It can be noted that this customer had good operational security in place in order to hide its original location on the internet. This customer was one of the most active users, it is associated with the email has connected with at least 109 different IP addresses from at least 15 different countries.
#Trove hacks 2015 license#
Officially, Hacking Team sold its wares to a company called “ Advanced Monitoring“, whose corporate parent has a license to work with the FSB, as recently as August 28, 2014. It turns out a few (if not all) customers prefer to have their Collector server in their own home country.īelow we have mentioned some of these clients of whom we were able to pinpoint their Collector server: Some clients even prefer to only have contact by phone, and others only via encrypted email. A lot of Hacking Teams clients for example use Gmail, Yahoo and Outlook email addresses. There are clients that don’t really mind if their identity is known, clients that are in a hurry, and clients that care about their identity.
What stands out most is the different use-cases you see in how specific parties are maintaining contact with hacking team. In order to help future attribution cases, we have decided to pinpoint all specific details from the Hacking Team leak as much as possible, and get to the slightest detail into pinpointing who is behind them. Cyber attacks in Europe and America are completely different by nature than cyber attacks in the Asia Pacific region and let alone from Russia. One thing most people often forget is that we are living on huge globe, with continents, habits and completely different mindsets. As long as that unique specific blueprint pops up during the whole attack, you can be able to attribute an attack. Attribution is not easy, attribution can be based on all sorts of circumstantial evidence.
0 kommentar(er)
