Welcome to the ultimate clown show of corporate virtue signaling and empty public relations. It seems we have another classic case of a high-tech company claiming they are "standing with the current thing" while leaving the keys in the ignition for the bad guys. A new report from the Citizen Lab research unit at the University of Toronto has exposed how Russian authorities cracked the phone of political prisoner Andrei Pivovarov using tools made by the Israeli forensics firm Cellebrite. The absolute kicker? This whole phone-cracking operation happened months after Cellebrite loudly bragged to the media that they had totally terminated all their contracts with Russia. You seriously cannot make this stuff up.

Let’s look at the actual play-by-play here. Andrei Pivovarov, the director of the Open Russia organization, got nabbed by the Russian authorities in May 2021. He ended up doing a solid three years in the state prison system before finally getting traded in that massive, high-profile prisoner swap that also freed Wall Street Journal reporter Evan Gershkovich. But while Pivovarov was sitting in a cell, the Russian state police were busy going to town on his phone, using Cellebrite’s high-powered forensic tools to vacuum up his entire digital existence.

The Russian feds didn't just get a sneak peek; they got the whole damn prize package. According to the official prosecution documents handed over to Pivovarov during his trial, the state extracted everything: his complete contact list, his personal messages, and his private chats from supposedly secure apps like WhatsApp and Viber. This wasn't some minor privacy slip—it was a full-blown digital strip search that the state used to lock him up and build their entire criminal case against him.

Naturally, Pivovarov was less than thrilled, calling the hack a massive violation of his privacy that put his entire crew in danger. And he wasn't exaggerating. As soon as the feds started going through his contacts to build more cases, several of his colleagues realized they were compromised and had to instantly flee the country. To make matters worse, Citizen Lab pointed out that some of Pivovarov’s contacts were later targeted by Coldriver, a Russia-linked cyber espionage outfit. That’s what happens when you let the state get a hold of your digital Rolodex.

Citizen Lab stated with "high confidence" that Cellebrite’s tools were used in the hack. And it wasn’t some wild theory either; the Russian government literally handed Pivovarov the receipts in court, detailing the exact software and forensic methods they used to break into his device. So much for Cellebrite's big public announcement that they were stopping all sales and services to Russia and Belarus back in early 2021.