• Buro Jansen & Janssen, gewoon inhoud!
    Jansen & Janssen is een onderzoeksburo dat politie, justitie, inlichtingendiensten, overheid in Nederland en de EU kritisch volgt. Een grond- rechten kollektief dat al 40 jaar, sinds 1984, publiceert over uitbreiding van repressieve wet- geving, publiek-private samenwerking, veiligheid in breedste zin, bevoegdheden, overheidsoptreden en andere staatsaangelegenheden.
    Buro Jansen & Janssen Postbus 10591, 1001EN Amsterdam, 020-6123202, 06-34339533, signal +31684065516, info@burojansen.nl (pgp)
    Steun Buro Jansen & Janssen. Word donateur, NL43 ASNB 0856 9868 52 of NL56 INGB 0000 6039 04 ten name van Stichting Res Publica, Postbus 11556, 1001 GN Amsterdam.
  • Publicaties

  • Migratie

  • Politieklachten

  • FinFisher Spyware overview

    In the course of several years Buro Jansen & Janssen has collected data on the use of FinFisher spyware. This overview is not at all complete. It could be that some of the countries mentioned did not use the spyware from FinFisher, but we listed these countries nevertheless because their names came up in research from WikiLeaks, Citizen Lab, Privacy International or other organizations/media because, for example, ‘control servers’ were located in these countries and/or demonstrations were given. This does not necessarily mean anything but the lack of formal denial, formal and open investigation into the existence of these servers and other reluctance to give openness and transparency about the use or existence of spyware in these countries compelled Buro Jansen & Janssen to list them.

    Then there are three other aspects of the listing which are important to mention. Some countries, for example Cyprus, but also Germany, Italy, and Israel are known for harbouring the firms which produce the spyware or export or facilitate the export. Then as already said there are of course the meetings, negotiations and demonstrations, which might or might not have resulted in the purchase of FinFisher. In any case, because transparency is lacking and countries do not give any accountability to why they meet up with companies which have relations with repressive regimes and could be labelled as criminal organization, these countries appear on the list. Finally there is the case of ‘Black Oasis’, ‘Neodymium’ or ‘Promethium’.

    These names are assigned to an unspecified mysterious group which can be a hackers group whether or not related to a company, a state or a governmental body apparently using FinFisher tools in relation to several countries. Mostly it is assigned to some Russian hackers group. The problem is that in a world of spyware that is entangled with secrecy and secret services, it is also possible that the targets do not tell the whole story of the group or organization behind the name. It is difficult to tell.

    So the countries connected to Black Oasis are also added to the list, especially because no specific investigation into the usage of FinFisher by this group is officially and openly reported or announced. All in all the countries on this list can be labeled as in one way or another connected to FinFisher in much the same way the authorities always explain their actions towards presumed suspects of terrorism or organized crime: ‘Where there’s smoke, there’s fire’.

    Then lastly there is the amount of publishing about FinFisher in a country. In some countries a lot is published about Finfisher, partly because there were some specific cases or other reasons. About other countries much less is published. Some only related to ‘Black Oasis’. These countries, like Cyprus, Iran, Iraq, Kuwait, Madagascar, Myanmar, Russia, Sweden, Switzerland, Syria, Thailand and Yemen are still added.

    The same applies to the numerous companies and persons involved in FinFisher. What started with one company spiraled into a web of companies from the UK to Germany, Cyprus, Virgin Islands, Lebanon, Bulgaria, Malaysia, Singapore and other countries. The web consists of dismantled, sleeping, silent, active and other registries. All creating a web which has all the hallmarks of a money laundering and organized crime operation. Question remains why all these companies, amongst which a lot are registered in so-called democratic states, were able to sell their goods to these western countries that paid for spyware from a company about which not only ethical questions could be asked, but also issues of tax avoidance, money laundering and consequently of organized crime.

    Therefore the list of companies is also long. Some companies might only be related to property ownership of one or more of the employees involved in one of the companies which provide spyware, but this is impossible to say because of the nature of the web. Unless persons involved are clear (supported with documents) about their position towards Gamma Group, the trade to repressive regimes, the tax policy of the companies and other aspects of professional and legitimate business operations nothing conclusive can be said about their involvement. So again, ‘where there’s smoke, there’s fire’.

