The DGSE, our national intelligence services are suspected by Canadian intelligence services have created spyware, and having used it to attack a site linked to the Syrian government.
Responding to the sweet name of Casper, the virus would have made his ungrateful and discreet in April task on a Syrian site created in 2011, whose function is to transmit complaints to the Syrian authorities.
Why such target? Joan Calvet, researcher at ESET antivirus company interviewed by Liberation, attempts an explanation:
“It is perhaps an opportunity choice. A recent hacking this site showed that his safety was failing. It is hosted in Syria, making it accessible even if the Internet connection to the rest of the world is off. “
In Focus, probably, the government of Bashar al-Assad – even if there is nothing to be certain, the DGSE not communicating about these actions
Ghost Spy
Anyway, Casper is spyware, able to discreetly retrieve sensitive information, says Libération:
“This is literally a ghost spy program: harvest as discreetly as possible information on its targets without ever revealing its presence and sends the report. In good spy, it adapts to its environment and prefers to keep quiet – not to go for information – being discovered. Leaves, if necessary, to self-destruct. “
The creators of this virus are also very discreet, even cause trouble. If Canadian services consider with “moderate confidence” that the DGSE is the cause, the report released yesterday by ESET is more moderate. Joan Calvet explains Libération:
“There are no signs leading to Casper anyone”
Babar has big ears
Marion Marschalek, an independent researcher who has worked with Joan Calvet, told Motherboard:
“We have reason to believe that the intelligence services French used – even still use – at least four different virus families. “
Among them, Babar viruses, other spyware that can eavesdrop, including Skype or Yahoo messenger conversations. It can also take screenshots and record the keystrokes from the keyboard.
Babar has left traces in Algeria, Norway, Spain, Greece, and Canada. The information of the latter the finally spotted in 2011. Through the “Snowglobe” operation, it would have aimed to retrieve information about Iran’s nuclear program, according to a World survey published last year.
Farm Animal
Babar and Casper have similarities in their computer code, and would therefore be from the same family. They are both children of a troop of hackers, known as “The Farm animals” by researchers, presumably active since 2009 or 2010.
In the barn, there are also Bunny (or Evil Bunny, it depends), another spyware that has the same technique of camouflage and infection Babar, so Casper.
In view of the importance of the target (governments, owners, media, NGOs), the group would receive funds only allow a state agency to provide. Poke the DGSE.
Read on libération.fr
No comments:
Post a Comment