Read at ReadWrite
Google's TAG has released a report exposing the world of commercial surveillance vendors (CSVs), which offer spyware to government clients. The report highlights how these surveillance tools can contribute to cybercrime when they fall into the wrong hands. The report found that nearly half of the '0-Day' exploits that affected Google and Android devices were caused by software developed by CSVs. Google believes that it is time for government, industry, and civil society to work together to address the spread of these technologies.
According to the TAG report, Google believes "it is time for government, industry and civil society to come together to change the incentive structure which has allowed these technologies to spread."
Efforts to crack down on the commercial spyware industry have been made. In 2023, eleven nations released a joint statement warning about the risks of commercial spyware to national security. Additionally, the US Secretary of State has strengthened policy by prohibiting the use of commercial spyware that poses risks to the nation's security.
"The misuse of these tools presents significant and growing risks to our national security, including to the safety and security of our government personnel, information, and information systems," the joint statement read.