A Greek court has delivered a landmark sentence against the architect of one of Europe’s most brazen surveillance operations, sending the founder of a commercial spyware company to prison for orchestrating the wiretapping of politicians, journalists, and other prominent figures. The case marks the first time a spyware maker has been criminally convicted and imprisoned in a European Union member state, setting a precedent that reverberates far beyond Athens.
Felix Dousemetzis, the man behind the Predator spyware operation, was sentenced to prison in Greece after being found guilty of illegally intercepting the communications of elected officials and members of the press. The conviction stems from a years-long investigation into how Predator — a sophisticated surveillance tool capable of infiltrating smartphones, harvesting messages, activating cameras, and recording calls — was deployed against targets within Greece’s own democratic institutions, as reported by TechCrunch.
A Surveillance Operation That Targeted the Heart of Greek Democracy
The Predator spyware scandal first erupted into public view in 2022, when investigative journalists and cybersecurity researchers began uncovering evidence that the tool had been used to monitor opposition politicians, investigative reporters, and civil society figures in Greece. Among the confirmed targets were Nikos Androulakis, then the leader of the PASOK-KINAL opposition party and a member of the European Parliament, as well as Thanasis Koukakis, a financial journalist known for his reporting on banking corruption and economic malfeasance.
The revelations triggered a political earthquake in Greece. The scandal became intertwined with separate disclosures that Greece’s national intelligence service, the EYP, had also been conducting surveillance on some of the same individuals using lawful intercept tools — raising questions about whether the government had coordinated with or at minimum tolerated the deployment of Predator. Prime Minister Kyriakos Mitsotakis denied any knowledge of the spyware’s use, but the head of the EYP resigned, as did the prime minister’s chief of staff, who also happened to be his nephew. The political fallout was severe and prolonged, dominating Greek headlines for months and drawing scrutiny from the European Parliament.
Predator’s Global Footprint and the Intellexa Alliance
Predator was not a tool developed in isolation. It was the flagship product of Intellexa, a consortium of surveillance technology companies with corporate entities scattered across multiple jurisdictions, including Greece, Ireland, North Macedonia, and the United Arab Emirates. Intellexa was founded by Tal Dilian, a former Israeli military intelligence officer, and positioned itself as a competitor to NSO Group, the Israeli firm behind the notorious Pegasus spyware. Like Pegasus, Predator was marketed to government clients and intelligence agencies, but its proliferation raised alarms among human rights organizations and digital rights watchdogs.
Research by Citizen Lab at the University of Toronto and Amnesty International’s Security Lab documented Predator infections targeting individuals in numerous countries, including Egypt, Madagascar, Armenia, Indonesia, and several other nations with troubled human rights records. The U.S. government took notice as well: in 2023, the Biden administration placed Intellexa and its associated entities on the Commerce Department’s Entity List, effectively blacklisting the consortium from accessing American technology. The Treasury Department followed with sanctions against individuals linked to the Predator operation, citing the spyware’s role in undermining democratic governance and threatening the privacy and security of individuals worldwide.
The Criminal Trial: Building a Case Against a Spyware Maker
The Greek prosecution’s case was built on digital forensic evidence, telecommunications records, and testimony from victims whose devices were confirmed to have been infected with Predator. Prosecutors argued that Dousemetzis and his associates had operated a commercial wiretapping enterprise on Greek soil, deploying the spyware against domestic targets in violation of Greek and European privacy laws. The defense maintained that the technology was sold to authorized government clients and that the company bore no responsibility for how its tools were ultimately used — an argument that has become standard among commercial spyware vendors facing legal and regulatory pressure.
The court rejected that defense. In handing down the prison sentence, the judges emphasized that the manufacture, sale, and deployment of spyware against individuals without lawful authorization constitutes a criminal act under Greek law, regardless of whether the end user was a state agency. The ruling drew immediate praise from press freedom organizations. Reporters Without Borders called the verdict “a turning point in the fight against the abuse of surveillance technology in Europe,” while the Committee to Protect Journalists noted that it was among the first cases globally in which a spyware developer — rather than merely an operator — was held personally criminally liable.
