeli spyware firm NSO Group over alleged injunction violations

Meta Files Contempt Complaint in California Federal Court

Meta filed a contempt-of-court complaint in the Northern District of California against NSO Group. The filing directly accuses the Israeli firm of breaching the terms of a prior court order that prohibited targeting of WhatsApp users. Court records show Meta presented evidence of continued operations that violated the injunction's explicit restrictions on surveillance activities directed at the messaging platform.

The complaint centers on NSO Group's headquarters in Herzliya and its development of Pegasus spyware. Meta's legal team documented how the company's tools were deployed in ways that contravened the injunction's core prohibitions. This action marks a significant escalation in the ongoing dispute between the technology giant and the Israeli cyber firm.

Northern District of California proceedings now require NSO Group to respond to the specific allegations of noncompliance. Meta's submission includes technical data demonstrating the nature of the violations. The court will evaluate whether these actions constitute a direct breach of the established legal boundaries.

The 2025 Injunction vs. the 2021 Liability Ruling

The 2025 injunction established concrete prohibitions against NSO Group's targeting of WhatsApp users, creating enforceable restrictions that went beyond earlier determinations. This order specified operational limits on the company's spyware activities and imposed ongoing compliance requirements. The injunction addressed the practical application of prior findings by mandating cessation of certain surveillance practices.

In contrast, the 2021 liability ruling focused on establishing NSO Group's responsibility in the original dispute without imposing the same level of forward-looking operational constraints. That earlier decision confirmed liability but left room for continued activities under different parameters. The 2025 order built upon this foundation by translating the liability determination into specific behavioral mandates.

The distinction between these milestones shapes the current contempt proceedings. The injunction's detailed restrictions provide the measurable standards against which NSO Group's recent conduct is now judged. Meta's complaint relies on this progression from liability to prohibition to demonstrate the alleged violations.

Details of the Detected Spear-Phishing Operation

WhatsApp detected and blocked spear-phishing attempts that targeted users in Jordan and Lebanon. These operations involved sophisticated methods designed to compromise devices through the messaging application. The detection occurred through WhatsApp's internal security monitoring systems that flagged anomalous activity patterns.

The campaigns in Jordan and Lebanon represented direct attempts to exploit WhatsApp infrastructure for unauthorized access. NSO Group's Pegasus spyware capabilities were linked to these efforts through technical indicators identified during the blocking process. The geographic focus on these two countries highlighted the regional scope of the alleged activities.

WhatsApp's response involved immediate blocking measures that prevented the spear-phishing attempts from succeeding. The platform's security teams documented the technical signatures associated with NSO Group's tools. This detection process provided the evidentiary basis for Meta's subsequent court filing in the Northern District of California.

Meta's Demands: Contempt Finding and US Government Action

Meta is asking the court to hold NSO in contempt for the alleged violations of the 2025 injunction. The company seeks judicial enforcement measures that would impose penalties for noncompliance with the established order. This request includes demands for sanctions that reflect the seriousness of the breach allegations.

Alongside the contempt request, Meta demands increased US government pressure on NSO Group. The filing emphasizes the need for coordinated action that leverages existing regulatory frameworks to address the company's conduct. Meta positions this government involvement as essential to ensuring future compliance.

The demands connect directly to the 2021 blacklist imposed by the US Commerce Department. Meta argues that additional governmental measures would reinforce the injunction's effectiveness. The Northern District of California will consider these requests as part of its evaluation of the contempt complaint.

Israel's Defense Export Control Framework

Israel's Defense Ministry oversees export licenses for cyber companies including NSO Group. This regulatory structure governs the approval process for technology transfers and operational deployments abroad. The ministry's role ensures that exports align with national security and foreign policy objectives.

The licensing process administered by the Defense Ministry requires companies to demonstrate compliance with specific criteria before receiving authorization. NSO Group's Pegasus spyware falls under these controls due to its classification as a cyber intelligence tool. Oversight mechanisms include periodic reviews and conditions attached to approved licenses.

This framework intersects with US-Israel relations through bilateral agreements on defense technology exports. The Defense Ministry's decisions influence how Israeli firms navigate international regulatory environments. The current contempt proceedings highlight the interplay between domestic Israeli controls and US legal actions.

Legal Timeline: From 2019 Lawsuit to 2026 Contempt Filing

The original WhatsApp lawsuit was filed in 2019, initiating the legal process that led to subsequent rulings. This case established the foundation for examining NSO Group's activities in relation to the WhatsApp platform. The proceedings advanced through multiple stages in the Northern District of California.

The 2021 liability ruling confirmed NSO Group's responsibility, followed by the 2025 injunction that imposed specific operational restrictions. The June 2026 contempt complaint represents the latest development in this sequence. Each milestone built upon the previous one to create the current enforcement context.

Impact on Israel's Cyber Technology Sector

NSO Group's situation affects the broader Israeli cyber technology sector by drawing attention to export compliance requirements. Companies in Herzliya and other tech hubs face heightened scrutiny regarding their international operations. The contempt proceedings underscore the consequences of alleged violations within US jurisdiction.

US-Israel relations in the defense technology domain encounter additional complexity from the ongoing dispute. The 2021 blacklist and subsequent legal actions demonstrate how American regulatory decisions influence Israeli firms' market access. Israel's Defense Ministry must navigate these external pressures while maintaining its licensing authority.

The sector's export implications extend to future licensing decisions and international partnerships. Israeli cyber companies now operate under increased awareness of US court orders and their enforcement mechanisms. This environment shapes strategic planning for firms developing similar surveillance technologies.