back to article Hark, the Hacking Team angels sing, it’s not us who’ve actually sinned

The Hacking Team pushed out a new statement on Wednesday, moaning that the only victim of the mega-breach against its systems is Hacking Team itself. Eric Rabe, the firm's chief marketing and communications officer, complained that the controversial outfit is “being treated as the offender, and the criminals who attacked the …

  1. Paul Crawford Silver badge

    "on the side of angels, albeit deeply misunderstood"

    Wasn't Lucifer himself an angel once, and now has a bit of a PR problem?

    1. Mark 85 Silver badge

      I guess it depends on one's definition of "angels"... Looking over the client list, takes the concept of "angels" to a new low.

    2. Anonymous Coward
      Anonymous Coward

      Not just Lucipher

      Most of his henchmen too.

      Though I personally prefer the Angel of Islington.

      1. Will Godfrey Silver badge
        Happy

        Re: Not just Lucipher

        The Angel of Addington (kent) is not bad either, and does some nice grub.

  2. Will Godfrey Silver badge
    Happy

    Mega Winge

    We need a new ElReg unit of childish winge-ness when people are caught with their fingers in the cookie jar. Only with this lot, whatever unit you chose would be right off the scale.

    1. Grikath

      Re: Mega Winge

      They're good contenders, but there's been a couple of whoppers regarding Snowden and aftermath, Apple's ebook "misunderstanding of terms", and various others that are right up there with the Hacking Team's effort at ..damage mitigation.

      I propose we call the fenomenon BBS ( Burnt Bum Syndrome) and measure it in BAUD ( Belligerent Arguments Under Distress )

    2. Gordon 10 Silver badge

      Re: Mega Winge

      I suggest the Kim. Named after Kim Dot Com, Kim Il-sung and Kim Kardashian. All know a few things about wingeing.

      1. dan1980

        Re: Mega Winge

        Well, the choice of unit really depends on what is being measured - is it the hand-wringing and pleading and bullshit PR damage control or is it the scale of the offence that has been discovered?

        On the second measure, this one rates quite high, to the point where calling it a 'Rabe' would perhaps be unwieldy as nearly everything must be expressed as a fraction of the whole unit - much like a Farad being rather too large for everyday usage.

        Thus, Facebook's frequent land-grabs of personal content would rate about 50 millirabes, it being something people are largely entering into of their own volition. Perhaps a 'Schmidt', in honour of how much data Google hoovers up about everyone - even when you have told them to stop.

        In terms of the former metric - the 'PR' response - the 'Rabe' might be a good measure but I think a 'Zuckerberg' may well be a good option as they are very much used to explaining things as just a 'misunderstanding' - nothing dodgy is going on, really.

        So, I would estimate that Hacking Team is currently at about 20 kSt (kiloschmidts) and 5 Zb - rounding for simplicity.

        But this is cumbersome; what's needed is a measurement to represent the level of farce.

        Utilising our units, above, we can propose the Whisper, which represents the amount of straining of public belief that results from a breach of 1 St, being forcefully decelerated through a PR filter of 1 Zb.

        Thus, Hacking Team are current outputting an estimated 100 kWsp.

        At that level, the bullshit is visible from the moon on a clear day below and with a cheap pair of binoculars.

        1. Anonymous Coward
          Anonymous Coward

          Re: Mega Winge (Units)

          Looking at the historical trends, a logarithmic scale is in order. Hacking team is small potatoes and will disappear off the newsfeeds in days. Snowden? That's quality, kiloton grade if not megaton, so were at least two if not three magnitudes of bombshell. YMMV.

      2. Anonymous Coward
        Coat

        Re: Mega Winge

        and Kim Philby?

        1. g e

          Re: Mega Winge

          I suggest (but then, I would) the ApPLe scale - after the Apple Patent Lawyer

          A lot like capacitance it would generally be measured, of course, in micro-APLs or uA's, As a whole APL would be an awful lot of disingenuous butthurt-ness

  3. Anonymous Coward
    Anonymous Coward

    Blah, blah, weasel words, weasel words

    "Yes, we sold rapists tools to help them rape, but we weren't doing it to get people raped."

    Whatever. Don't be helping regimes that believe in punitive rape. It gets you a rather hot afterlife.

    1. g e

      Re: Blah, blah, weasel words, weasel words

      Did Smith & Wesson or Lockheed Martin have any comment?

  4. FozzyBear
    Mushroom

    Dear hacking team

    You have been caught in a prison yard with your trousers around your ankles. A bottle of baby oil in one hand and a "come get it boys" sign in the other. Just shut the fuck up and take it. Any loud protests will just emabrass you even further, if that is at all possible.

