int-koordination AT lists.piratenpartei.de
Betreff: Internationale Koordination
Listenarchiv
- From: Florian Wagner <f.wagner AT piratenpartei-nrw.de>
- To: Internationale Koordination <int-koordination AT lists.piratenpartei.de>
- Subject: [Int-koordination] FinFisher/Gamma malware
- Date: Sat, 16 Aug 2014 03:28:58 +0200
- List-archive: <https://service.piratenpartei.de/pipermail/int-koordination>
- List-id: Internationale Koordination <int-koordination.lists.piratenpartei.de>
- Openpgp: id=329BC5E3
Dear all,
I thought you might be interested in the following findings.
After sifting through the FinFisher-Leak:
https://netzpolitik.org/2014/gamma-finfisher-hacked-40-gb-of-internal-documents-and-source-code-of-government-malware-published/
(a more recent analysis by the CitizenLab:
https://citizenlab.org/2014/08/cat-video-and-the-death-of-clear-text/ )
I found that apart from the obvious British/German involvement the
following European countries have purchased espionage malware
manufactured by Gamma Group/FinFisher:
Estonia: https://wiki.piratenpartei.de/FinFisher#14ED6D84
Hungary: https://wiki.piratenpartei.de/FinFisher#0012A3F0
The Netherlands: https://wiki.piratenpartei.de/FinFisher#20FEC907
Bosnia and Herzegovina: https://wiki.piratenpartei.de/FinFisher#7F425F82
and one individual from Belgium with unclear affiliation:
https://wiki.piratenpartei.de/FinFisher#70CD6D97
Apart from that there is also evidence that in the wake of
anti-opposition operations the Security Service of Bahrain has targeted
individuals (most probably leading Bahraini opposition figures) in the
following European countries by using the aforementioned malware:
Belgium
United Kingdom
The Netherlands
Germany
Switzerland
Sweden
We know that because the Security Service of Bahrain has kindly attached
their server logs to a support request (to be found in:
/finfisher/www/GGI/Support/Attachments/A169FE42.rar).
Maybe you want to ask your governments a few questions, and educate the
public about commercially crafted, state-employed malware.
You can find the contents of the FinFisher-Support website's database
here: https://wiki.piratenpartei.de/FinFisher/database1 and here:
https://wiki.piratenpartei.de/FinFisher/database2
The rest of unencrypted material (internal newsletters, product
descriptions, etc.) can be downloaded from here:
https://cloud.piratenpartei-nrw.de/public.php?service=files&t=c29886b8c2715f4198b0e1deb8926367&path=%2F
(what is still missing in this collection is the folder with attachments
sent along the support requests which I hope will be added soon). If you
want to download the whole 40 GB torrent please know that about 98% of
this torrent consist of gpg-encrypted files for which the key/password
have not yet been made available.
Best wishes,
Flo.
--
Twitter: https://twitter.com/#!/BroeckelndeWand
Jabber: flow AT jabber.piratenpartei.de
Friendica: flow AT friends.jinja.eu
Bitte vermeiden Sie es, mir Word- oder PowerPoint-Anhänge zu senden.
Siehe http://www.gnu.org/philosophy/no-word-attachments.html .
Too brief? Here's why! http://emailcharter.org .
- [Int-koordination] FinFisher/Gamma malware, Florian Wagner, 16.08.2014
Archiv bereitgestellt durch MHonArc 2.6.19.