Get all your news in one place.
100’s of premium titles.
One app.
Start reading
Reuters
Reuters
Business
By Christopher Bing and Raphael Satter

Israeli spyware used to hack across 10 countries, Microsoft and watchdog say

The entrance to an office listed as belonging to Quadream is seen in a high rise building in Ramat Gan, Israel, January 25, 2022. REUTERS/Nir Elias

An Israeli firm's hacking tools have been used against journalists, opposition figures and advocacy organizations across at least 10 countries - including people in North America and Europe - according to new research published Tuesday by Microsoft Corp and the internet watchdog Citizen Lab.

Citizen Lab said in its report that it had been able to identify a handful of civil society victims whose iPhones had been hacked using surveillance software developed by the Israeli company, QuaDream Ltd - a lower-profile competitor to the Israeli spyware company NSO Group, which has been blacklisted by the U.S. government over allegations of abuse.

A Microsoft logo is seen a day after Microsoft Corp's $26.2 billion purchase of LinkedIn Corp, in Los Angeles, California, U.S., June 14, 2016. REUTERS/Lucy Nicholson

In its report published at the same time, Microsoft said it believed with "high confidence" that the spyware was "strongly linked to QuaDream."

In a statement, Microsoft Associate General Counsel Amy Hogan-Burney said that mercenary hacking groups like QuaDream "thrive in the shadows" and that publicly outing them was "essential to stopping this activity."

Israeli lawyer Vibeke Dank, whose email was listed on QuaDream's corporate registration form, did not return a message seeking comment. Repeated attempts by Reuters to reach QuaDream over the past year - including a visit to the company’s office outside Tel Aviv - have been unsuccessful.

Reuters reported in 2022 that QuaDream had previously developed a no-interaction-needed hacking tool similar to the programs deployed by NSO. Such hacking tools, known as "zero-click," are particularly prized by cybercriminals, spies, and law enforcement because they can remotely compromise devices without an owner needing to open a malicious link or download a tainted attachment.

NSO did not immediately return a message seeking comment.

Neither Citizen Lab nor Microsoft identified the targets of QuaDream's software, but the allegation could still be damaging for the firm.

The reports come on the heels of an announced crackdown on the international spyware industry by U.S. President Joe Biden. Last month, the White House announced an executive order intended to curb the purchase of surveillance software by U.S. agencies if the programs are also being used by repressive governments abroad.

The White House did not immediately respond to a message seeking comment.

Unlike NSO, which regularly briefed journalists amid allegations of abuse, QuaDream has kept a lower profile. The company has no website touting its business and employees have been told to keep any reference to their employer off social media, Reuters has previously reported.

(Reporting by Raphael Satter; Editing by Anna Driver)

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
One subscription that gives you access to news from hundreds of sites
Already a member? Sign in here
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.