In the last few days Kaspersky and Citizen Labs spotted for the first time two Trojans of and Italien Team called "Hacking Team", ...
In the last few days Kaspersky and Citizen Labs spotted for the first time two Trojans of and Italien Team called "Hacking Team", those Torjans developed by this company to infect Android and iOS smartphones. In the past, experts had already discovered malwares from this publisher.
Where the rub is that this surveillance solution is not only used in democratic countries (such as France for
example), but also in countries more or less totalitarian, as shown in recent analyzes. Thus, the two labs were detected more than 320 command and control servers (C&C) in 42 countries. The United States in the most concentrated (64), directly followed by Kazakhstan (49). The list also included China (15) Russia (5) Saudi Arabia (2) Egypt (2) and Azerbaijan (1). Countries where it is not good to be political dissident, as shown in the classification of Reporters Without Borders on press freedom
A sophisticated tool
Where developers Hacking Team were particularly "good job", it is in the aspect of stealth malware. It pays attention to consume the least energy possible, to avoid arousing suspicion. It also has a feature called "crisis" a feature which starts when hostile is present. Example: if a network sniffer packet is detected, the software automatically stops its espionage operations and keeps quiet.
Another interesting discovery, the labs received from an anonymous contributor technical documentation for the administration system. The screenshots show the degree of sophistication of the overall solution from Hacking Team Remote Control System called Galileo. Thus, the administrator may define graphically real espionage scenarios, indicating precisely when to activate any spying module (see below).
