President Biden signs order limiting the use of commercial spyware


Posts: 1,313   +27
Staff member
The big picture: The proliferation of commercial spyware tools created a lucrative global market for individuals and organizations developing software for surveillance and data theft. These are effectively malware that's hard to defend against, so it shouldn't come as a surprise that the US government wants to implement guardrails for their use - specifically, for situations where the US government is not the one using them.

President Biden has signed an executive order that should effectively prevent the US government and any federal agencies from acquiring or licensing commercial spyware tools that have been previously used by other countries for purposes such as systematic surveillance of key officials, journalists, academics, or dissident voices among the general population.

The move isn't a blanket ban but rather a way to deal with the recent explosion of spyware software used to extract (read: steal) sensitive information from a device by exploiting security flaws. These tools have a high risk for abuse, which is one of the reasons why the general public won't be notified about any bans made under the new executive order.

Criteria that can lead to an outright ban on a specific spyware tool include whether or not it has been used by a foreign government to access the private information of a US citizen or to suppress free speech from a person opposing or criticizing a certain regime. Another characteristic would be that a specific tool has clear ties or has been supplied to a government known to engage in political repression or human rights violations.

White House officials won't say what software is on the shortlist for a ban, but they note the order is a direct response to incidents that have led to the devices of roughly 50 US government personnel overseas being compromised in recent years. Examples of companies with mixed track records include NSO Group (known for the infamous Pegasus spyware), Candiru, and Cytrox, whose Predator software was used by the Greek government to spy on a US citizen for a year.

Also worth noting is the order applies to both domestic and foreign companies. Furthermore, any organization that's considered for a ban can take remedial steps to increase trust, such as proving its software hasn't been misused or introducing new safeguards to prevent abuse.

Overall, the new executive order seems to be designed only as a way to alleviate concerns about growing counterintelligence and security risks to the US. It doesn't say whether the US government or any federal agency uses commercial spyware tools on its citizens, nor does it explain how it will encourage "the development and implementation of responsible norms regarding the use of commercial spyware that are consistent with respect for the rule of law, human rights, and democratic norms and values."

Image credit: FLY:D

Permalink to story.



Posts: 4,766   +7,340
Soooo...Biden doesn't want the US to use the most effective spying tools that have *already* been used against Americans. What's next, the government will give up its machine guns because Russia uses them to murder civilians? Lefty "logic" at its finest.


Posts: 1,577   +1,135
Soooo...Biden doesn't want the US to use the most effective spying tools that have *already* been used against Americans. What's next, the government will give up its machine guns because Russia uses them to murder civilians? Lefty "logic" at its finest.
You have your constitutional rights - Both sides arguing the other is politicising the IRS , the FBI etc etc
Govt is not easy - most govts around the world can get Judges to authorise stuff - if not cover by immediate threat type stuff
I've given that example a number of times of someone in your group with an automatic -pistol wanting to kill everyone - when arguing about right not to be searched

These issues are not black or white - they are messy - like democracy we stumble forward - they will tweaked again and again - same as who gets life saving public care in hospitals and who doesn't .

I assume a lot of work goes on in the background ethics people, constitutional lawyers, wheeling and dealing by NSA, FBI etc .

Great system endless executive orders by one person - can't happen in NZ or UK or Australia - needs a Cabinet of all the Ministers to pass emergency stuff like declare war


Posts: 734   +491
Those folks are super-clever in that regard. They hack almost anything electronic out there.

That's because they have people in US and European companies which outsource the tech development to Israel. For example, Intel CPUs are mostly designed in Israel. That's why they have so many security holes. It's not hard for you to hack something, if you designed it and you put the security holes in it.