Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Security

A US Company Sold iPhone Hacking Tools To UAE Spies (technologyreview.com) 19

Posted by msmash from the closer-look dept.
An American cybersecurity company was behind a 2016 iPhone hack sold to a group of mercenaries and used by the United Arab Emirates. From a report: When the United Arab Emirates paid over $1.3 million for a powerful and stealthy iPhone hacking tool in 2016, the monarchy's spies -- and the American mercenary hackers they hired -- put it to immediate use. The tool exploited a flaw in Apple's iMessage app to enable hackers to completely take over a victim's iPhone. It was used against hundreds of targets in a vast campaign of surveillance and espionage whose victims included geopolitical rivals, dissidents, and human rights activists.

Documents filed by the US Justice Department on Tuesday detail how the sale was facilitated by a group of American mercenaries working for Abu Dhabi, without legal permission from Washington to do so. But the case documents do not reveal who sold the powerful iPhone exploit to the Emiratis. Two sources with knowledge of the matter have confirmed to MIT Technology Review that the exploit was developed and sold by an American firm named Accuvant. It merged several years ago with another security firm, and what remains is now part of a larger company called Optiv. News of the sale sheds new light on the exploit industry as well as the role played by American companies and mercenaries in the proliferation of powerful hacking capabilities around the world.
This discussion has been archived. No new comments can be posted.

A US Company Sold iPhone Hacking Tools To UAE Spies More

A US Company Sold iPhone Hacking Tools To UAE Spies

Comments Filter:

  • Maybe instead of monitoring for CSAM images (Score:3)

    by saloomy ( 2817221 ) on Friday September 17, 2021 @03:26PM (#61805247)
    Apple should be running integrity checks on OS components to make sure they aren't replaced by malicious variants.

    • I give up saying, secure your shit. Or don't buy an Apple or Huawei device

      • I give up saying, secure your shit. Or don't buy an Apple or Huawei device

        Right - Android is perfectly secure. It simply cannot be hacked.

        Saying stupid shit is a great way to look stupid.

  • Oliver North?
    I knew ya could!

  • Don't they have all special Counterintelligence crews that they put on every customer, to see if they can't find a reason NOT to sell their stuff to them?
    Preposterous!

    • But it's CYBERSECURITY! Now don't you just feel safe?

    • Don't they have all special Counterintelligence crews that they put on every customer, to see if they can't find a reason NOT to sell their stuff to them? Preposterous!

      Interesting - the summary says the perps were not Identified. The Justice department does though:

      https://www.justice.gov/opa/pr... [justice.gov]

  • We no longer feel that any other human is worth anything. The whole "red button that kills a random person for a million dollars" thing is tried and tested. I'd bet that at least 3/4 of the people in the world would push that button over and over for a couple bucks, just as these people did giving up victims for an unknown outcome.
    • Maybe there should be a slash pole "would you push the red button for a million?", And if you would take less, how little would it take for you to push the button?

      • I don't know if any slash poles have considered it, but we did have a slash poll that asked exactly that!

        I think it was decided we'd push it if they give a sandwich to CowboyNeal.

  • Sounds like a ITAR violation. (Score:3)

    by Gravis Zero ( 934156 ) on Friday September 17, 2021 @05:27PM (#61805571)

    They clearly knew this was restricted stuff and no doubt it falls under International Traffic in Arms Regulations (ITAR), so I say throw the book at them Hell, throw the rest of the shelf too because they've earned it. Sink the whole fucking company and then go after every person that made this happen.

    Either ITAR means something or it doesn't.

    • They clearly knew this was restricted stuff and no doubt it falls under International Traffic in Arms Regulations (ITAR), so I say throw the book at them Hell, throw the rest of the shelf too because they've earned it. Sink the whole fucking company and then go after every person that made this happen.

      Either ITAR means something or it doesn't.

      Apparently this is who and what it means: https://www.justice.gov/opa/pr... [justice.gov]

      • Re: (Score:2)

        by storkus ( 179708 )

        Whoptie-do: a mil & a half used to mean something; these guys could raise it by cracking someone's crypto wallet in a few minutes. Goes back to the whole Red Button thing: a million dollars for lots of activists dead or in a prison somewhere with the key thrown away. Pretty good deal for those they were working for.

Slashdot Top Deals

The Tao is like a glob pattern: used but never used up. It is like the extern void: filled with infinite possibilities.

Close