Their biggest customers are middle eastern governments according to the WaPo article. US certainly has bought the software but it's mostly Saudi, UAE, Qatar, etc. US has NSA so they don't really need some software. Middle eastern powers dont have the same type of technical expertise to develop their own in-house.
h1fra|4 years ago
edit: the tone is lost via internet; my own opinion on this: yes, it is.
JumpCrisscross|4 years ago
This statement needs the "we" defined to be meaningful.
If it is the U.S., then obviously no, the NSA is an arm of the state. If "we"` is e.g. China, probably no, because words have meanings and the arms of recognized foreign states don't conduct terrorism, they do espionage and they do war. If "we" is a freshman dorm room, then, of course, the NSA is a terrorist organization alongside the student government.
blackearl|4 years ago
tomrod|4 years ago
beebeepka|4 years ago
ashtonkem|4 years ago
bobthechef|4 years ago
flyinglizard|4 years ago
2. Even if they develop their own tools and research their exploits, using NSO provides a layer of plausible deniability and hiding behind someone else's fingerprint (think about the command and control servers, for example).
3. Even if they develop their own stuff, most governments have multiple arms which can use these tools (think about FBI, CIA, NSA, various military intelligence branches), and they tend not to share between them. This makes smaller government branches which don't have the resources and expertise of the others (think DEA, ATF...) buy from 3rd parties.
4. Zero days are a scarce resource, if I ran an agency I'd rather use someone else's every day and keep my own just for the special stuff.
In summary, it's exceedingly appealing for bodies like the Dutch police to use NSO tools and NSO's association with the Saudis and other provides a convenient masking to their operations.