FinSpy
-
First known sample
2007 -
Discovery
2011 -
Number of targets
100-1000 -
Current status
Active -
Type
Backdoor , Bootkit , Rootkit , Trojan -
Targeted platforms
Android , BlackBerry , Linux , OS X , Symbian , Windows , Windows Mobile , iOS -
TOP targeted countries
CIS , Canada , Germany , Indonesia , Japan , Lao People's Democratic Republic , Mongolia , Russia , Ukraine , Vietnam
-
The way of propagation
Access to network connections , Physical access to computers , Social engineering -
Purpose/Functions
Surveillance -
Special features
“Business-to-government” malware
-
Targets
Activists , Criminal suspects -
Artefacts/Attribution
The FinSpy (Finfisher) software is sold by UK Based Gamma Group company
-
Description
Commercial spyware that can be used to collect massive amounts of personal information from the infected device. Desktop implants were discovered in 2011 and mobile implants in 2012. It has infected dozens of mobile devices around the world. Once installed on a phone, it is capable of collecting contacts, SMS/MMS messages, emails, calendars, GPS location, photos, files in memory, phone call recordings and data from the most popular messengers.