    Gamma Group/ FinFisher is regularly mentioned in relation to two other sets of companies which are formally not connected. These are Elaman and Trovicor. Elaman looks like the typical reseller which has its own network of companies in Germany, Switzerland, Lebanon, the Emirates and probably Singapore, Indonesia and South Africa. Although it looks like an intermediary, Elaman seems much more connected to the Gamma Group network. It presents itself as closely connected to Gamma TSE, Gamma Group and G2 Systems. As a Technical Sales and Consultancy specialist Elaman seems much more as a covered Gamma Group sales department, less connected then for example the Raedarius network.

    And then there is the Trovicor network which was known as Nokia Siemens Networks or NSN, a joint venture between the Finnish Nokia and the German Siemens. Trovicor looks like a competitor of Gamma Group but the world of spyware companies show similarities of the world of spies, a world or mirrors. Gamma Group worked in the past closely together with Siemens Pte. Elaman sells not only products from Gamma Group, but also Trovicor and Nokia Siemens Networks, VASTech and Utimaco. The Swiss branch of Trovicor is closely connected to the Swiss branch of Elaman. Personnel has been switching from Nokia Siemens Networks to Elaman. Although there are no formal connections between Gamma Group and Trovicor, definitely there are very close relations. If that is still the case remains unclear since the acquisition of Trovicor by the French Boss Industries. Boss Industries also owns Nexa Technologies, formerly known as Amesys.

    Then what about the people involved. Starting with father and son Nelson only a few people have come in the limelight over the years, these are mainly Stefan of Stephen Oelker of Stephan Ölkers, who died in 2016, and Martin Johannes Münch (Muench). For the rest the listed persons are connected to one or more companies related to the network of Gamma Group and FinFisher. Interesting example is for example Christoph Diekhöfer. A person who is vaguely related to the network although he pops up in relation to a company in Cyprus, connected to Louthean Nelson and connected to export of FinFisher. So again, are these people involved in providing spyware to repressive regimes, tax avoidance, money laundering, criminal activities? Question mark yes, but also no, because if you define the Gamma Group as an organized crime group providing repressive regimes and other criminal activities with tools to violate human rights then every person in that group could be a suspect in an investigation. So definitely smoke, and ‘when there’s smoke, there’s fire’.

     

    Related companies (dismantled, sleeping, silent, active and other registries):

    In the United Kingdom: Gamma International (UK) Ltd, Gamma TSE Limited, Gamma 2000 Limited, Gamma 2000 Waste Management Limited, G2 Systems Limited, The CBRN Team Limited, Computplus Limited, Finfisher Limited, T.S. Comms Limited, Gamma Cyan Limited, Personal Protection Products Limited, Compass Military Services Limited

    In Germany: PK Electronic International Limited, Gamma International GmbH, Gamma International Sales GmbH, Gamma International Holding GmbH, FinFisher GmbH, FinFisher Labs GmbH, FinFisher Holding GmbH, Raedarius m8 GmbH, So m8 GmbH, Lench IT Solutions Plc, SIS Eastern Europe GmbH, SIS Romania GmbH, Vilicius Holding GmbH, Martin J. Muench GmbH, MuShun GmbH

    In Germany, probably not directly related to the production of spyware, although not conclusive but might be related to trade and/or trade relations: Villa Deta GmbH, SO Verwaltungsgesellschaft mbH, VGL Verwaltungsgesellschaft mbH, hph Immobilienberatung GmbH, hph consulting GmbH, Objekt 5001 GmbH, Quaestus Alp47 GmbH, Quaestus alpha GmbH, AK Invest Gmbh, SIS Solar Installation Service, AdSum UG, H & D Holding GmbH, GM Vermögensverwaltung GmbH, IQbyte GmbH, NTT Security (Germany) Services GmbH,

    In Switzerland: Gamma Sales AG, FinFisher AG, Amador AG, Raedarius AG, Gamma Global Holding AG, Global Environnement Capital SA

    In Bulgaria: Raedarius M8 EOOD (РАЕДАРИУС М8 ЕООД)

    In Singapore: Mindstone International Pte. Ltd., Global Surveillance Systems, BizCorp Management Pte Ltd.,

    In Malaysia: Raedarius M8 Sdn. Bhd., Mu Shun (Malaysia) Sdn. Bhd.

    In Lebanon: Gamma Group International SAL, Alaman – German Security Solutions SAL, Gamma Cyan SAL Offshore, Cyan Engineering Services SAL, Mtrac?

