An Israeli group said on Thursday that it was a tool to hack into Microsoft Windows, Microsoft and the technology human rights group Citizen Lab.
The hacking tool Vendor, Candiru, exploits and sells software that can infiltrate Windows, and is one of the many intelligence products sold by a secret industry that finds vulnerabilities in common software platforms for their clients, Citizen Lab reports.
Security researchers ‘technical analysis explains how Candiru’s hacking tool has spread around the world to a number of unnamed customers, including Citizen Labs’ reports that Citizen Labs reports that it has been used to target various civil society organizations, including the Saudi rebel group and the left – leaning Indonesian newsletter.
Attempts to reach Kandiru for comment failed. Microsoft Corporation found in its Citizen Lab report that it has deployed against users in several countries, including Iran, Lebanon, Spain and the United Kingdom.
The bug was fixed by Microsoft on Tuesday with a software update. Microsoft has not directly accused Candiru, but instead refers to Sorgam as a “criminal actor in the Israeli-based private sector”.
“These agencies choose who the actual activities should target.” Candidru’s tools have been used to repair other common software products, such as Google’s Chrome browser. Google on Wednesday released a blog post revealing two Chrome software flaws that have been found to be linked to Citizen Lab Candy. Google did not refer to Candiru by name, but referred to it as a “commercial monitoring company”.