In September 2022, Reuters reported that more than a dozen senior Indonesian government and military officials were targeted with a form of spyware in 2021, including the country’s coordinating minister for economic affairs Airlangga Hartarto. Six of them told the news outlet that they had received a message from Apple telling them they were being "targeted by state-sponsored attackers." (A spokesperson for Airlangga’s ministry told Reuters the minister did not receive any notification from Apple about the attempted hack on his official email account.) They were targeted using ForcedEntry, a zero-click exploit previously identified by Citizen Lab as used by NSO Group to install Pegasus, but Reuters wrote that it was unable to identify who made the spyware used in the attacks.
A consortium of Indonesian media outlets reported in June 2023 that Pegasus has been used in Indonesia since 2018. According to their sources, several state agencies, among them the State Intelligence Agency (BIN), have been using the spyware in Indonesia. The news outlets also traced back product deliveries of NSO Group’s holding, Q Cyber Technologie Sarl, to a company owned by the family of the wife of the industry minister of Indonesia in 2020.