Re: Conflict of interest
In the case of the NSA (i.e. the original source of this exploit), there is no cyber security mission and they are not responsible for providing advice or guidance to businesses or individuals. Their primary remit is to gather information and to use it as a weapon.
I really don't think they care that the weapon can be turned on friendly assets. They think they can know everything by capturing all the data in the world. It's a seductive theory. Seductive but wrong.