DEA bought zero-day exploits from disgraced cyber-arms dealer Hacking Team

A Freedom of Information Act request reveals that the DEA spent $575,000 buying access to weaponized zero-day exploits sold by Hacking Team, the hacked and disgraced Italian cyber-arms dealer who outfitted despots, dictators, the FBI, and America's local police departments.

Hacking Team's depravity can't be overstated.

We already knew that Hacking Team had done business with the DEA, but the new release reveals that the DEA was complicit in hoarding exploits that left Americans vulnerable to criminals, sitting on them rather than warning us about them.

Judging by the DEA invoice, these exploits included zero-days present in common file formats. A 2011 Hacking Team document describing the company's portal points to formats such as Adobe PDFs, and Microsoft Powerpoint and Word documents. The portal allegedly always contains at least three zero-day exploits, the document adds.

Here's a DEA Invoice for Zero-Day Exploits [Joseph Cox/Motherboard]

Notable Replies

  1. Hacking Team's depravity can't be overstated.

    Just when things were looking up...

  2. This surprises anyone?
    insert shockednotshocked.gif here.

  3. Is there some special exemption for law enforcement when it comes to DRM and the Digital Millennium Copyright Act and is there a special exemption for companies involved in "production and dissemination of technology, devices, or services intended to circumvent measures"

Continue the discussion

2 more replies