Memento Labs CEO Confirms Spyware Misuse by Government Client After Kaspersky Uncovers “Dante” Malware

The CEO of Italian surveillance technology company Memento Labs, Paolo Lezzi, has confirmed that one of its government customers was responsible for deploying an outdated version of its Dante spyware, recently exposed by cybersecurity giant Kaspersky. The revelation follows Kaspersky’s report detailing cyberattacks against Windows systems in Russia and Belarus, allegedly using Memento’s malware. Lezzi admitted that the software was no longer supported and blamed the unnamed client for the exposure.

Lezzi told TechCrunch that Memento had already warned customers about potential detections since late 2024 and had urged them to discontinue using the Windows-based spyware. “Clearly they used an agent that was already dead,” Lezzi said, noting that the outdated version would be fully discontinued by year’s end. The company, which rose from the ashes of the scandal-hit Hacking Team, now focuses solely on developing mobile surveillance tools and occasionally sources exploits, or “zero-days,” from external developers.

Kaspersky’s spokesperson Mai Al Akka confirmed that the Dante malware was used in a recent espionage campaign but declined to name the government involved. The cybersecurity firm identified the hacking group “ForumTroll” as responsible for targeting Russian organizations, including media outlets, universities, and government agencies. Kaspersky noted that the attackers demonstrated strong knowledge of Russian language and culture, though they were likely non-native speakers.

The exposure of Memento’s spyware highlights the ongoing challenges of surveillance technology in the digital age. The company’s predecessor, Hacking Team, gained notoriety after its internal data was leaked in 2015, revealing that it had sold spyware to governments accused of human rights abuses. Lezzi, who acquired and rebranded Hacking Team in 2019, said Memento now serves fewer than 100 clients — a significant drop from the 40-plus governments the original firm once worked with.

Experts say the discovery underscores how controversial surveillance firms continue to evolve despite public scrutiny and past scandals. “It shows that even when a company collapses under the weight of its own controversies, new players can emerge using the same technology,” said John Scott-Railton, senior researcher at Citizen Lab. “It tells us that we need to keep up the fear of consequences.” The Dante spyware case serves as another reminder of the enduring risks of commercial spyware in the hands of governments worldwide.

source: techcrunch