Google Flags Hazardous Hacking Tools Employed By LEading Surveillance Firms

Google unveiled revelations targeting several surveillance software companies on Tuesday, flagging their facilitation of hazardous hacking tools. The call comes as Google urges greater vigilance from the United States and its allies in curtailing the spyware industry's unchecked growth.

While surveillance firms often tout national security as their prime directive, Google's latest findings cast a shadow over their purported noble intentions, reported by Reuters. The report highlights instances where such technology, ostensibly intended for government use, has been wielded to breach the privacy of civil society members, political dissidents, and journalists over the past decade. Notably, the recent global exposé of NSO's Pegasus spyware, implicated in the surveillance of human rights defenders, has sparked intensified scrutiny of the industry.

'Private Sector Plays Pivotal Role'

In their report, Google researchers shed light not only on the infamous NSO but also on numerous smaller entities contributing to the proliferation of nefarious spy technology. The significance of these revelations is underscored by Google's unparalleled visibility into global hacking campaigns, owing to the breadth of its online ecosystem.

"The private sector now plays a pivotal role in the development of sophisticated hacking tools," remarked researchers from Google's TAG threat-hunting team, emphasising the alarming trend.

ALSO READ: Google Bard To Soon Be Renamed Gemini? Here's What A Leaked Changelog Is Claiming

Last year, the United States and several allied nations pledged to tackle the burgeoning surveillance software industry, following revelations of spyware targeting at least 50 US government personnel across 10 countries.

The spotlight fell on a roster of companies identified by Google, offering an array of services aimed at infiltrating mobile devices, often adapting to circumvent the latest security protocols of iOS and Android operating systems. Among these companies are Italian firms Cy4Gate and RCS Labs, Greek enterprise Intellexa, and lesser-known entities like Negg Group from Italy and Variston from Spain.

ALSO READ: Free Bard No More: Google May Start Charging Users For Bard Advance AI

While Negg Group markets itself as a cybersecurity entity, Google's investigation revealed its software's involvement in clandestine surveillance operations across Italy, Malaysia, and Kazakhstan. Similarly, Variston's software exploits vulnerabilities in popular browsers and iOS applications to infect user devices, a tactic also employed by another entity known as Protected AE, or Protect Electronic Systems.

Google's disclosure coincides with the United States' announcement of a stringent visa restriction policy targeting individuals associated with the misuse of commercial spyware. This move aims to disrupt the incentive structure fueling the unchecked expansion of spyware vendors.

"Restricting the operational scope of spyware vendors in the US aims to recalibrate the incentive structure that sustains their unchecked proliferation," stated Google in a press release.