Biden Administration Releases EO to Restrict Use of Commercial Spyware Tools by Agencies

Europol warns of ChatGPT's misuse, Crown Resorts hit by GoAnywhere flaw-related breach, NY AG fines law firm $200,000 over data breach, Russia and Iran offer cyber mutual aid, much more

Don’t miss my latest CSO column about the Biden administration’s efforts to crack down on spyware with a new ban with some caveats.

Photo by Ana Lanza on Unsplash

President Biden signed a new executive order (EO) restricting the use of commercial spyware tools throughout the federal government, with officials saying they believe spyware had compromised devices belonging to at least 50 US personnel working overseas.

The EO imposes rules limiting the acquisition and deployment of hacking tools from vendors whose products have been linked to human-rights abuses or are deemed to pose counterintelligence or national security risks to the US. It also limits the purchasing of tools if they are sold to foreign governments with poor records on human rights.

The executive order doesn’t wholly prohibit the purchase and deployment of commercial spyware. Agencies must assess a series of factors that will be used case-by-case to restrict a spyware vendor’s use within the government, though barred compa…