|
Drumdude27
Millennial Hippy



Registered: 03/22/13
Posts: 563
Last seen: 4 months, 4 days
|
Hacking Team Spyware
#21934836 - 07/12/15 07:39 PM (8 years, 6 months ago) |
|
|
As some of you may have read, the Italian based "Pentest" company Hacking Team has, well, been hacked 
A few powerpoints and over 400Gbs worth of emails from the company have surfaced and been posted on Wikileaks. This company claims they have an untraceable spyware that does not add files or change any existing files, will not execute any new processes, and will not establish any new network connections. They also claim that this "Remote Control System" of theirs can retrieve information, even if it is PGP encrypted.
Tasks include seeing what the target has typed, printed, when they have sent and received emails, seeing web pages that were accessed, spying via the webcam and microphone, etc etc.
This spyware can be installed remotely or locally, of course. They've used a few 0 Day attacks so far.
Operating systems include Windows Xp, 2003, and Vista (Source was published before Win7 was released) Mac OS and Linux. Yes, I said LINUX
Basically, I want to know how on God's green Earth this thing works. I have my doubts, mainly when it comes to their claim about PGP and no new or changed files or executions. Has anyone dug up any information on this??
My sources: https://wikileaks.org/spyfiles/files/0/31_200810-ISS-PRG-HACKINGTEAM.pdf
[url=https://citizenlab.org/2014/02/mapping-hacking-teams-untraceable-spyware/]https://citizenlab.org/2014/02/mapping-hacking-teams-untraceable-spyware/[/url
Edit: I'm still looking around. Apparently they can also locally infect a machine Even if it is powered down. I need to know how. That blows my mind. Will update further if anyone is interested.
Edited by Drumdude27 (07/12/15 08:59 PM)
|
Byrain

Registered: 01/07/10
Posts: 9,664
|
Re: Hacking Team Spyware [Re: Drumdude27]
#21935076 - 07/12/15 09:01 PM (8 years, 6 months ago) |
|
|
Linux is a kernel GNU is the operating system. The links don't go into much depth on what the vulnerabilities are, but the second link mentions a few adobe flash and word exploits which aren't really that surprising at existing. Some of the flash might be relevent for GNU/Linux systems, but you can probably avoid most of them by keeping flash up to date or just not using it. Unfortunately its not free software so it can't be properly audited...
|
Drumdude27
Millennial Hippy



Registered: 03/22/13
Posts: 563
Last seen: 4 months, 4 days
|
Re: Hacking Team Spyware [Re: Byrain]
#21935192 - 07/12/15 09:29 PM (8 years, 6 months ago) |
|
|
I'm still a Linux/GNU n00b. I'll probably forever call it Linux, just for the sake of convenience.| I also think that staying away from Word/Adobe would be best if you're someone who needs to worry about advanced viruses/spyware. Flash just seems to have exploits out the ass. And why use Word when you can use Open Office and hopefully be just a little bit safer.
I'm still digging and slowly finding more. I'm sure it will be a while for something detailed and comprehensive to be published. I did just read something that goes into more detail about just what this beast of a spyware can actually do. I still have many questions that I fear will forever go unanswered.
--------------------
Random acts of Shroomery kindness Drumdude27 said: Don't make me get the FemNazis involved guys. 420th post. No regrets. Only joy.
|
|