    In the British Virgin Islands: Gamma Group International Limited, Mindstone International LTD

    In Cyprus: GTSC LTD, Gamma International Ltd, Gamma 2000 (Cyprus) Limited, Raedarius Limited

    In the United Arab Emirates: Mu Shun Fze (?), Raedarius (Media, IT & Telecommunication)

     

    The several branches of Elaman: Elaman GmbH (Germany), Alaman – German Security Solutions Sal Offshore (Lebanon), Elaman ME FZE (UAE/Dubai), Elaman AG (Switzerland)(probably also companies in Singapore, Indonesia and South Africa)

     

    The several branches of Trovicor: Trovicor gmbh (Germany), Trovicor holding GmbH, Datafusion Systems GmbH (Germany), Datafusion Holding GmbH (Germany), Intelligence Solutions Holding GmbH (Germany), Blitz 08-500 GmbH (Germany), Trovicor AG (Switzerland), Trovicor (Smc Pvt.) Ltd. (Pakistan), Trovicor SOLUTIONS FZ LLC (UAE/Dubai), Trovicor Fz-Llc (UAE/Dubai), Trovicor Technology Sdn. Bhd. (Malaysia), TROVICOR SDN. BHD. (Malaysia), Eirene – Trovicor Solutions India Pvt.Ltd (India), Trovicor s.r.o. (Czech Republic), Trovicor LLC (Oman), Trovicor solutions asia limited (Hong Kong), Trovicor (full name?, Lebanon)

     

    Related persons:

    Peter Klüver (PKI Electronic Intelligence GmbH)

    William Louthean Nelson (Gamma TSE Limited, FinFisher Limited, Gamma 2000 Waste Management Limited, Gamma International (UK) Limited, Gamma 2000 Limited, Gamma Cyan, Limited, G2 Systems Limited, Computplus Limited, Compass Military Services Limited)

    Louthean John Alexander Nelson (PKI Electronic Intelligence GmbH, PK Electronic International Limited, PK Electronic International Corporation, Gamma TSE Limited, FinFisher Limited, Gamma 2000 Waste Management Limited, Computplus Limited, Gamma International (UK) Limited, the CBRN Team Limited, Gamma 2000 Limited, Gamma Cyan, Limited, G2 Systems Limited, BN Management Security Systems Ltd, Axcition Europe, Gamma Tema Consultants, Gamma International Ltd, Gamma International GmbH, Gamma Group International SAL, GTSC LTD, Gamma International Ltd, Gamma 2000 (Cyprus) Limited, Raedarius Limited, Mindstone International Pte. Ltd., Global Surveillance Systems, BizCorp Management Pte Ltd, Gamma Group International Limited, Mindstone International Ltd)

    Brydon Stewart Deas Nelson (Gamma Cyan, Limited, G2 Systems Limited)

    Pauline Louise Nelson (G2 Systems Limited, Computplus Limited, Gamma 2000 Waste Management Limited, Gamma 2000 Limited)

    Jacob Perch Nelson (the CBRN Team Limited)

    Derek Alan Myers (Gamma TSE Limited, PK Electronic International Limited)

    Martyn Russell Myers (Gamma TSE Limited)

    Christine-Ann Myers (Gamma TSE Limited)

    Thomas Fisher (Gamma International)

    Mohamed Farid Matar (Gamma Group International SAL)

    Edgar Bucheli (Gamma International Asia)

    Johnny Debs (Cyan Engineering Services Sal)

    Emmanuel Chagot

    David John Wood (Gamma Cyan Limited)

    Julian Oliver Snell (Gamma Cyan Limited)

    Karen Jean Seymour (G2 Systems Limited)

    Stefan of Stephen Oelker of Stephan Ölkers (died in 2016): (Vilicius Holding GmbH (FinFisher Holding GmbH, Gamma International Holding GmbH), so m8 GmbH, raedarius m8 GmbH, FinFisher GmbH, FinFisher Labs GmbH, Mtrac? (Libanon)

    Sascha Markus Kampf (Vilicius Holding GmbH, so m8 GmbH, FinFisher Holding GmbH, Villa Deta GmbH, SO Verwaltungsgesellschaft mbH, VGL Verwaltungsgesellschaft mbH, hph Immobilienberatung GmbH, hph consulting GmbH, Objekt 5001 GmbH, raedarius m8 GmbH, Quaestus Alp47 GmbH)

