Dhaka, Saturday


27 April 2024


Business Insider Bangladesh

Microsoft claims Israeli group sold tools to hack Windows

BI Desk || BusinessInsider

Published: 23:20, 16 July 2021  
Microsoft claims Israeli group sold tools to hack Windows

Picture : collected

An Israeli group sold a tool to hack into Microsoft Windows, Microsoft, and technology human rights group Citizen Lab said on Thursday, shedding light on the growing business of finding and selling tools to hack widely used software.

The hacking tool vendor, named Candiru, created and sold a software exploit that can penetrate Windows, one of many intelligence products sold by a secretive industry that finds flaws in common software platforms for their clients, reports The Indian Express.

Technical analysis by security researchers details how Candiru’s hacking tool spread around the globe to numerous unnamed customers, where it was then used to target various civil society organisations, including a Saudi dissident group and a left-leaning Indonesian news outlet, the reports by Citizen Lab and Microsoft show.

Attempts to reach Candiru for comment were unsuccessful.

Evidence of the exploit recovered by Microsoft Corp suggested it was deployed against users in several countries, including Iran, Lebanon, Spain and the United Kingdom, according to the Citizen Lab report.

“Candiru’s growing presence, and the use of its surveillance technology against global civil society, is a potent reminder that the mercenary spyware industry contains many players and is prone to widespread abuse,” Citizen Lab said in its report.

Microsoft fixed the discovered flaws on Tuesday through a software update, the report reads.

Microsoft did not directly attribute the exploits to Candiru, instead referring to it as an “Israel-based private sector offensive actor” under the codename Sourgum.

“Sourgum generally sells cyberweapons that enable its customers, often government agencies around the world, to hack into their targets’ computers, phones, network infrastructure, and internet-connected devices,” Microsoft wrote in a blog post.

“These agencies then choose who to target and run the actual operations themselves.”Candiru’s tools also exploited weaknesses in other common software products, like Google’s Chrome browser.

On Wednesday, Google released a blog post where it disclosed two Chrome software flaws that Citizen Lab found connected to Candiru.

Google also did not refer to Candiru by name, but described it as a “commercial surveillance company.”