https://www.ft.com/content/e381b556-c859-4a3b-8f7c-5fe80d3272d2 Accessibility helpSkip to navigationSkip to contentSkip to footer Cookies on FT Sites We use cookies for a number of reasons, such as keeping FT Sites reliable and secure, personalising content and ads, providing social media features and to analyse how our Sites are used. Accept & continue Manage cookies * Sign In * Subscribe Open side navigation menuOpen search bar myFT Search the FT[ ]SearchClose search bar * Home * World Sections + World Home + Global Economy + UK + US + China + Africa + Asia Pacific + Emerging Markets + Europe + Americas + Middle East and North Africa Most Read + Republican Glenn Youngkin wins Virginia governor's race + Fed to start winding back $120bn-a-month stimulus programme + US puts Israeli spyware firm NSO Group on trade blacklist + Departing US business chiefs warn of expat exodus from China + Draw your own chart: test your climate change knowledge * US Sections + US Home + US Economy + US Companies + US Politics & Policy Most Read + Republican Glenn Youngkin wins Virginia governor's race + Fed to start winding back $120bn-a-month stimulus programme + US puts Israeli spyware firm NSO Group on trade blacklist + Tesla's rally stalls as Elon Musk questions Hertz deal + New York hedge fund stands to make over $5bn on Avis Budget share surge * Companies Sections + Companies Home + Energy + Financials + Health + Industrials + Media + Professional Services + Retail & Consumer + Tech Sector + Telecoms + Transport Most Read + Carney-led finance coalition has up to $130tn funding committed to hitting net zero + Vestas and Orsted warn of tough times for renewable energy + Evergrande: the bond and interest payment deadlines to watch + New York hedge fund stands to make over $5bn on Avis Budget share surge + Four more UK energy suppliers collapse * Tech * Markets Sections + Markets Home + Alphaville + Markets Data + Capital Markets + Commodities + Currencies + Equities + Fund Management + Trading + Moral Money + ETF Hub + Cryptocurrencies Most Read + US puts Israeli spyware firm NSO Group on trade blacklist + Evergrande: the bond and interest payment deadlines to watch + New York hedge fund stands to make over $5bn on Avis Budget share surge + Latest news updates: Booking Holdings 'encouraged' by signs of recovery in travel demand + Zillow was not smarter than the housing market * Climate * Opinion Sections + Opinion Home + Columnists + The FT View + The Big Read + Lex + Obituaries + Letters Most Read + Virginia's ominous warning to Joe Biden and the Democrats + Democrats must look beyond Joe Biden and Kamala Harris for 2024 + Boris Johnson cannot escape the costs of Brexit + How we can share our divided world + Zillow was not smarter than the housing market * Work & Careers Sections + Work & Careers Home + Business School Rankings + Business Education + Entrepreneurship + Recruitment + Business Books + Business Travel Most Read + Forget skyscrapers: nature inspires next generation of New York offices + Remote work: how Ireland's tax laws clash with new reality + 'Flow' can lift managers and their staff out of crisis apathy + Minority staff want to spend more time working from home + Bracken Bower Prize 2021 -- the shortlist * Life & Arts Sections + Life & Arts Home + Arts + Books + Food & Drink + FT Magazine + House & Home + Style + Travel + FT Globetrotter Most Read + Little wonders: three small cities for an autumn escape + Inside the elite world of international showjumping + Obsessed with pasta: where to find London's freshest and finest + Climate activist Vanessa Nakate: 'I was ready for anything' + The climate won't wait. We need a carbon tax now * How to Spend It * Sign In * Subscribe MenuSearch * Home * World * US * Companies * Tech * Markets * Climate * Opinion * Work & Careers * Life & Arts * How to Spend It Financial Times * Sign In * Subscribe Search the FT[ ]SearchClose search bar To inform tomorrow, we're free today. Read our climate coverage and everything else for free today. Visit our climate hub Cyber Security Add to myFT US puts Israeli spyware firm NSO Group on trade blacklist Washington accuses company of supplying technology to 'maliciously target' activists and journalists [https] NSO's Pegasus software was last year revealed to have been used to target smartphones belonging to 37 journalists, human rights activists and other prominent figures (c) REUTERS * Share on twitter (opens new window) * Share on facebook (opens new window) * Share on linkedin (opens new window) * Share on whatsapp (opens new window) * Save * Org Share * Share on twitter (opens new window) * Share