Russia Used Cellebrite on Activist's iPhone After Sales Ban

Robert Moore · 2026-06-26

It's a story that raises serious questions about digital privacy and international sanctions. Russian authorities managed to break into the iPhone of detained opposition activist Andrey Pivovarov in June 2021. They used Cellebrite's UFED forensic tools to do it. The kicker? Cellebrite had said it would stop selling those tools to Russia and Belarus three months earlier. The finding came from the Citizen Lab, published on June 25. It's based on two pieces of evidence that rarely line up: traces left on the phone itself and an official Russian document. This isn't just a tech glitch. It's a reminder that when it comes to data extraction, the rules don't always apply the way we think. ### How Did They Get In? Cellebrite's UFED tools are designed to unlock and extract data from mobile devices. They're used by law enforcement worldwide. But after Russia's actions in early 2021, Cellebrite announced it would cut off sales to Russia and Belarus. That seemed like a clear stance. But the Citizen Lab's report shows that some of those tools still ended up in Russian hands. The phone belonged to Pivovarov, a prominent activist who was detained in Belarus in 2021. Russian authorities accessed his iPhone using UFED software. The traces on the phone matched the software's signature. And an official Russian document confirmed the use of such tools. It's a perfect storm of evidence that points to a loophole in the sales ban. ### The Bigger Picture for Privacy This case hits close to home for anyone who cares about digital privacy. If a company like Cellebrite can't fully control where its tools end up, what does that mean for the rest of us? Think about it: your phone holds everything from your bank details to your private messages. If the wrong people get access, it's not just a inconvenience. It's a threat to your safety. For antidetect browser users and digital privacy professionals, this is a wake-up call. Tools we rely on to stay anonymous can be compromised. And governments are getting better at bypassing those protections. The key is to stay ahead of the curve. That means using multiple layers of security, not just one tool. ### What This Means for Antidetect Browsers Antidetect browsers are built to mask your digital fingerprint. They change your browser's settings to make you look like a different user. But tools like Cellebrite's UFED target the device itself, not just the browser. So even if you're using the best antidetect browser, your phone's hardware can still be exploited. The lesson here is simple: don't put all your eggs in one basket. Use antidetect browsers for your online activities, but also secure your device with strong passwords, encryption, and regular updates. Think of it like locking your front door, but also setting an alarm system. One layer isn't enough anymore. ### Practical Steps to Protect Yourself Here are a few things you can do right now to reduce your risk: - **Update your software regularly.** Every update patches known vulnerabilities. Don't skip them. - **Use strong, unique passwords.** Don't reuse passwords across accounts. A password manager can help. - **Enable two-factor authentication.** This adds an extra layer of security beyond just your password. - **Limit app permissions.** Check what apps have access to your camera, microphone, and location. Turn off anything you don't need. - **Consider using a dedicated device for sensitive work.** If you're handling private data, keep it on a separate phone or computer. These steps won't make you invincible, but they'll make you a much harder target. And in the world of digital privacy, being a hard target is often enough to deter most threats. ### Final Thoughts The Cellebrite case shows that even when companies try to do the right thing, their tools can still fall into the wrong hands. For privacy professionals, it's a reminder to stay vigilant. The best antidetect browser can hide your online identity, but it can't protect you from device-level attacks. That takes a broader approach. So keep learning, keep updating your defenses, and never assume you're fully safe. The digital landscape changes fast, and the only way to stay ahead is to keep moving with it.