Surveillance Tech Firm 'Hacking Team' Breached

A surveillance tech firm known as Hacking Team, which has many high-profile government clients, is getting a taste of its own medicine.

The Italian company, which sells surveillance tools to government and law enforcement agencies, was hacked over the weekend. Attackers defaced the Hacking Team Twitter account and posted a link to a torrent file containing 400GB of the company's internal documents.

The data dump reveals details about Hacking Team's clients, source code, and email communications. Based on these internal documents, CSO reported that Hacking Team has customers in the U.S., Egypt, Ethiopia, Morocco, Nigeria, Sudan, Chile, Colombia, Ecuador, Honduras, Mexico, Panama, Azerbaijan, Kazakhstan, Malaysia, Mongolia, Singapore, South Korea, Thailand, Uzbekistan, Vietnam, Australia, Cyprus, Czech Republic, Germany, Hungary, Italy, Luxemburg, Poland, Russia, Spain, Switzerland, Bahrain, Oman, Saudi Arabia, and the UAE.

Screen shots of the leaked documents posted by CSO suggest that Hacking Team's U.S. clients include the FBI and Drug Enforcement Agency.

At this point, no person or group has taken responsibility for the attack, but as security expert Graham Cluley pointed out "this Milan-based company has no shortage of online enemies around the world." Reporters Without Borders included Hacking Team on its list of Enemies of the Internet due to its shady business practices and surveillance tool called DaVinci, which can apparently break encryption on emails, files, and Internet telephony protocols.

Though Hacking Team describes itself as a lawful maker of offensive technology, evidence is mounting that the company isn't being entirely truthful. The 400GB data cache, for instance, includes a contract with Sudan dated July 2, 2012 valued at 480,000 Euro.

"The link to Sudan is especially newsworthy as the company previously stated they've never done business with the nation," CSO notes. "There is a UN arms embargo on the Sudan, which is covered by EU and UK law. If they were doing business with the Sudanese government, Hacking Team could be in hot water."

Hacking Team has said it's working with law enforcement on the matter, and maintains that it has not done anything illegal.

"The people responsible for this will be arrested," one of the company's employees, Christian Pozzi, said, according to CSO. "We are working with the police at the moment."

"Don't believe everything you see," he added. "Most of what the attackers are claiming is simply not true...The attackers are spreading a lot of lies about our company that is simply not true. The torrent contains a virus."

About Our Expert

Angela Moscaritolo

Managing Editor, Consumer Electronics

My Experience

I'm PCMag's managing editor for consumer electronics, overseeing an experienced team of analysts covering smart home, home entertainment, wearables, fitness and health tech, and various other product categories. I have been with PCMag for more than 10 years, and in that time have written more than 6,000 articles and reviews for the site. I previously served as an analyst focused on smart home and wearable devices, and before that I was a reporter covering consumer tech news. I'm also a yoga instructor, and have been actively teaching group and private classes for nearly a decade.

Prior to joining PCMag, I was a reporter for SC Magazine, focusing on hackers and computer security. I earned a BS in journalism from West Virginia University, and started my career writing for newspapers in New Jersey, Pennsylvania, and West Virginia.

The Technology I Use

My little Florida beach bungalow is brimming with smart home tech. I have a smart speaker or display in every room, allowing me to control other connected devices by voice. The Nest Hub on my bedside table lets me set wake-up alarms, control my smart light bulbs, and set the temperature on my smart thermostat. I use the Amazon Echo Show 8 on my kitchen counter to browse recipes, reorder protein powder, check the weather, and watch the news while I do dishes.

Because I suffer from allergies, air purifiers are essential. My favorite model is the Dyson Purifier Cool TP07, which doubles as a fan and continuously sends indoor pollution data to its companion mobile app.

My pitbull Bradley sheds, so a good robot vacuum is a must. I currently use a premium Ecovacs Deebot that can both vacuum and mop, empty its own dustbin, and wash its own mop cloth.

For fitness, I like to mix up my routine with cycling, indoor rowing, running, and strength training in addition to yoga. I take classes on the Tonal 2 smart strength training machine, I row indoors on an Aviron machine, and track my beach runs with an Apple Watch while listening to music on my Apple AirPods Pro. On the weekends, I love riding e-bikes like the rugged, beach-friendly Aventon Aventure for fun and fitness.

My job involves a lot of virtual meetings, so a quality webcam, microphone, and ring light are important. I use the Jabra PanaCast 20 webcam, the Elgato Wave: 3 microphone, and a Yesker tripod ring light.

As for my preferred phone platform, I'm an iPhone person, but I've also extensively used Android for product testing.

Read the latest from Angela Moscaritolo

Read full bio