Hacking Team

Hacking Team, also known as HT s.r.l., is an Italian company that develops and sells offensive cybersecurity tools primarily to government entities. Its flagship product, the Remote Control System (often marketed as Galileo), provides capabilities for covert monitoring of computers and smartphones, including the ability to capture keystrokes, activate microphones and cameras, and exfiltrate files. The firm markets these intrusion platforms to law‑enforcement, intelligence, and security agencies seeking technical means to conduct investigations and surveillance. By positioning itself as a supplier of “lawful intercept” technology, Hacking Team claims its tools are intended for use in criminal investigations and national‑security operations. The company’s clientele spans multiple continents, with contracts reported in Europe, the Middle East, Asia, and the Americas.

The company was founded in 2003 and is headquartered in Milan, Italy, operating as a privately held enterprise. Prior to the 2015 incident, Hacking Team described itself as serving over forty countries, emphasizing a global reach despite its modest size. Its business model relied on licensing software and providing maintenance, training, and technical support to authorized government clients. The firm’s offerings were distinguished by a focus on zero‑day exploit development and stealth persistence mechanisms designed to evade detection by conventional antivirus solutions. These technical competencies allowed Hacking Team to position itself as a niche player in the offensive security market, competing with a limited number of similar vendors.

In July 2015, Hacking Team suffered a major data breach when attackers exfiltrated approximately 400 gigabytes of internal information, including source code, internal emails, and client contracts. The leaked material revealed that the company had sold its surveillance tools to numerous governments with documented records of human‑rights abuses, contradicting its public statements about avoiding oppressive regimes. Exposure of invoices and maintenance records linked the breach to law‑enforcement and intelligence agencies across several countries, while also highlighting poor password practices among both employees and clients. The incident prompted widespread criticism of Hacking Team’s business relationships and underscored significant shortcomings in its own operational security. Following the leak, the firm faced increased scrutiny and a damaged reputation that affected its ability to secure new contracts.

Ownership of Hacking Team has remained with its founding shareholders, and the company has not been absorbed into a larger parent corporation or publicly listed entity. It continues to operate under the HT s.r.l. legal name, maintaining its headquarters in Milan. Despite the fallout from the 2015 breach, the firm has persisted in offering its intrusion platforms, though its market presence has been notably reduced compared with pre‑incident levels. The episode serves as a case study in how offensive security providers can be impacted by both technical vulnerabilities and ethical controversies surrounding their clientele.