    Andreas Knab (Villa Deta GmbH, SIS Eastern Europe GmbH, AK Invest Gmbh, SIS Solar Installation Service)

    Georg Glatzeder (VGL Verwaltungsgesellschaft mbH)

    Katja Gogalla (VGL Verwaltungsgesellschaft mbH)

    Martin Johannes Münch (Muench) (raedarius m8 GmbH, FinFisher GmbH, Vilicius Holding GmbH,  Martin J. Muench GmbH, MuShun GmbH, FinFisher GmbH, FinFisher Labs GmbH, FinFisher Labs GmbH)

    Carlos Hugo Gandini (Trovicor, AdSum UG, H & D HOLDING GMBH, FinFisher GmbH, Gamma Group, Gamma International)

    Holger Tesche (GM Vermögensverwaltung GmbH, FinFisher Labs GmbH, Gamma International GmbH)

    Lucian of Lucien Hanga (FinFisher Labs GmbH, Gamma International GmbH)

    Daniel Maly (FinFisher GmbH)

    Christoph Diekhöfer (raedarius m8 GmbH, Raedarius Limited)

    Georg Johann Magg (FinFisher Labs GmbH, Raedarius m8 GmbH, IQbyte GmbH, NTT Security (Germany) Services GmbH, Integralis Deutschland GmbH, Integralis Services GmbH,  Activis Ismaning GmbH, Activis GmbH, NTT Com Security (Deutschland) Services GmbH, NTT Com Security (Germany) Services GmbH), Integralis AG, Nocitra Limited (voorheen Articon-Integralis Limited, Integralis Limited, Intercede 601 Limited), NTT Security UK Limited (voorheen NTT Com Security (UK) Limited, Integralis Limited, Integralis Network Systems Limited, Coleslaw 355 Limited, Silversky EU GmbH)

    Harald Heid (IQbyte GmbH, MTI Technology GmbH)

    Michael Marr (IQbyte GmbH)

    Nicolas Mayencourt (Dreamlab)

    Peter Habertheuer (Vastech AG, Nokia Siemens Networks, Elaman GmbH)

    Monika Frech-Hänggi (Vastech AG, Elaman AG, FAI AG, Famoex AG, Kialo AG, S.A. de la Communication Sécurisée SCS, SBI Consulting- und Verwaltungs- AG, Priparop S.A., Falcontec SA, Marphil AG)

    Henning Möller (Elaman AG, Trovicor AG, Falcontec SA, FAI AG, Kialo AG (Ciphire Labs GmbH/ Kialo GmbH))

    Markus Michael Meiler (Elaman AG, Elaman GmbH, inseen UG)

    Holger Günther Rumscheidt (Elaman GmbH, Elaman AG, MAELU Franchise Gmb, Toleo GmbH)

    Eugen Fissl (Elaman GmbH)

    Wolfgang Sandow (Famoex AG, Falcontec SA, WKW AG)

    Georg Johann Magg (FinFisher Labs GmbH, raedarius m8 GmbH, IQbyte GmbH, NTT Security (Germany) Services GmbH (Integralis Deutschland GmbH, Integralis Services GmbH,  Activis Ismaning GmbH, Activis GmbH, NTT Com Security (Deutschland) Services GmbH, NTT Com Security (Germany) Services GmbH), Integralis AG, Nocitra Limited (voorheen Articon-Integralis Limited, Integralis Limited, Intercede 601 Limited), NTT Security UK Limited (voorheen NTT Com Security (UK) Limited, Integralis Limited, Integralis Network Systems Limited, Coleslaw 355 Limited))

     

     

     

