Forgot your password?
typodupeerror
Government Privacy Security Your Rights Online

German Surveillance Trojan Spies On Fifteen Apps 69

Posted by Unknown Lamer
from the father-knows-best dept.
itwbennett writes "Researchers from Kaspersky Lab have discovered that the R2D2 surveillance Trojan, which is used by German law enforcement to intercept Internet phone calls, is capable of monitoring traffic from popular browsers and instant messaging applications. 'Amongst the new things we found in there are two rather interesting ones: Firstly, this version is not only capable of running on 32 bit systems; it also includes support for 64 bit versions of Windows,' said Tillmann Werner, a security researcher with Kaspersky in Germany. 'Secondly, the list of target processes to monitor is longer than the one mentioned in the CCC report. The number of applications infected by the various components is 15 in total.'"
This discussion has been archived. No new comments can be posted.

German Surveillance Trojan Spies On Fifteen Apps

Comments Filter:
  • by Anonymous Coward

    Not to run Windows.

    Nathan

    PS.. image word "CONCUR"

  • Or applications?
    • by Anonymous Coward

      "App" is a shortening of "application". They're not specifically for mobile phones though idiots will say that's the case.

      • Apps are what you get at Chili's. I recommend the Texas Cheese Fries.
        Applications are uses, or forms you fill out for shit.
        Programs are what you hand out at a theater.
        Software is software.

  • by Anonymous Coward

    How good of a code audit does GPG undergo? IIRC, GPG id largely funded by the German government.

  • Imagine being able to legally work on producing the software to do this. Not just legally- but with the backing of the government. ... no, I do not condone it... ... but it would be fascinating to work on. :)

    • Vee haf vays of monitoring yur messages!

    • by ackthpt (218170) on Wednesday October 19, 2011 @01:33PM (#37764402) Homepage Journal

      Imagine being able to legally work on producing the software to do this. Not just legally- but with the backing of the government. ... no, I do not condone it... ... but it would be fascinating to work on. :)

      Imagine a world where a government employs such devious means...

      Then imagine a world where the government kicks down your door because your detected their worm and quarantined it - which makes you a person of interest.

      • by couchslug (175151)

        "Then imagine a world where the government kicks down your door because your detected their worm and quarantined it - which makes you a person of interest."

        Then imagine that country's track record over the first forty-five years of the last century, plus the track record (yet to be fully revealed) of the Eastern half of that country, and don't forget how many players are either still alive or lived long enough to have direct contact including training with current law enforcement.

        Sleep tight.

    • by zAPPzAPP (1207370)

      You will have to apply for a job at that one company they hand all those shady contracts to. You know, the one the minister of interior is involved with.
      Good news though: from what the CCC told us, they are really in need of some capable hackers.

  • nothing interesting other than suspiciously high traffic to David Hasselhoff's website.
  • Such' 'spyware' is rife in the Corporate world, but it's called "Document retention" and "monitoring for legal cases". Corporate smart phones, computers, etc. are all equipped with methods to record everything we do. Just because some shyster could possibly want to use it as an axe to such money from our company.

    You *CAN* get a job in industry writing this kind of code. Seriously. It's out there.

  • by Sponge Bath (413667) on Wednesday October 19, 2011 @02:04PM (#37764820)

    "...capable of running on 32 bit systems; it also includes support for 64 bit versions of Windows"

    I wish all software and hardware vendors were that current.

  • Wait 'til Lucasfilm sues the Germans for copyright infringement. Even Google had to put a little "used with permission of Lucasfilm Ltd." notice on everything using "Droid".
    • Re:R2D2? (Score:5, Funny)

      by Spy Handler (822350) on Wednesday October 19, 2011 @03:05PM (#37765498) Homepage Journal
      but then the Germans can sue Lucas for infringing on their trademark, Stormtrooper
      • by ogdenk (712300)

        And the empire is obviously a derivative work from copyrighted Nazi documents and patented Nazi methodology and procedures. I would love to see Lucas just absolutely ass-raped in court. George is a douchenozzle.

        That fact that more people in the past haven't told Lucas to go get f**ked and stand their ground is why things are as ridiculous as they are. When you can copyright object shapes and terms such as "Droid" and win in court, all hope is lost. It's gotten to the point where it's so insane, I just g

  • Where can I download this app?

  • by Shompol (1690084) on Wednesday October 19, 2011 @04:44PM (#37766916)
    In an interview the Sekret German Surveillance rep said: "Ve dont haf planz to releze a Linukz verson of SpyMaster 2000".
    He cited multiple problems, including lack of support for MS Trojan API's on non-Windows platforms. While there is [not] an emulator, called Bier, it it not powerful enough to support full Trojan functionality suit.

    Many Germans complained that this is the last reason that keeps them from switching to Linux. One of the interviewers complained: "They are using our Steuergeldern, there should be Chancengleichheit for all Trojans, not just Microsoft!"
    • by AHuxley (892839)
      If you have wireless, think of a fed with a laptop in the street - that will get into most OS X, Linux people of interest enjoying modern ethernet free computing.
      If your a Mac or Linux setup is wired, the feds might chat with your isp and go direct down your isp network next time you connect.
      Windows is well understood from a security admin ~ protective tools view. Its wide open and easy to slip something in on most versions.
      Some new, unknown, different, exotic outgoing Mac/Linux software firewall/log m
    • by ista (71787)

      Legal representatives of the trojan-authoring company "DigiTask" actually stated to german press that "basically DigiTask were able to supply software for other operating systems as well - if the contract tells them to do so."
      So your attempt to be funny does point in a completely wrong direction: those guys who wrote this "legal interception" piece of spyware are clearly "dangerous" to non-Windows platforms as well.

      On a sidenote, for at least 30 years or so german students in school classes after elementary

      • by Shompol (1690084)
        I am sorry you took offense, but the joke was not aimed at Germans at all. The target was Windows and Netflix, although I don't name them directly. In fact, the title was ripped off from an article about Netflix :)

        I am not a security expert, but highly doubt this Trojan could be created for Linux. Which distribution would it target? How would it gain access to root to install the Trojan? I am sure there are loopholes, and suppose they exploited one; the very moment someone finds it, that loophole is getti
        • by ista (71787)

          No offense taken - I do see the whole trojan surveillance issue as being a very important issue for multiple reasons.

          For example, many people are having their laughs on the low level of technical expertise being used in this trojan. A few ones are also laughing about how these trojans have been installed (e.g. in one case, a customs officer at an airport wanted to do some extensive checks on one suspect's notebook; the suspect handed them the notebook, the officer left for a few minutes into another room an

  • Interesting to see that pidgin.exe and chrome.exe aren't in the list....

  • Slashdot used to be my primary news aggregator. Well, it's stories like this that push me away. Not the story itself, mind you, I was quite interested in the comments to it. No, the fact that all there was was "funny" jokes about Germans and their bad English. If I want that, I can watch fawlty towers on youtube, it's way more funny (http://www.youtube.com/watch?v=IngEMj4krpA [youtube.com]).

    Bye (for now?).

ASCII a stupid question, you get an EBCDIC answer.

Working...