A Russian-founded surveillance technology provider, Protei, has been hacked, with 182 gigabytes of company data stolen and its website defaced. The breach exposed years of internal emails and confirmed the firm’s role in supplying surveillance and censorship tools to governments worldwide.
Company Overview
Protei develops telecommunications systems, including video conferencing, internet connectivity, and surveillance equipment. The company operates in dozens of countries, including Bahrain, Italy, Kazakhstan, Mexico, Pakistan, and across central Africa. Its products include deep packet inspection (DPI) systems, which allow telecom companies to monitor and filter internet traffic. Protei now maintains its headquarters in Jordan.
Breach Details
The company’s website was defaced on November 8th, displaying the message: “another DPI/SORM provider bites the dust.” The hackers then leaked the stolen data to DDoSecrets, a transparency collective that indexes leaked datasets in the public interest.
SORM and DPI Explained
The defacement message references SORM, Russia’s primary lawful intercept system. SORM equipment is installed on telecom networks, enabling governments to access customer call records, text messages, and browsing data. DPI technology, also sold by Protei, allows telecom companies to identify and block specific websites, social media platforms, or messaging apps.
Implications
The hack exposes the extent to which companies like Protei facilitate government surveillance and censorship. DPI systems and SORM technology are widely used in regions with restricted freedom of speech, enabling governments to monitor and control their citizens’ online activities. The leaked data may provide insights into Protei’s clients and the specific surveillance capabilities deployed in various countries.
The company’s managing director in Jordan did not respond to requests for comment. The identity and motivations of the hacker remain unknown, but the incident highlights the vulnerability of surveillance technology providers to cyberattacks and data breaches.
The hack underscores the global trade in surveillance technology and the risks associated with unchecked government access to citizen data
