Predators for Hire: A Global Overview of Commercial Surveillance Vendors

This abridged report surveys the 2010–2025 commercial surveillance vendor (CSV) ecosystem—documenting major vendors (NSO, Candiru, Intellexa, Paragon, etc.), their spyware offerings and business models, the evolution to turnkey zero‑click/one‑click intrusion capabilities, infection chains and C2 infrastructure, market dynamics (rebranding, intermediaries, trade shows), documented misuse by state clients, and detection/mitigation guidance; it highlights observed active exploitation (including APT29 leveraging exploits similar to CSVs) and the systemic human‑rights and security risks posed by CSV proliferation.