German Police uses a ‘Federal Trojan’

Hallo :)

Bundestrojaner stands for “Federal Trojan,” in German. This  malware family is the first created by the government to be deployed against its own citizens.

In 2011, there was a controversy against The trojan when the German-based Chaos Computer Club (CCC) discovered that Bundestrojaner, also known as R2D2, included more spying capabilities than initially announced by German authorities and what the German constitution allowed.

The first version of Bundestrojaner was developed to enable police officers to tap into Internet and telephony communications, meaning  wiretapping communications, just like police have been wiretapping phone calls for decades.

According to CCC researchers, Bundestrojaner can also allow German intelligence agencies to open a backdoor on infected computers, take screenshots, and record audio and video via the computer’s camera and microphone, breaking a suspect’s right to privacy.

And it has an insecure update mechanism, which allowed a remote third-party to take over the trojan.

When the media scandal broke out,  German Justice Minister Sabine Leutheusser-Schnarrenberger acknowledged in public  that government agencies used this insecure malware in legal investigations, but also made a point to reassure the public that only the wiretapping functions were used, in concordance with the German constitution.

Five years after the Bundestrojaner fiasco, German newspaper Deutschlandfunk reported that Germany’s Federal Criminal Police has been working on a new version of the trojan since autumn 2015, which the German Ministry of Interior has approved for usage starting this week.

In addition to its in-house developed malware, German police is also a known buyer of the FinFisher spyware developed by German-British surveillance software company Gamma International.


Source: Akati

Comments are closed.