This article is interesting because it shows how Cyber-Security firms, or Spy-Tech firms are using their technology and marketing their products to governments around the world. This particular Spy-Tech company mentioned in the article, NSO, is based out of Israel. Israel is the second-largest exporter in the world of cyber-security products, next to the United States. NSO, has developed spying software that can see all of the activity on a target’s iPhone. NSO argues spying is important to prevent terrorist attacks, and the firm’s motto is to “Make the World a Safe Place.” With a price of $650,000, plus a $500,000 set-up fee to track 10 iPhone devices, the company’s software is not-exactly for the “everyday user.” NSO’s software has been more in-demand in recent years because companies such as Facebook, Apple, and Google are making it harder for governments to access their data because they are using more-strict encryption. NSO has developed a tracking software called Pegasus, which Apple recently released a security-update to patch all of it’s devices. Do you believe this software is ethical, and should the government really need to know everything a person is doing on their phones in order to keep people safe? There has been recent cases in the United States, such as the San Bernardino shootings in California, where the government was unable to unlock the shooter’s iPhone. Apple stuck to its guns, and did not provide the U.S. government with technology capable of unlocking the device. The U.S. government had to resort to a third-party Spy-Tech firm to unlock the device.
I was hoping someone would post one of these articles. The question I would like all of you to consider is where do you draw the line. Some level of surveillance is necessary, but at some point it goes to far. This is a conversation that still needs to take place in our society..
This is an interesting article, Shain. Obviously, what NSO did should not be considered as ethical hacking. The NSO maintained access to the target, used covert channels, exfiltrated data from target’s phone, and also covered its hacking tracks. It went to far beyond ethical hacking. However, I think it is necessary for a country to have certain level of surveillance over the entire network in the country to protect its people from potential terrorism activities, as long as information of persons under surveillance will not be published. What I worry about is that the hacking method and techniques used by NSO now will be developed and be able to be used to attack everyone, like you and me, someday in the future. Since people make increasingly transactions through mobile phones and increasingly rely on mobile phones, mobile phone security is becoming extremely important to everyone.
There should be Government surveillance conducted to an extent. The Government shouldn’t have the ability to use any of these tools willy nilly. It worries me that these private companies are selling their tools to countries around the world. This has become a profitable industry spurring even more competition. We will eventually see these tools get used by the wrong hands. Although NSO claims to have a “strict internal vetting processing” to determine their customers, what stops them from selling to other organizations in the future if the price is right?
Ahmed, I agree. Where do we draw the line with this subject? If there is proof that this software has foiled numerous terrorist plots, then I am okay with the surveillance. If there is no evidence that this software has made a difference in stopping attacks, then it just violates our freedom and privacy. I believe this software also violates the 4th Amendment of the Constitution for unreasonable search and seizures. No warrant is needed, and the user has no knowledge that any personal data is being captured from their device. After 9/11, with laws passed, such as the PATRIOT Act, this subject has been iffy, and there is not really a clear line on what is okay, and what is not.
Shain,
Great article. Unfortunately in the age we live in people use technology not only to make their lives more convenient but also to make criminal lives more convenient. With an organization like this available now it might shed a light on just how vulnerable our most personal devices are.