Ontario Provincial Police and other Canadian law enforcement agencies are using a secret spyware tool to hack smartphones and bypass encryption [1, 2].
The deployment of this technology represents a significant shift in surveillance capabilities. By bypassing device encryption, police can access private data that was previously unreachable, raising urgent questions about privacy rights and the legality of such intrusions.
The software is known as the On-Device Investigative Tool, or ODIT [1, 2]. Investigations have linked this tool to the commercial Paragon system [2]. Police said they use the software to gather evidence against organized-crime groups [1, 2].
Legal challenges have emerged as a result of these tactics. In some instances, prosecutors have dropped cases entirely to avoid disclosing the identity of the software vendor in open court [1, 2]. This creates a paradox where the use of secret surveillance tools to secure convictions results in suspects walking free to protect the secrecy of the tool.
These developments occur as the federal government pushes for new legislation [1, 2]. The proposed laws aim to broaden the surveillance powers available to police across Canada [2].
The use of ODIT allows agencies to penetrate the security of modern mobile devices [1]. This capability bypasses the standard encryption protocols that protect user data from unauthorized access [2].
“Ontario police have deployed a secret spyware tool known as ODIT/Paragon to hack smartphones.”
The use of ODIT and Paragon indicates a growing reliance on 'zero-click' or high-intrusion spyware to counter the trend of end-to-end encryption. The willingness of the state to abandon criminal prosecutions to protect a vendor's anonymity suggests that the operational secrecy of these tools is currently prioritized over the judicial outcome of specific organized-crime cases.