on facebook (opens new window) * Share on linkedin (opens new window) * Share on whatsapp (opens new window) * Save * Org Share Mehul Srivastava and Aime Williams Jump to comments sectionPrint this page Receive free Cyber Security updates We'll send you a myFT Daily Digest email rounding up the latest Cyber Security news every morning. The US has added NSO Group, the Israeli military spyware company that created software traced to the phones of journalists and human rights activists around the world, to a trade blacklist as it targets the growing surveillance threat posed by hacking-for-hire companies. NSO and a competitor, Tel Aviv-based Candiru, were among four companies added by the commerce department on Wednesday to its so-called entity list, which would restrict exports of US hardware and software to the companies. Groups like NSO use developer versions of popular operating software to develop "zero-click exploits", which do not require the user to open a malicious link to deploy, according to a person familiar with their practices. NSO said in a statement it was "dismayed by the decision, given that our technologies support US national security interests and policies by preventing terrorism and crime, and thus we will advocate for this decision to be reversed". "We look forward to presenting the full information regarding how we have the world's most rigorous compliance and human rights programmes that are based [on] the American values we deeply share, which already resulted in multiple terminations of contacts with government agencies that misused our products." Being blacklisted from US exports might effectively mean they "are finished", said Eitay Mack, an Israeli human rights lawyer who has campaigned for years to get NSO's export license revoked by the Israeli government, with little success. "NSO has tried for years tried to be on the 'good side', to try to claim that its activities are above reproach," said John Scott-Railton, at the University of Toronto's Citizen Lab, which advocates on behalf of journalists and dissidents. "This designation by the commerce department gives us the strongest indication of the US view of the NSO Group, which suggests they take a dim view . . . and see the company's activities as potentially contrary to the national security of the US." The US commerce department said the designation of the two companies was "based on evidence that these entities developed and supplied spyware to foreign governments that used these tools to maliciously target government officials, journalists, businesspeople, activists, academics and embassy workers. "These tools have also enabled foreign governments to conduct transnational repression, which is the practice of authoritarian governments targeting dissidents, journalists and activists outside of their sovereign borders to silence dissent. Such practices threaten the rules-based international order," the department said. In the past NSO has allegedly rented server space from companies such as Amazon Web Services and used it to surreptitiously break into phones and computers, Facebook has said in a lawsuit filed against the company in the US. Amazon reportedly shut down that access in July, after an Amnesty International report detailed the alleged use of other Amazon services to deliver hacks. Recommended News in-depthThe Big Read Inside the WhatsApp hack: how an Israeli technology was used to spy [http] The lawsuit from WhatsApp's owner, Facebook, alleges that NSO Group exploited a vulnerability in the world's most popular messaging service to deliver its spyware. NSO has asked for the suit to be dismissed. While it is unclear what effect this move will have on the technical capabilities of NSO, Candiru and the two other companies blacklisted on Wednesday, the commerce department's decision supports findings by the University of Toronto's Citizen Lab and Amnesty International that their tools are regularly abused by repressive regimes. Danna Ingleton, deputy director of Amnesty Tech at Amnesty International, said in a statement that in addition to sending a "strong message" to NSO, the commerce department's move also represented "a day of reckoning for NSO Group's investors". NSO, the largest of the known Israeli largest cyber warfare companies, has said repeatedly that it sells its weapon only to nations in order to fight terrorism and serious crime, and with the approval of the Israeli government. Candiru could not be reached for comment. Both companies are part of a growing Israeli cyber industry that often recruits veterans of the army's elite units and sells software that enables clients