Hacking Team Loses Its Global License To Sell Spyware

Uploaded on 2016-04-20 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW

Hacking Team is in the news again - never a good thing for a company that’s supposed to be all about stealth and discretion.

The Italy-based Hacking Team, which sells surveillance and hacking tools to governments, suffered an embarrassing hack of its own in July 2015, when 500-GB of internal files, emails and its product source code were dumped online for all the world to see.

In recent months Hacking Team stayed mostly below the radar as it worked to rebuild its business. But the company was just dealt a major setback by the Italian Ministry of Economic Development (MISE), which regulates “dual-use” technologies, so-called because they can be used for both civilian and military purposes.

As first reported recently by the Italian newspaper Il Fatto Quotidiano, the ministry has revoked “with immediate effect” Hacking Team’s “global authorization” to sell its Remote Control System (RCS) spyware suite to a list of 46 countries, mostly outside of the European Union.

The Italian government’s ruling means Hacking Team will need an “individual license” to sell to any of those countries (only some of which are past or current Hacking Team customers), according to a report from Motherboard.

Eric Rabe, Hacking Team’s spokesperson, confirmed in a statement to Motherboard that the company’s global license had been revoked, but that Hacking Team still has a license to sell within the EU and “expects to be given approvals for sales to countries outside the EU.”

MISE told Motherboard that it was aware that in 2015 Hacking Team had exported its products to Malaysia, Egypt, Thailand, Kazakhstan, Vietnam, Lebanon and Brazil.

The ministry explained that “in light of changed political situations” in “one of” those countries, MISE and the Italian Foreign Affairs, Interior and Defense ministries decided Hacking Team would require “specific individual authorization.”

Hacking Team maintains that it does not sell its spyware to governments or government agencies where there is “objective evidence or credible concerns” of human rights violations.

The company also says it is fully compliant with export restrictions under the Wassenaar Arrangement – an international agreement regarding dual-use technologies – and it “reserves the right” to “suspend support” if customers violate the terms of their contracts.

In a report issued after last year’s Hacking Team breach, Privacy International said Hacking Team’s self-regulation is “not enough to ensure that their products are not used for human rights violations,” and recommended stronger export control regulations.

The Italian government revoking Hacking Team’s global license to sell spyware anywhere in the world, and requiring special authorization to deal with certain countries, appears to be a big step in that direction.

Naked Security: http://bit.ly/1VfSPSK

« The First Ghost Ship In The US Robotic Navy
German Police Catch Suspect in Global Cyber Crime Operation »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Sophos

Sophos

Sophos is a worldwide leader in next-generation cybersecurity, protecting more than 400,000 organizations of all sizes in more than 150 countries from today’s most advanced cyberthreats.

Nordic IT Security

Nordic IT Security

Nordic IT Security is a cyber security business forum in Scandinavia bringing together the converging worlds of IT, Cyber and Information Security.

Deductive Labs

Deductive Labs

Deductive Labs consulting services help customers with their technology, security and automation challenges.

The Open Group

The Open Group

The Open Group: Leading the development of open, vendor-neutral IT standards and certifications.

Genians

Genians

Genians provides the industry’s leading Network Access Control (NAC) solution, which ensures full visibility of all IP-enabled devices regardless of whether they are wired, wireless, or virtual.

OXO Cybersecurity Lab

OXO Cybersecurity Lab

OXO Cybersecurity Lab is the first dedicated cybersecurity incubator in the Central & Eastern Europe region.

Intersistemi Italia

Intersistemi Italia

Intersistemi is a leading Italian company in the field of information technology integration and digital transformation including cybersecurity.

Valency Networks

Valency Networks

Valency Networks provide cutting edge results in the areas of Vulnerability Assessment and Penetration Testing services for webapps, cloud apps, mobile apps and IT networks.

White Tuque

White Tuque

A new way to protect your organization. White Tuque is your partner in identifying threats, understanding your risk, and ensuring your business remains resilient.

AWARE7

AWARE7

IT security for human and machine. With the help of our products and services, we work with you to increase the IT security level of your organization.

Togggle

Togggle

Togggle offers seamless identity verification solutions and distributed infrastructure, enabling organizations to combat fraud and ensure compliance with data protection regulations.

Cytracom

Cytracom

Cytracom delivers powerful yet intuitive solutions that enable MSPs and ITSPs to meet the challenges of security, compliance, and connectivity.

Securafy

Securafy

At Securafy, we understand how important it is to have the right IT partner by your side. For over 30 years, we’ve helped businesses stay secure, connected, and compliant.

Cyber Compliance Watch

Cyber Compliance Watch

Free index and notification of main new cyber security publications (standards and regulations) from agencies and regulators.

MOBIA Technology Innovations

MOBIA Technology Innovations

MOBIA is a leading Canadian business transformation partner, helping businesses across industries evolve.

Black Breach

Black Breach

Black Breach experts protect your organization from cyber threats with military-grade AI-tooled cybersecurity solutions.