Whistleblowing website Wikileaks has released part 4 of its Spyfiles, shedding light on German weaponised malware vendor FinFisher and its suite of products of the same name. <\/p>\n
FinFisher used to be part of the UKs Gamma group. As part of the leaks, Wikileaks has released copies of the vendor's invoices and support tickets with many client names unmasked to show the extent of spying. <\/p>\n
Mongolia, the recently elected chair of the Freedom Online Coalition, is one of FinFishers larger customers with 16. Its predecessor in the coalition, Estonia, was also one of the largest customers with 37 FinFisher licences. <\/p>\n
Many of the clients names remains masked. In many cases the code name is unmasked when the client raises a tech support ticket complete with a description and screenshot of the problem. <\/p>\n
For instance, customer 559458B5 was unmasked as Mongolia easily from its support tickets. Indeed one ticket complained to FinFisher that an infected payload aimed at future-mongolia.com was getting blocked. In what may make some breathe a sigh of relief for its show of incompetence, the attacker used his Gmail account, which was of the same name as his FinFisher login name and his real name. Gmail blocks executable payloads from being sent. <\/p>\n
On the other hand, customer B206FF8C Singapore, was much more professional - and even raised a support ticket in the wake of the SSL Heartbleed bug to ensure that the FinFisher software and laptops themselves were updated to avoid leaking any information. <\/p>\n
Other countries in the region that were identified include Vietnam, Pakistan and Australias New South Wales police. <\/p>\n
Wikileaks also released copies of the actual FinFisher software in the hope that security analysts can challenge the secrecy and unaccountability of the company by analysing its internals to come up with detection techniques. New product brochures were also made available for download. <\/p>\n
Julian Assange, WikiLeaks Editor in Chief said, \"FinFisher continues to operate brazenly from Germany selling weaponized surveillance malware to some of the most abusive regimes in the world. <\/p>\n
The Merkel government pretends to be concerned about privacy, but its actions speak otherwise. Why does the Merkel government continue to protect FinFisher? This full data release will help the technical community build tools to protect people from FinFisher including by tracking down its command and control centers. <\/p>\n
<\/p>\n