Serbian NGO SHARE Defense reported in July 2015 that leaked emails and files belonging to Milan-based software company Hacking Team (HT) published on Wikileaks reveal that at least one Serbian security service inquired about and negotiated the purchase of surveillance software from this company in 2012. There is also evidence that one or more email accounts from the Serbian Ministry of Defense appear as trial users of the spy software made by the Italian company.
The software in question is the so-called Remote Control System, or RCS, ans essentially works by targeting the spreading of viruses on computers and mobile phones of persons under surveillance. According to SHARE Defense sources, most clients using this software are governments from around the world and their security services.
SHARE Defense's legal team also called attention to which organizations might be able to gain permission and afford the use of such software:
Share Foundation wrote about the legal framework for import of this kind of software in Serbia back in 2013 because of the “Trovicor” case, stating that rules for dual use goods must be applied and that a permit from the Ministry of Trade, Tourism and Telecommunications is obligatory.[…]
If we assume that certain organisations can be authorized to use this equipment, in our legal system that wouldn’t be possible without a court decision in accordance with the law. Using it in any other way would be an obvious violation of human rights which are guaranteed by the Constitution of the Republic of Serbia and numerous international conventions.