    Disclaimer

    Buro Jansen & Janssen does not claim that this research is fully satisfactory, but it is an attempt to protect the rule of law by which suspects have insight in the way evidence is gathered and by which the legitimacy of evidence can be proven beyond a reasonable doubt. Spyware, and in this case FinFisher, has all the whole marks of a black box by which evidence is collected which cannot be verified beyond a reasonable doubt that it is truly evidence and not fabricated proof of guilt by a state or even a non-state actor. This doubt is enlarged because of the secrecy and the lack of transparency by both states and companies of the usages, inner workings, limitations, security entity breaches and other aspects of the used spyware. In the case of FinFisher the use by a non-identified, for now named ‘Black Oasis’, questions also the fact if law enforcement agencies are the only actors targeting the suspects. It opens Pandora’s Box of possibilities to fabricate evidence of wrongdoing. And in the case of FinFisher there is not only the possibility of violation of export regulations, but also the questions about tax evasion, money laundering, espionage and other criminal activities in relation to the export and usage of spyware by repressive regimes. Because isn’t there a possibility that ‘Black Oasis’ is part of the FinFisher network. This is not an unreasonable conclusion. No official investigation has been started in relation to ‘Black Oasis’, no official publication and statement has been issued in relation to ‘Black Oasis’, so everything is possible.

    In the case that you or your company is listed here and this is not correct, Buro Jansen & Janssen will correct this if beyond a reasonable doubt the claim of not being connected to the Gamma Group network is made public.

     

    The countries

    Angola

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://advox.globalvoices.org/2014/02/26/digital-surveillance-in-angola-and-other-less-important-african-countries/

    https://www.computerworld.com/article/2497737/new-mac-spyware-found-on-angolan-activist-s-computer.html

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Australia

    https://www.itnews.com.au/news/nsw-police-named-as-finfisher-spyware-user-392090

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Austria

    https://citizenlab.ca/2013/04/for-their-eyes-only-2/

    https://www.europarl.europa.eu/RegData/etudes/STUD/2022/729397/EPRS_STU(2022)729397_EN.pdf

    https://www.schneier.com/blog/archives/2013/05/more_on_finspyf.html

    https://www.helpnetsecurity.com/2013/05/02/finfisher-spy-kits-cc-servers-are-popping-up-around-the-world/

    https://feathersproject.wordpress.com/tag/finfisher/

     

    Bahrain

    https://privacyinternational.org/blog/1231/bahraini-government-help-finfisher-tracks-activists-living-united-kingdom

    https://bahrainwatch.org/blog/2014/08/07/uk-spyware-used-to-hack-bahrain-lawyers-activists

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://globalvoices.org/2014/08/10/evidence-suggests-bahrains-government-hacked-its-own-fact-finding-commission/

    https://citizenlab.ca/2012/07/from-bahrain-with-love-finfishers-spy-kit-exposed/

    https://web.archive.org/web/20140815233325/https://bahrainwatch.org/blog/2014/08/07/uk-spyware-used-to-hack-bahrain-lawyers-activists/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://wikileaks.org/spyfiles4/customers.html

     

    Bangladesh

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/

    https://www.ecoi.net/en/document/2060896.html

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Belgium

    https://www.datapanik.org/2014/09/18/finfisher-spyware-in-belgie/

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://wikileaks.org/spyfiles4/customers.html

     

    Bosnia and Herzegovina

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Brazil

    https://www.br.de/nachrichten/bayern/razzia-bei-muenchner-spionage-firma,SDJtroG

    https://web.archive.org/web/20201026065537/https://www.tagesschau.de/investigativ/ndr/spaehsoftware-finfisher-101.html

    http://www.transparencia.mg.gov.br/component/transparenciamg/despesa-orgaos/2019/01-01-2019/31-12-2019/3888/1868/546/21/40

    http://transparencia.mpmg.mp.br/arquivo/licitacoes_contratos_e_convenios/contratos/contratos/2020/CONTRATOS_2020-07.xls

    https://www.mpmg.mp.br/files/diariooficial/DO-20191219.PDF#page=140

    https://www.mpmg.mp.br/files/diariooficial/DO-20191221.PDF#page=461

     

    Brunei

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.europarl.europa.eu/RegData/etudes/STUD/2015/527409/EPRS_STU%282015%29527409_REV1_EN.pdf

     

    Bulgaria

    https://bivol.bg/en/finspy-bulgaria-mtitc-english.html

    https://bivol.bg/finspy-bulgaria.html#english

    https://www.helpnetsecurity.com/2013/05/02/finfisher-spy-kits-cc-servers-are-popping-up-around-the-world/

    https://www.security.nl/posting/402911/EFF+hekelt+vermeende+aanschaf+Finfisher+door+Nederland

     

    Canada

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.huffpost.com/archive/ca/entry/finfisher-spyware-canada-among-25-countries-hosting-servers-for_n_2876724

    https://www.cbc.ca/news/politics/servers-in-canada-linked-to-finfisher-spyware-program-1.1351993

    https://openmedia.org/article/item/spying-software-linked-canadian-servers

     