Europe’s Reckoning With Commercial Surveillance
The Greek conviction arrives at a moment when European institutions are grappling with the widespread abuse of commercial spyware across the continent. A 2023 inquiry by the European Parliament’s PEGA Committee documented the use of Predator and Pegasus in multiple EU member states, including Poland, Hungary, Spain, and Greece. The committee’s final report called for a moratorium on the sale and use of commercial spyware within the EU until adequate legal safeguards could be established — a recommendation that has yet to be fully implemented.
In Poland, the newly elected government of Prime Minister Donald Tusk launched its own investigation into the previous administration’s use of Pegasus against opposition figures, lawyers, and prosecutors. In Spain, the so-called “CatalanGate” scandal revealed that dozens of Catalan independence supporters, including elected officials and their lawyers, had been targeted with Pegasus. Across the continent, the pattern has been consistent: commercial spyware tools, originally marketed as instruments for combating terrorism and serious crime, have been repurposed as weapons of political surveillance.
The Limits of Accountability and the Road Ahead
Despite the significance of the Greek verdict, experts caution that a single conviction does not resolve the structural problems that have allowed the commercial spyware industry to flourish. The corporate architecture of companies like Intellexa — with entities registered in multiple countries, opaque ownership structures, and sales conducted through intermediaries — makes comprehensive legal accountability exceptionally difficult. Tal Dilian, the founder of Intellexa, has not faced criminal charges in Greece and his current legal status remains a subject of ongoing reporting.
John Scott-Railton, a senior researcher at Citizen Lab who has spent years tracking Predator and similar tools, noted that the conviction is significant but insufficient on its own. “This is a meaningful step, but the spyware industry is global. One conviction in one country does not shut down a transnational surveillance enterprise,” he said in comments reported by multiple outlets covering the case. Scott-Railton and his colleagues have repeatedly called for coordinated international action, including export controls, sanctions, and the development of binding international norms governing the sale and use of surveillance technology.
What the Greek Precedent Means for the Spyware Industry
The prison sentence handed down in Athens sends an unambiguous signal to the commercial surveillance sector: the era of impunity may be drawing to a close. For years, spyware vendors have operated in a gray zone, selling powerful intrusion tools to governments while disclaiming responsibility for their misuse. The Greek court’s decision to hold a spyware maker personally accountable for the deployment of their product against specific victims represents a direct challenge to that business model.
The case also has implications for ongoing legal proceedings in other jurisdictions. In the United States, NSO Group is facing a civil lawsuit brought by WhatsApp, a subsidiary of Meta, which alleges that the company exploited vulnerabilities in the messaging platform to deliver Pegasus infections to approximately 1,400 users. A federal judge ruled in late 2024 that NSO Group could be held liable under U.S. computer fraud laws, a decision the company is appealing. Apple has also filed suit against NSO Group, seeking to bar the company from using any Apple products or services. These civil cases, combined with the Greek criminal conviction, are creating a web of legal risk that may deter investors and clients from engaging with the spyware industry.
Victims’ Voices and the Broader Stakes for Press Freedom
For the journalists and politicians who were targeted by Predator, the conviction offers a measure of justice — but also a reminder of the damage already done. Thanasis Koukakis, the Greek financial journalist confirmed as a Predator target, has spoken publicly about the chilling effect that surveillance has on investigative reporting. “When you know that your phone has been compromised, that someone has read every message and listened to every call, it changes the way you work. It changes the way you think,” Koukakis said in previous interviews with European media outlets.
Press freedom organizations have emphasized that the targeting of journalists with spyware is not merely a privacy violation but an attack on the public’s right to information. The ability of reporters to protect their sources — a cornerstone of investigative journalism — is fundamentally incompatible with the deployment of tools like Predator, which can extract the contents of encrypted messaging applications, access contact lists, and track a target’s physical location in real time. The Greek case, in this regard, is not just about one country or one company. It is about whether democratic societies will permit the unchecked proliferation of surveillance technology that can be turned against the very institutions — a free press, an independent opposition, an informed citizenry — that democracy requires to function.
The sentencing in Athens closes one chapter of the Predator saga, but the broader story is far from over. With commercial spyware firms continuing to operate across borders, and with demand from authoritarian and democratic governments alike showing little sign of abating, the question of how to regulate, restrict, and hold accountable the makers and users of these tools will remain one of the defining challenges for civil liberties and democratic governance in the years ahead.