Hacking Team is in full-on damage control mode, now asking their customers to stop using their craptastic surveillance software even though they could have remotely disabled all their customers’ campaigns (emphasis added):
Hacking Team asked its customers to shut down operations, but according to one of the leaked files, as part of Hacking Team’s “crisis procedure,” it could have killed their operations remotely. The company, in fact, has “a backdoor” into every customer’s software, giving it ability to suspend it or shut it down—something that even customers aren’t told about.
To make matters worse, every copy of Hacking Team’s Galileo software is watermarked, according to the source, which means Hacking Team, and now everyone with access to this data dump, can find out who operates it and who they’re targeting with it.
“With access to this data it is possible to link a certain backdoor to a specific customer. Also there appears to be a backdoor in the way the anonymization proxies are managed that allows Hacking Team to shut them off independently from the customer and to retrieve the final IP address that they need to contact,” the source told Motherboard.
Meanwhile, Hacking Team will do “the impossible to avenge this,” the source said. “But at this point there’s not much they can do.”
This is what happens when you try to capitalize on fear, uncertainty, and doubt, and are arrogant about it. I wont say Hacking Team deserved what happened, however getting a taste of their own medicine will give them perspective moving forward.