    Cyprus

    https://www.propublica.org/article/leaked-docs-show-spyware-used-to-snoop-on-u.s.-computers

     

    Czech Republic

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.rapid7.com/blog/post/2012/08/08/finfisher/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Egypt

    https://archive.f-secure.com/weblog/archives/00002114.html

    https://www.amnesty.org/en/latest/research/2020/09/german-made-finspy-spyware-found-in-egypt-and-mac-and-linux-versions-revealed/

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.dandc.eu/en/article/egyptian-regime-uses-spyware-against-critics-some-it-bought-european-companies

     

    https://www.israeldefense.co.il/en/node/45584

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    Estonia

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://news.err.ee/113620/wikileaks-estonia-spent-over-1-million-on-spyware

    https://wikileaks.org/spyfiles4/customers.html

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Ethiopia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.vice.com/en/article/j5d8ng/ethiopia-allegedly-spied-on-security-researcher-with-israel-made-spyware

    https://privacyinternational.org/blog/1199/surveillance-follows-ethiopian-political-refugee-uk

    https://nakedsecurity.sophos.com/2017/03/16/court-blocks-american-from-suing-ethiopia-over-alleged-hacking/

    http://america.aljazeera.com/articles/2015/7/13/foreign-cyber-spying-on-us-citizens.html

    https://ethiounite.blogspot.com/2015/07/lawsuit-alleges-that-addis-ababa-used.html

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Gabon

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Germany

    https://www.itnews.com.au/news/german-police-building-malware-329254

    https://netzpolitik.org/2014/geheimes-dokument-bundeskriminalamt-darf-finfisher-finspy-nicht-einsetzen-versucht-einfach-neue-version-nochmal/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    Hungary

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    India

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://cis-india.org/internet-governance/blog/fin-fisher-in-india-and-myth-of-harmless-metadata

     

    Indonesia

    https://www.abc.net.au/news/2016-01-26/notorious-spyware-used-to-take-over-computers-found-in-sydney/7114734

     

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.accessnow.org/cms/assets/uploads/2018/05/FinFisher-changes-tactics-to-hook-critics-AN.pdf

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

    https://www.abc.net.au/news/2016-01-26/notorious-spyware-used-to-take-over-computers-found-in-sydney/7114734

    https://privacyinternational.org/blog/1540/elaman-and-gamma-whats-selling-and-whos-buying-indonesia

     

    Iran

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/

    https://www.cyberscoop.com/middle-eastern-hacking-group-using-finfisher-malware-conduct-international-espionage/

     

    Iraq

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/

    https://www.cyberscoop.com/middle-eastern-hacking-group-using-finfisher-malware-conduct-international-espionage/

     

    Italy

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://wikileaks.org/spyfiles4/customers.html

     

    Japan

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

     

    Jordan

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://ammannet.net/sites/default/files/2022-04/Jordan%20report-final_0.pdf

    https://daraj.com/en/89117/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Kazakhstan

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Kenya

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

     

    Kuwait

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://advox.globalvoices.org/2014/09/05/exclusive-german-companies-are-selling-unlicensed-surveillance-technologies-to-human-rights-violators-and-making-millions/

    https://www.spiegel.de/politik/deutschland/deutsche-spaehtechnik-gabriels-ausfuhrkontrollen-bleiben-wirkungslos-a-987555.html

    https://www.agnieszka-brugger.de/fileadmin/dateien/Dokumente/Abruestung/Ruestungsexporte/20140808_Antwort_KA_Spaehsoftware_Drs182067_1.pdf

     

    Latvia

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://citizenlab.ca/storage/finfisher/final/fortheireyesonly.pdf

    https://www.wikileaks.org/spyfiles/docs/GAMMA-2011-LoutNels-en.pdf

     

    Lebanon

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://globalvoices.org/2015/07/28/hackingteam-leaks-lebanons-cybercrime-bureau-exploited-angry-birds-to-surveil-citizens-mobile-devices/

    https://middle-east-online.com/en/lebanon%E2%80%99s-operation-%E2%80%98dark-caracal%E2%80%99-and-shia-link

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    Libya

    https://netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_Technical-Appendix_ENG.pdf

    https://bahrainileaks.com/en/2021/03/01/espionage/

     

