Security News > 2021 > November > US Sanctions Pegasus-maker NSO Group and 3 Others For Selling Spyware
The U.S. Commerce Department on Wednesday added four companies, including Israel-based spyware companies NSO Group and Candiru, to a list of entities engaging in "Malicious cyber activities."
The agency said the two companies were added to the list based on evidence that "These entities developed and supplied spyware to foreign governments that used these tools to maliciously target government officials, journalists, businesspeople, activists, academics, and embassy workers."
Two other firms on the list include Singapore-based Computer Security Initiative Consultancy PTE. LTD. and Russia's Positive Technologies, the latter of which was already sanctioned by the U.S. Department of the Treasury for allegedly providing support to Russian Intelligence Services in mounting cyberattacks against U.S. companies.
Entity List, as the name implies, refers to a list of entities that have been found engaging in activities that are contrary to the national security or foreign policy interests of the U.S., necessitating they be subject to additional trade restrictions, which mandate other U.S. organizations to acquire a special license from the government to conduct business with the four companies.
NSO Group is also the developer behind the infamous Pegasus spyware that's capable of harvesting contacts, call histories, text messages, photos, and passwords stored in a phone without leaving a trace.
"The United States is committed to aggressively using export controls to hold companies accountable that develop, traffic, or use technologies to conduct malicious activities that threaten the cybersecurity of members of civil society, dissidents, government officials, and organizations here and abroad," U.S. Secretary of Commerce Gina M. Raimondo said in a statement.