The tools once reserved for elite intelligence agencies are no longer confined to the shadows. Powerful spyware capable of silently breaking into smartphones and computers is now in the hands of more than half the world’s governments, according to new findings from the UK’s cyber defence authorities, reports TechCrunch.
The warning signals a sharp escalation in digital surveillance capabilities worldwide, raising fresh concerns about how easily such tools can be misused, not just by states but by criminals who gain access to them.
Spyware spreads beyond control.
The UK’s National Cyber Security Centre (NCSC) is set to reveal that around 100 countries now possess commercial spyware, a significant increase from the 80 nations identified just two years ago. The technology, often developed by private firms, allows operators to exploit vulnerabilities in devices and extract sensitive data without the user’s knowledge.
Some of the most well-known tools include Pegasus and Graphite, which have been marketed to governments for law enforcement and national security purposes. Officials have long maintained that such systems are used to target criminals and terrorist networks.
However, security experts and human rights groups have repeatedly documented cases where spyware has been deployed against journalists, activists and political opponents. The NCSC now warns that the scope of targets is widening further.
Recent intelligence suggests that bankers and high-net-worth individuals are increasingly being targeted, indicating a shift towards financially motivated surveillance and espionage.
Rising risks for businesses and citizens
The growing accessibility of spyware is not just a geopolitical issue; it is becoming a direct threat to businesses and everyday users. According to Richard Horne, head of the NCSC, many organisations are still underestimating the scale of the danger.
British companies are “failing to grasp the reality of today’s world,” Horne said in remarks prepared for the CYBERUK conference in Glasgow.
He added that most significant cyberattacks affecting the UK are now linked to hostile state actors rather than independent criminal groups. Among the most persistent threats are operations tied to China, which have focused on gathering intelligence, monitoring high-profile individuals and potentially laying the groundwork for future disruptive cyber activity.
At the same time, the line between state and criminal use of spyware is becoming increasingly blurred. Earlier this year, a sophisticated hacking toolkit known as DarkSword leaked online, containing exploits capable of targeting modern smartphones and tablets. The leak enabled almost anyone to deploy advanced hacking techniques against unpatched devices.
Such incidents highlight a recurring problem. Tools developed for tightly controlled government use can escape into the wild, spread rapidly, and put millions at risk. As spyware becomes cheaper, more accessible, and harder to detect, the challenge for defenders is no longer just about stopping attacks but about keeping pace with a threat that is growing faster than ever.