    Lithuania

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/04/for-their-eyes-only-2/

    https://cyberwar.nl/d/fortheireyesonly.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    Madagascar

    https://citizenlab.ca/storage/finfisher/final/fortheireyesonly.pdf

     

    Malaysia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.digitalnewsasia.com/digital-economy/malaysian-govt-spyware-use-may-be-unconstitutional-call-for-action

    https://www.theedgemarkets.com/article/minister-no-proof-surveillance-software-server-used-malaysia

    https://publications.parliament.uk/pa/cm201415/cmselect/cmquad/608/608iii.pdf

    https://www.theedgemarkets.com/article/minister-no-proof-surveillance-software-server-used-malaysia

     

    Mexico

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

    https://carnegieendowment.org/2021/07/21/governments-are-using-spyware-on-citizens.-can-they-be-stopped-pub-85019

     

    Mongolia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://wiki.piratenpartei.de/FinFisher

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

     

    Morocco

    https://cpj.org/reports/2022/10/when-spyware-turns-phones-into-weapons/

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://carnegieendowment.org/2021/07/21/governments-are-using-spyware-on-citizens.-can-they-be-stopped-pub-85019

     

    Myanmar

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Netherlands

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://wikileaks.org/spyfiles4/customers.html

     

    Nigeria

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

    https://www.arise.tv/report-nigerias-military-acquired-equipment-to-spy-on-citizens-calls-active-since-2015/

     

    North Macedonia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://balkaninsight.com/2022/01/06/wine-weapons-and-whatsapp-a-skopje-spyware-scandal/

     

    Oman

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.theregister.com/2015/05/20/omani_intel_docs/

    https://www.corpwatch.org/article/turkmenistan-and-oman-negotiated-buy-spy-software-wikileaks

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Pakistan

    https://bolobhi.org/faq-what-is-finfisher-what-is-it-doing-in-pakistan/

    https://upload.wikimedia.org/wikipedia/commons/7/77/GISwatch_2014_PDF.pdf

    https://www.dawn.com/news/1127405

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Panama

    https://citizenlab.ca/storage/finfisher/final/fortheireyesonly.pdf

    https://www.aies.at/download/2020/AIES-Studies-Colonial-Cables.pdf

     

    Paraguay

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

     

    Qatar

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://dohanews.co/wikileaks-qatar-spent-qr3-2-million-computer-snooping-software/

    https://wikileaks.org/spyfiles4/customers.html

     

    Romania

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Russia

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    Saudi Arabia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://carnegieendowment.org/2021/07/21/governments-are-using-spyware-on-citizens.-can-they-be-stopped-pub-85019

     

    Serbia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.cigionline.org/articles/in-the-former-soviet-bloc-the-democratic-dreams-of-1989-continue-to-fade/

     

    Singapore

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Slovakia

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/database.html

     

    Slovenia

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    South Africa

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://mybroadband.co.za/news/security/110288-did-sa-government-blow-e2-million-on-spyware.html

    https://advox.globalvoices.org/2014/02/26/digital-surveillance-in-angola-and-other-less-important-african-countries/

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://theconversation.com/leaked-emails-ramaphosas-hypocrisy-on-spying-by-the-south-african-state-83605

    https://wikileaks.org/spyfiles4/customers.html

     

    Spain

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    ttps://duo.com/decipher/pegasus-spyware-operations-targeted-uk-gov-officials-catalans-in-spain

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

     

    Sweden

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://www.securityweek.com/windows-zero-day-exploited-fruityarmor-sandcat-threat-groups/

     

    Switzerland

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://www.wikileaks.org/spyfiles/docs/GAMMA-2011-LoutNels-en.pdf

     

    Taiwan

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

     

    Thailand

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://www.vice.com/en/article/aemeae/meet-flexispy-the-company-getting-rich-selling-stalkerware-to-jealous-lovers

     

    Tunisia

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://digitalcommons.wcl.american.edu/cgi/viewcontent.cgi?article=1749&context=auilr Trovicor

    https://www.eff.org/nl/deeplinks/2012/02/spy-tech-companies-their-authoritarian-customers-part-ii-trovicor-and-area-spa Trovicor

    https://web.archive.org/web/20150330102727/http://database.statewatch.org/article.asp?aid=32351 German authorities

    https://info.publicintelligence.net/EU-MassSurveillance-1-Annex1.pdf

     

