Thursday, 3 April 2025
24.9 C
Singapore
26.8 C
Thailand
20.7 C
Indonesia
27 C
Philippines

A city becomes a surprising centre for surveillance tech

Barcelona is becoming a surprising hub for spyware startups, raising ethical concerns over its role in the global surveillance tech industry.

In late 2023, an Israeli security researcher from Tel Aviv received a LinkedIn message offering a lucrative opportunity abroad. They were told the job was with a “legitimate” offensive security company starting afresh in Barcelona, Spain. However, as the recruitment process unfolded, the researcher noticed unusual secrecy.

“The secrecy felt strange. Some employees interviewing me didnโ€™t use their full names. It took ages for them to reveal the companyโ€™s location, let alone its name. If everything is legitimate, why all the mystery?”

The researcher further explained that the companyโ€™s chief technology officer (CTO) assured them it would only work with ethical clients. However, they remained sceptical. โ€œIt seemed like a company that might end up sanctioned in the future,โ€ they said.

The CTO, Alexey Levinโ€”a former researcher at NSO Group, a sanctioned spyware firmโ€”revealed the companyโ€™s name: Palm Beach Networks. According to the researcher, Levin described the companyโ€™s work as developing zero-day exploits and spyware implants, tools used to breach devices and monitor targets. Levin also claimed the company had at least one U.S. government client. Levin declined to comment when approached.

Why Barcelona? A mix of opportunity and controversy

So why set up a spyware company in Barcelona, a city once embroiled in a scandal involving spyware used on pro-independence politicians? The researcher explained that employees cited several reasons: the cityโ€™s Mediterranean lifestyle, tax incentives, and favourable weatherโ€”which also attract other tech startups.

Over recent years, Barcelona has unexpectedly become a hub for offensive cybersecurity companies. Several experts believe this shift places Europe in a precarious position, as the spyware industry often intersects with corruption and abuse.

Natalia Krapiva, legal counsel at the digital rights group Access Now, highlighted the risks: โ€œSpyware businesses frequently align with corruption and misuse of power. Spanish citizens, media, and policymakers should scrutinise these companies to ensure they comply with national and EU laws.โ€

Spyware misuse has a troubling history. John Scott-Railton, a senior researcher at Citizen Lab, noted that such tools have been used against diplomats, activists, and even politicians. He warned that spyware firms in Barcelona could exacerbate Europeโ€™s ongoing spyware crisis. โ€œHistory shows these tools often end up in the hands of clients who target allies and partners,โ€ Scott-Railton said.

Sun, seafood, and surveillance startups

Barcelona is now home to several other spyware and exploit developers. Paradigm Shift is a spin-off of the beleaguered Variston, which struggled to stay afloat in 2024. Another is Epsilon, led by Jeremy Fetiveau, a veteran from U.S. defence contractor L3Harris. The city also hosts a group of Israeli researchers who moved to Barcelona from Singapore specialising in zero-day exploits.

Additionally, Austrian cybersecurity company SAFA has a presence in Barcelona, with its CEO, Andrijana ล ekularac, reportedly based there. SAFA has sponsored prominent offensive security conferences and employs former spyware researchers. ล ekularac did not respond to requests for comment.

The Catalan regional government estimates over 10,000 professionals work in more than 500 cybersecurity companies across Barcelona. While this growth boosts the local economy, the rise of spyware firms raises concerns about Europeโ€™s regulatory oversight and ethical accountability.

As Barcelona enjoys its reputation for sunshine, vibrant culture, and innovation, the city must grapple with its new identity as a key player in the global spyware industry.

Hot this week

Apple Intelligence now supports English (Singapore) with the latest update

Appleโ€™s latest update brings Apple Intelligence support for English (Singapore), making AI features more accessible without needing US English settings.

Anthropic introduces Claude for Education, a new AI chatbot plan for universities

Anthropic launches Claude for Education, an AI chatbot plan for universities that offers advanced learning tools and administration support.

DEEPAL launches flagship S07 and opens showroom in Singapore

DEEPAL launches in Singapore with new showroom and flagship S07 electric SUV, marking its sixth global market.

Tenable reveals privilege escalation flaw in Google Cloud Run

Tenable uncovers a privilege escalation flaw in Google Cloud Run, exposing risks linked to inherited permissions and service interdependencies.

Chinese EV makers urged to expand globally despite tariff challenges

Chinese EV makers are urged to expand globally despite rising tariffs. Industry experts stress the need for overseas production and strategic partnerships.

Qualcomm expands AI research with MovianAI acquisition

Qualcomm has acquired Vietnamese AI research firm MovianAI to boost its AI development in smartphones, PCs, and software-defined vehicles.

Roblox introduces new parental controls to enhance child safety

Roblox introduces new parental controls, allowing parents to block games, restrict friends, and monitor their childโ€™s activity for better safety.

Anthropic introduces Claude for Education, a new AI chatbot plan for universities

Anthropic launches Claude for Education, an AI chatbot plan for universities that offers advanced learning tools and administration support.

Exabeam introduces Nova, an agentic AI that boosts cybersecurity operations

Exabeam unveils Nova, a proactive AI agent that boosts security team productivity and reduces incident investigation time by over 50%.

Related Articles