US cracks down on sale of hacking tools to Russia and China

Representational image depecting cybersecurity protection
(Image credit: Shutterstock)

The US Department of Commerce announced today that it will begin exerting more control over the sale of cybersecurity tools and surveillance software to countries that might pose a national security threat.

The Department’s Bureau of Industry and Security (BIS) issued an interim rule with the intention of reigning in the “export, re-export or transfer” of certain items that it believes can be used for malicious cyber activities.

“These items warrant controls because these tools could be used for surveillance, espionage, or other actions that disrupt, deny or degrade the network or devices on it,” argues the BIS in the rule.

TechRadar needs you!

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

>> Click here to start the survey in a new window <<

The SiliconANGLE reports that the department believes such tools can lead to human rights abuses when in the hands of authoritarian governments.

Not stifling research

The new rule will take effect in 90 days, and would cover software such as Pegasus, a spyware developed by the Israeli NSO Group, that was recently exposed as being used by certain governments to keep tabs on activists, and journalists.

With the new rule, any sale of such software and equipment, to countries including China, and Russia, would require a license from the BIS, which will only grant one after thoroughly vetting the end user.

The Commerce department reportedly argues that the rule has been carefully worded so as to not curb US-based cybersecurity researchers from collaborating with their peers around the world.

“The Commerce Department’s interim final rule imposing export controls on certain cybersecurity items is an appropriately tailored approach that protects America’s national security against malicious cyber actors while ensuring legitimate cybersecurity activities,” clarified Secretary of Commerce Gina Raimondo through a statement. 

Via SiliconANGLE

Mayank Sharma

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.