[cryptome] Fwd: [liberationtech] Finfisher Spy Kit Revealed in Bahrain

  • From: John Young <cryptome@xxxxxxxxxxxxx>
  • To: cryptome@xxxxxxxxxxxxx
  • Date: Wed, 25 Jul 2012 09:45:55 -0400

Date: Wed, 25 Jul 2012 15:19:26 +0200
From: Eugen Leitl <eugen@xxxxxxxxx>
To: cypherpunks@xxxxxxxxxxxx
Subject: [liberationtech] Finfisher Spy Kit Revealed in Bahrain

----- Forwarded message from Ronald Deibert <r.deibert@xxxxxxxxxxx> -----

From: Ronald Deibert <r.deibert@xxxxxxxxxxx>
Date: Wed, 25 Jul 2012 09:13:46 -0400
To: Liberation Tech List <liberationtech@xxxxxxxxxxxxxxxxxxxx>
Subject: [liberationtech] Finfisher Spy Kit Revealed in Bahrain
X-Mailer: Apple Mail (2.1278)

For Immediate Release

From Bahrain With Love: FinFisherbs Spy Kit Exposed?

July 25, 2012 -- The Citizen Lab announces the publication of a detailed post analyzing several pieces of malware targeting Bahraini dissidents, shared with us by Bloomberg News.

The analysis suggests that the malware used is "FinSpy," part of the commercial intrusion kit, Finfisher, distributed by the United Kingdom-based company, Gamma International.

The commercial market for computer network attack, exploitation, and targeted surveillance products and services is growing. Several reports have identified these products and services being marketed to regimes that violate human rights or employ them to quell political opposition. However, the market is shrouded in secrecy with some companies going so far as advertising their clandestine capabilities.

The market has been controversial: In September 2011, the EU Parliament passed a resolution that bans the export of information technology systems that can be used "in connection with a violation of human rights, democratic principles or freedom of speech [b&] by using interception technologies and digital data transfer devices for monitoring mobile phones and text messages and targeted surveillance of Internet use."

While there have been reports and descriptions of Gamma International's products (including revelations that they had been sold to the Egyptian government's state security apparatus), this is the first public analysis of the Finfisher toolkit.

Malware analysis by Morgan Marquis-Boire and Bill Marczak. Assistance from Seth Hardy and Harry Tuttle gratefully received.

Special thanks to John Scott-Railton.

Thanks to Marcia Hofmann and the Electronic Frontier Foundation (EFF).

We would also like to acknowledge Privacy International for their continued work and graciously provided background information on Gamma International.

For full report, please see: https://citizenlab.org/2012/07/from-bahrain-with-love-finfishers-spy-kit-exposed/

For Bloomberg news report, please see here: http://www.bloomberg.com/news/2012-07-25/cyber-attacks-on-activists-traced-to-finfisher-spyware-of-gamma.html

For press inquiries, please contact info@xxxxxxxxxxxxxx

Ronald J. Deibert
Professor of Political Science
Director, The Canada Centre for Global Security Studies and
The Citizen Lab
Munk School of Global Affairs
University of Toronto

liberationtech mailing list

Should you need to change your subscription options, please go to:


If you would like to receive a daily digest, click "yes" (once you click above) next to "would you like to receive list mail batched in a daily digest?"

You will need the user name and password you receive from the list moderator in monthly reminders. You may ask for a reminder here: https://mailman.stanford.edu/mailman/listinfo/liberationtech

Should you need immediate assistance, please contact the list moderator.

Please don't forget to follow us on http://twitter.com/#!/Liberationtech

----- End forwarded message -----
Eugen* Leitl <a href="http://leitl.org";>leitl</a> http://leitl.org
ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org
8B29F6BE: 099D 78BA 2FD3 B014 B08A  7779 75B0 2443 8B29 F6BE

Other related posts:

  • » [cryptome] Fwd: [liberationtech] Finfisher Spy Kit Revealed in Bahrain - John Young