to hack computers and mobile phones remotely. NSO's licensed military-grade software, Pegasus, was last year revealed to have been used to target smartphones belonging to 37 journalists, human rights activists and other prominent figures. French media reported that it had been used by Morocco to spy on senior French officials, including the personal mobile phone of President Emmanuel Macron. Those revelations caused a diplomatic spat between Israel and France, which has demanded that Israel rein in NSO Group's sales, according to two people briefed on the talks. According to research by Microsoft and the University of Toronto's Citizen Lab, Candiru exploited vulnerabilities in Microsoft and Google products, enabling governments to hack the laptops of more than 100 journalists, activists and political dissidents globally. The commerce department also added a Russian company, Positive Technologies, and Singapore-based Computer Security Initiative Consultancy to its list, alleging that they "traffic in cyber tools" used to gain unauthorised access to computer systems. Neither company immediately returned a request for comment. Gina Raimondo, commerce secretary, said the US was "committed to aggressively using export controls to hold companies accountable that develop, traffic, or use technologies to conduct malicious activities that threaten the cyber security of members of civil society, dissidents, government officials, and organisations here and abroad". Kevin Wolf, a partner at law firm Akin Gump and a former senior commerce official, said US companies often "choose to avoid doing business with listed entities completely in order to eliminate the risk of an inadvertent violation and the costs of conducting complex legal analyses". Get alerts on Cyber Security when a new story is published Get alerts Copyright The Financial Times Limited 2021. All rights reserved. Reuse this content (opens in new window) CommentsJump to comments section Promoted Content * Cyber Security Add to myFT * Technology sector Add to myFT * Emerging markets Add to myFT * NSO Group Technologies Add to myFT * Government of Israel Add to myFT Useful links Support View Site TipsHelp CentreContact UsAbout UsAccessibilitymyFT Tour Careers Legal & Privacy Terms & ConditionsPrivacy PolicyCookiesCopyrightSlavery Statement & Policies Services Share News Tips SecurelyIndividual SubscriptionsGroup Subscriptions RepublishingContracts & TendersExecutive Job SearchAdvertise with the FTFollow the FT on TwitterFT TransactSecondary Schools Tools PortfolioToday's Newspaper (ePaper)Alerts HubBusiness School Rankings Enterprise ToolsNews feedNewslettersCurrency Converter Community & Events FT CommunityFT LiveFT ForumsBoard Director Programme More from the FT Group Markets data delayed by at least 15 minutes. (c) THE FINANCIAL TIMES LTD 2021. FT and 'Financial Times' are trademarks of The Financial Times Ltd. The Financial Times and its journalism are subject to a self-regulation regime under the FT Editorial Code of Practice. [px] Close drawer menuFinancial Times International Edition Search the FT[ ]Search * Switch to UK Edition * Top sections * Home * WorldShow more World + Global Economy + UK + US + China + Africa + Asia Pacific + Emerging Markets + Europe + Americas + Middle East and North Africa * USShow more US + US Economy + US Companies + US Politics & Policy * CompaniesShow more Companies + Energy + Financials + Health + Industrials + Media + Professional Services + Retail & Consumer + Tech Sector + Telecoms + Transport * Tech * MarketsShow more Markets + Alphaville + Markets Data + Capital Markets + Commodities + Currencies + Equities + Fund Management + Trading + Moral Money + ETF Hub + Cryptocurrencies * Climate * OpinionShow more Opinion + Columnists + The FT View + The Big Read + Lex + Obituaries + Letters * Work & CareersShow more Work & Careers + Business School Rankings + Business Education + Entrepreneurship + Recruitment + Business Books + Business Travel * Life & ArtsShow more Life & Arts + Arts + Books + Food & Drink + FT Magazine + House & Home + Style + Travel + FT Globetrotter * Personal FinanceShow more Personal Finance + Property & Mortgages + Investments + Pensions + Tax + Banking & Savings + Advice & Comment + Next Act * How to Spend It * Special Reports * FT recommends * Lex * Alphaville * Lunch with the FT * FT Globetrotter * #techAsia * Moral Money * FTfm * Newsletters * Video * Podcasts * News feed * FT CommunityShow more FT Community + FT Live + FT Forums + Board Director Programme * myFT * Portfolio * Today's Newspaper (ePaper) * Crossword * Our Apps * Help Centre * Subscribe * Sign In