    Turkey

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.accessnow.org/cms/assets/uploads/2018/05/FinFisher-changes-tactics-to-hook-critics-AN.pdf

    https://www.reuters.com/article/germany-turkey-spyware-idUSL5N25W29M

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

    https://media.euobserver.com/281e6fa170b4673bc87da11181f30041.pdf

    https://thearabweekly.com/erdogans-vast-espionage-apparatus-helps-him-crack-down-opponents

    https://carnegieendowment.org/2021/07/21/governments-are-using-spyware-on-citizens.-can-they-be-stopped-pub-85019

     

    Turkmenistan

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.corpwatch.org/article/turkmenistan-and-oman-negotiated-buy-spy-software-wikileaks

    https://www.accessnow.org/cms/assets/uploads/archive/docs/Commonwealth_of_Surveillance_States_ENG_1.pdf

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

     

    UAE

    https://www.amnesty.org/en/latest/research/2020/09/german-made-finspy-spyware-found-in-egypt-and-mac-and-linux-versions-revealed/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

     

    Uganda

    https://www.privacyinternational.org/sites/default/files/2017-12/Uganda_Report_1.pdf

    https://www.monitor.co.ug/uganda/news/national/police-buys-israeli-phone-hacking-tool-3928802

     

    Ukraine

    https://www.accessnow.org/cms/assets/uploads/2018/05/FinFisher-changes-tactics-to-hook-critics-AN.pdf

     

    United Kingdom

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

     

    United States

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/

     

    Venezuela

    https://citizenlab.ca/2015/10/mapping-finfishers-continuing-proliferation/

    https://www.accessnow.org/cms/assets/uploads/2018/05/FinFisher-changes-tactics-to-hook-critics-AN.pdf

    https://cdn.netzpolitik.org/wp-upload/2019/09/2019-07-05_FinFisher_Criminal-Complaint_ENG.pdf

     

    Vietnam

    https://citizenlab.ca/2013/03/you-only-click-twice-finfishers-global-proliferation-2/ control servers for FinSpy

    https://www.silicon.co.uk/workspace/british-surveillance-kit-used-in-somalia-vietnam-110302

    https://www.theguardian.com/technology/2014/sep/16/wikileaks-finfisher-files-malware-surveillance

    https://wikileaks.org/spyfiles4/customers.html

     

    Yemen

    https://arstechnica.com/tech-policy/2014/08/leaked-docs-show-spyware-used-to-snoop-on-us-computers/

    https://www.eff.org/nl/deeplinks/2012/02/spy-tech-companies-their-authoritarian-customers-part-ii-trovicor-and-area-spa Trovicor

    https://leonievanbreeschoten.nl/wp-content/uploads/2018/02/Leonie-van-Breeschoten-Dealing-in-Deadly-Software.pdf Trovicor

     

    Additional

     

    ‘Black Oasis’

    https://www.infosecuritymagazine.nl/nieuws/kaspersky-lab-ontdekt-adobe-flash-zero-day-met-nederlandse-slachtoffers

     

    https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/

     

    https://www.scmagazine.com/news/content/did-israel-deliver-spyware-using-adobe-flash-0-day-in-word-document

    https://www.cyberscoop.com/middle-eastern-hacking-group-using-finfisher-malware-conduct-international-espionage/

    https://www.kaspersky.com/about/press-releases/2017_kaspersky-lab-discovers-adobe-flash-zero-day

     

    StrongPity

    https://ahvalnews.com/turkey/uncontrollable-mess-proliferation-state-spyware

    https://www.bleepingcomputer.com/news/security/strongpity-hackers-target-android-users-via-trojanized-telegram-app/

    https://www.zdnet.com/article/this-is-how-promethium-malware-operators-used-security-research-bulletins-in-their-favor/

     

    extra

    https://anti-interception.com/spyware-en/

     

    Trovicor

    https://digitalcommons.wcl.american.edu/cgi/viewcontent.cgi?article=1749&context=auilr

    https://www.privacyinternational.org/blog/our-oecd-complaint-against-gamma-international-and-trovicor

     

    Hacking Team

    https://www.ohchr.org/sites/default/files/Documents/Issues/Opinion/Surveillance/CITIZEN_LAB.pdf

     

    Artikel als pdf