FinSpy

  • First known sample

    2007
  • Discovery

    2011
  • Number of targets

    100-1000
  • Current status

    Active
  • Type

    Backdoor , Bootkit , Rootkit , Trojan
  • Targeted platforms

    Android , BlackBerry , Linux , OS X , Symbian , Windows , Windows Mobile , iOS
  • TOP targeted countries

    CIS , Canada , Germany , Indonesia , Japan , Lao People's Democratic Republic , Mongolia , Russia , Ukraine , Vietnam
  • The way of propagation

    Access to network connections , Physical access to computers , Social engineering
  • Purpose/Functions

    Surveillance
  • Special features
    “Business-to-government” malware
  • Targets

    Activists , Criminal suspects
  • Artefacts/Attribution
    The FinSpy (Finfisher) software is sold by UK Based Gamma Group company
  • Description

    Commercial spyware that can be used to collect massive amounts of personal information from the infected device. Desktop implants were discovered in 2011 and mobile implants in 2012. It has infected dozens of mobile devices around the world. Once installed on a phone, it is capable of collecting contacts, SMS/MMS messages, emails, calendars, GPS location, photos, files in memory, phone call recordings and data from the most popular messengers.

    Additional information