finfisher
Latest
Latest Adobe Flash vulnerability allowed hackers to plant malware
Adobe Flash may be on its way out, but apparently, its goodbye tour is going to be marred by security issues just as the software has for most of its existence. Kaspersky Labs reports that a new Adobe Flash vulnerability was exploited by a group called BlackOasis, which used it to plant malware on computers across a number of countries. Kaspersky says the group appears to be interested in Middle Eastern politics, United Nations officials, opposition activists and journalists, and BlackOasis victims have so far been located in Russia, Iraq, Afghanistan, Nigeria, Libya, Jordan, Tunisia, Saudi Arabia, Iran, the Netherlands, Bahrain, United Kingdom and Angola.
Watchdog says spyware violates human rights guidelines
If you think that commercial software designed to spy on computers is problematic, you're not alone. The Organization for Economic Cooperation and Development's UK contact has determined that Gamma International's approach to selling its FinFisher spyware violates human rights guidelines. The developer not only doesn't have a human rights policy, but doesn't investigate clients for the possibility of abuse -- there's little stopping it from selling FinFisher to an oppressive government. The contact couldn't confirm that Gamma sold its software to Bahrain, which used the surveillance tool to target the political activists who prompted the investigation (shown here). However, the OECD isn't shy about pressing for change. It wants Gamma to take evidence of abuse and government advice into account whenever it sells software, and to cooperate when there are signs that someone is using FinFisher for nefarious purposes.
WikiLeaks posts the software governments use to spy on dissidents
WikiLeaks' all-or-nothing approach to revealing shady government activity just took a new (if decidedly risky) turn. Julian Assange and crew have posted FinFisher and FinSpy PC, the intrusion software that Australia, Italy, Pakistan and other countries use to break into and spy on people's devices, no matter what platform they're running. The leak site hopes that privacy-minded developers will use the code to improve security and prevent governments from easily cracking down on dissidents; it also puts pressure on Germany to clamp down on FinFisher and live up to its anti-surveillance principles. The strategy may pay off, although there is a worry that unscrupulous downloaders may use the code for more sinister purposes, such as keylogging or webcam monitoring. Let's hope the tools don't fall into the wrong hands. [Image credit: Scott Beale, Flickr]
