Advertisement
UK markets close in 5 hours 7 minutes
  • FTSE 100

    7,956.68
    +24.70 (+0.31%)
     
  • FTSE 250

    19,863.52
    +52.86 (+0.27%)
     
  • AIM

    743.39
    +1.28 (+0.17%)
     
  • GBP/EUR

    1.1696
    +0.0027 (+0.23%)
     
  • GBP/USD

    1.2624
    -0.0014 (-0.11%)
     
  • Bitcoin GBP

    56,113.76
    +599.59 (+1.08%)
     
  • CMC Crypto 200

    885.54
    0.00 (0.00%)
     
  • S&P 500

    5,248.49
    +44.91 (+0.86%)
     
  • DOW

    39,760.08
    +477.75 (+1.22%)
     
  • CRUDE OIL

    82.40
    +1.05 (+1.29%)
     
  • GOLD FUTURES

    2,232.40
    +19.70 (+0.89%)
     
  • NIKKEI 225

    40,168.07
    -594.66 (-1.46%)
     
  • HANG SENG

    16,541.42
    +148.58 (+0.91%)
     
  • DAX

    18,505.20
    +28.11 (+0.15%)
     
  • CAC 40

    8,242.66
    +37.85 (+0.46%)
     

Google Says Hacking Tools Are Likely Tied to Spanish Firm

(Bloomberg) -- A set of hacking tools that exploited vulnerabilities in Chrome and Firefox web browsers has “likely ties” to a company based in Barcelona, Spain, according to findings published Wednesday by Alphabet Inc.’s Google.

Most Read from Bloomberg

Google’s Threat Analysis Group, a cybersecurity unit, said in a blog post that the hacking tools, named Heliconia, are likely tied to the Spanish company Variston IT. In addition to exploiting flaws in Chrome and Firefox browsers, the tools could also target vulnerabilities in Microsoft Corp.’s security product Defender, according to Google. Heliconia “provides all the tools necessary to deploy a payload to a target device,” Google said.

ADVERTISEMENT

The flaws have been fixed, but Google researchers believe they were exploited by hackers before they were patched.

In an emailed statement, Variston declined to discuss specific products or customers. Variston works within “the relevant international and national legal framework,” said Ralf Wegener, director at Variston.

An anonymous tipster flagged three software bugs and other details about Heliconia to Google, enabling the company to further investigate, the Threat Analysis Group said.

Google in June said it had been tracking more than 30 firms with “varying levels of sophistication and public exposure” that sold software exploits or surveillance capabilities. The Threat Analysis Group’s research “has shown the proliferation of commercial spyware and the extent to which commercial spyware vendors have developed capabilities that were previously only available to governments with deep pockets and technical expertise,” the company said in a blog post.

Most Read from Bloomberg Businessweek

©2022 Bloomberg L.P.