Austria is set to legalise the use of highly-intrusive spyware by state authorities. The government has justified the law in the name of monitoring encrypted messaging applications. Opponents warn that there is no way to prevent the authorities accessing reams of sensitive information on targeted individuals, despite official promises to the contrary. Civil society organisations and opposition parties have promised to challenge the law in court.
On 9 July, Austrian parliamentarians passed a highly controversial bill legalising the deployment of state-sponsored spyware, known as the Federal Trojan (Bundestrojaner), to enable the interception of encrypted communications.
State spyware
The Bundestrojaner bill would give law enforcement agencies the power to install malware on private devices (such as smartphones or laptops) to monitor encrypted messaging applications.
It would do so by amending several laws, including:
- the State Security and Intelligence Service Act;
- the Security Police Act;
- the Telecommunications Act;
- the Federal Administrative Court Act; and
- the Judgesâ and Public Prosecutorsâ Service Act.
The plan sparked widespread concern among privacy advocates, cybersecurity experts, and numerous civil society organisations.
The day before the vote more than 50 organisations, including Statewatch, wrote to legislators.
A joint letter (pdf) called on them to âvote against this dangerous instrument of state surveillance and against a historic step backwards for IT security in the information society.â