    1. Ben Tasker Silver badge

      Re: Dear hacking team

      Especially with the "if it had been a media company".

      Had the media's voicemail (don't like calling it phone hacking) scandal come out as a result of their systems getting compromised, I've a feeling people would have been just as upset

  5. dan1980
    Meh

    Reading this man's words, it takes a supreme effort not to vomit.

    So, their software is not a 'weapon'. Okay, let's run with that for a moment.

    The thing about 'weapons', is that they are usually at least somewhat obvious. If you supply a nation's police force with sidearms then, when they use them, it's known. You can't deny that your officers don't have guns because anyone seeing them on the street will be able to look at their hips and see the weapon.

    If they draw the weapon, you know about it and if they use it against someone, that, too is generally known.

    So let's compare that to the 'tools' supplied by Hacking Team.

    In complete contrast with 'weapons', these 'tools' are supplied confidentially, without the knowledge of the people. Their existence is not admitted and is not readily able to be discerned. Moreover, when these 'tools' are used, they are used silently and secretly, hidden from the people they are used against.

    So, fine -let's agree that the 'tools' developed and sold by Hacking Team are not 'weapons'. I am comfortable with that.

    So let's now investigate the nature of these 'tools'.

    The best analogy I can think of at the moment is to imagine (not very hard at the moment) a flaw in the software of cars that caused the brakes to be applied when the pedal was not pressed. Now imagine that that flaw was found by someone like Hacking Team and methods to exploit it were developed and then sold to law enforcement agencies, who were very keen to get their hands on some 'tools' to help them stop police chases.

    To them, these 'tools' were, of course, 'necessary' and were justified because they 'helped save lives' and preventing access to these important 'crime-fighting tools' would only result in more danger to officers and reduce the safety of the public.

    But here's the rub - even if we truly believe that these 'tools' were only sold to the most ethically upstanding institutions who, in turn, only used them in the most ethically justified situations and only after the most rigorous scrutiny and vetting and approval, the tools being used are not the whole pictures.

    Why? Because they only work by exploiting vulnerabilities and those vulnerabilities exist however careful you are with the dissemination of those exploits and however ethical you are in their application. They are there, and their existence is a risk for anyone making use of the software - in the case of our analogy, to anyone driving one of the cars affected.

    So, imagine that this vulnerability in the braking software causes so random issue where a car suddenly brakes, in heavy traffic on a freeway, causing a pile-up of a dozen or so cars, resulting in great delays for huge numbers of people, many injuries and a few deaths.

    The software developed to exploit the vulnerability in that software is not the cause - the underlying vulnerability is. But to to know about this vulnerability - and not only that but to have researched it and tested it and understood it enough to know exactly how it might be triggered - but to not tell the manufacturer? I don't understand how that can fit any definition of ethical.

    And to then bleat on about how what you are doing is necessary to protect people? Well, that is just an astonishing level of self-delusion at best or, more probably, outright lying.

    But that is, again, assuming that they really do sell only to ethical institutions and their software really is only used for ethically-justified purposes in an ethically-guided fashion.

    And that is something that, frankly, I doubt even they believe.

    1. Anonymous Coward
      Anonymous Coward

      We now have a very real-world equivalent in the form of the Fiat-Chrysler 2013+ models, with the Fiat engine, that allows wireless remote control of the brakes, power-steering, etc. The POC is to be demoed at BlackHat next month. You can do some serious evil with that.

      It seems that a Black-Hat actually has better moral sense than HT. Curious that.

  6. Anonymous Coward
    Anonymous Coward

    maybe they're afraid

    Have any of the documents shown that they charged 'oppressive' régimes more than (ha!) other régimes for the same kit?

  7. Candy

    It wasn't illegal...

    ...so, therefore, it was ethical.

    Really?

    A company that helps others hack into IT systems has its IT systems hacked. Only one of those is a criminal act, apparently.

    I'm guessing HT haven't got any customers in Germany...

  8. Sir Runcible Spoon Silver badge
    Mushroom

    Sir

    "complained that the controversial outfit is “being treated as the offender, and the criminals who attacked the company are not”."

    Well Boo fucking Hoo.

    Is this guy really so deluded to not see why he is being treated like the villain by people who find his behaviour reprehensible (even if it is technically legal)?

    He is a disingenuous turd-bot that's out of control.

  9. Blank-Reg
    Megaphone

    Oh do fuck off you bunch of cock handlers.

    This whole hacking of immoral hackers is Poetic Justice at its finest

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021