The idea behind Megapanzer was originally to create a prototype backdoor that proves the feasibility to connect inside a corporate network through firewalls and proxies to a machine outside the protected zone in the internet. Simple and straightforward and eventually successful.

With the time more and more features were added and once a simple prototype Megapanzer grew to a system to observe, control computers and to intercept e-banking sessions. I got in contact with people from banks and tried to explain the ways how to circumvent their protection mechanisms and howto transfer money from one of their customers account to an other bank account. The result was rather amazing. After confirming these vulnerabilities exist and it is a real world scenario they also explained it is illegal to test such kind of circumvention against their systems according their contracts (I’ve never subscribed a contract and I’ve never seen an agreement on the ebanking test servers). No interest from their side even if possible cures to their vulnerability were suggested.