Wikileaks Releases German Spyware That Governments Used To Hack Journalists And Dissidents

As part of its ongoing Spyfiles series of posts, Wikileaks has released the back and front-end systems used by multiple governments to spy on journalists, dissidents, and others. The files appear to be weaponized Windows malware although the software, called FinFisher, also works on OS X.

From the post:

FinFisher (formerly part of the UK based Gamma Group International until late 2013) is a German company that produces and sells computer intrusion systems, software exploits and remote monitoring systems that are capable of intercepting communications and data from OS X, Windows and Linux computers as well as Android, iOS, BlackBerry, Symbian and Windows Mobile devices. FinFisher first came to public attention in December 2011 when WikiLeaks published documents detailing their products and business in the first SpyFiles release.

Three back-end programs route and manage traffic which is sent to FinSpy Master, a collection program. The system can steal keystrokes, Skype conversations, and even watch you via your webcam.

While there is no definitive proof that any one organization is using the software, a list of FinFisher customers leaked as well shows us that Pakistan, Estonia, and Italy (among others) have bought the service.

Wikileaks’ Julian Assange hopes the malware will allow researchers to pinpoint and destroy the command and control structure in the wild and help prevent the software from infecting new users.