Italian Spyware Hermit Exposed in Surveillance of Kazakh Citizens
Experts have determined that the spyware used to surveil Kazakh citizens in 2022 was neither developed in Kazakhstan nor acquired from well-known Israeli suppliers. Instead, it belongs to the Italian company RCS Labs, which entered the market as early as 1992, long before spyware markets were established in other European countries.
The spyware, known as Hermit, was also deployed in Syria and Italy. According to data published by WikiLeaks in 2015, RCS collaborated with military and intelligence agencies in countries such as Pakistan, Chile, Mongolia, Bangladesh, Myanmar, Vietnam, and Turkmenistan.
Italy has become a major hub for spyware development in Europe, with several prominent companies selling their solutions with minimal oversight. For instance, the Italian Ministry of Justice has set a daily rental rate for spyware at €150, allowing law enforcement agencies to use such tools without incurring the high costs of outright purchase.
Italian companies like RCS Labs and Memento Labs (formerly Hacking Team) actively sell their technology abroad. Unlike the Israeli NSO Group, their software has not garnered the same level of controversy nor fallen under U.S. sanctions, as Italian programs have not been used to target American citizens.
Italy’s spyware market remains one of the largest globally, producing more affordable and accessible alternatives to complex programs like Pegasus. These tools can also intercept calls, messages, and activate the microphone and camera on targeted devices.
In recent years, Italy has made several attempts to curb spyware use. In 2017, proposed reforms aimed to control such technology, but the law was not passed. However, a new law taking effect in February 2024 will require independent judicial review before authorizing spyware use.
Nonetheless, experts are skeptical that the new law will bring substantial change. The country still lacks a unified body to oversee spyware use, making it easy for prosecutors and police to obtain permissions, thus fueling the popularity of these tools in Italy.
Meanwhile, Italian police are investigating a case of unlawful access to government databases, leading to house arrest for four individuals and investigations involving dozens more, including Leonardo Maria Del Vecchio, the son of Luxottica’s founder.
In February, reports also surfaced that eight IT companies had established a global user-tracking system. This came to light after Meta Platforms announced restrictions on malicious activities conducted by companies from Italy, Spain, and the UAE, engaged in surveillance for hire. The spyware developed targeted iOS, Android, and Windows devices.
