Hacking Team falls prey to hack attack. Why hackers get hacked.

Hacking Team hacked: Emails, passwords, and client lists were dumped online over the weekend as controversial Italian company Hacking Team found itself victim of a massive hack.

|
Kacper Pempel/Reuters/File
An illustration file picture shows a projection of binary code on a man holding a laptop computer, in an office in Warsaw June 24, 2013.

An Italian cybersecurity firm was hacked on a grand scale late on Sunday evening. While the full extent of the hack is not yet known, the company has seen over 400 gigabytes of company information shared online over the weekend.

The Milan-based company, ironically named Hacking Team, sells intrusion and surveillance tools to governments and law enforcement agencies around the world. The company is best known for developing the surveillance software Remote Control System (also known as RCS or daVinci).

The hack is alleged to have released internal company documents, email correspondence, personal passwords of employees and clients, and the underlying and the source code for some company products. The company also found its Twitter account hijacked today, publishing a link to the hacked file on BitTorrent, along with messages containing images of the compromised data.

“Since we have nothing to hide, we’re publishing all our emails, files and source code,” said posts on the company's Twitter account. The posts have since been deleted.

The company has clients around the world, but its lawful interception tools have also been linked with multiple cases of privacy invasion.

Numerous reports from Citizen Lab, a digital rights research group loosely affiliated with the University of Toronto, link Hacking Team software to the repression of minority and dissident groups, as well as journalists, in countries across the Middle East and Africa. A 2012 report found that Hacking Team software had been used against a group of journalists in Morocco, and in 2014 the Ethiopian government reportedly used the software to monitor Ethiopian journalists in the US and Europe.

The group Reporters Without Borders has listed the company on its “Enemies of the Internet” index.

One US privacy rights activist described the publication of the documents to Reuters as the “best transparency report ever.”

Among the documents released in the hack was a spreadsheet purporting to show the company’s active and inactive clients at the end of 2014. The list included the FBI and US Drug Enforcement Administration, as well as police and state security organizations in countries that include Egypt, Kazakhstan, Nigeria, and Sudan – all countries with records of human rights abuses.

Hacking Team has repeatedly denied that it has ever done business with Sudan, and Sudan’s National Intelligence Security Service was one of two customers described as “not officially supported” in the spreadsheet. However, among the leaked documents is an invoice for 480,000 Euros to the same security service.

Other documents include an invoice for 58,000 Euros to Egypt for the company’s RCS Exploit Portal, according to CSO, and an invoice showing Ethiopia paid $1 million Birr (ETB) for the RCS, professional services, and communications equipment. The total value of the invoices is over 4.3 million Euros, according to CSO.

Company founder Christian Pozzi responded to the hack on Twitter early Monday morning. In a string of messages, Mr. Pozzi wrote that the company is working with police to find the perpetrators. 

“Most of what the attackers are claiming is simply not true,” he wrote. “The attackers are spreading lies about our company.”

Pozzi has since deleted his Twitter account, but an archive of the messages is available here. Hacking Team’s website, reportedly offline earlier today, was back online this afternoon.

This report includes material from Reuters.

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

QR Code to Hacking Team falls prey to hack attack. Why hackers get hacked.
Read this article in
https://www.csmonitor.com/World/Global-News/2015/0706/Hacking-Team-falls-prey-to-hack-attack.-Why-hackers-get-hacked
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe