Months after the announcement, and weeks in production, the Megapanzer video is finally here, cut, processed and uploaded to youtube! The video shows in seven simple steps how to take over an ebanking session of a victim and which tools you need to accomplish this stunt. The weakest link in the chain is (obviously) not [...]

read full post »

This article on the Swiss news paper Sonntagszeitung is from October 2006 but for completeness I decided to add it anyway. Schweizer Behörden testen Spionage-Software Schweizer Strafermittler und das Departement für Umwelt, Verkehr und Kommunikation (Uvek) prüfen den Einsatz von Spionagesoftware zum Abhören von Internettelefonaten. Telecomfirmen und Internetanbieter sollen die als Trojaner bezeichneten Programme auf [...]

read full post »

This article on the register is from October 2006 but for completeness I decided to add it anyway. Swiss gov ‘mulls’ spyware to tap VoIP calls The Swiss government is “considering” the use of a spyware application called Superintendent Trojan to eavesdrop on IP telephony conversation, Heise Security reports. Swiss firm ERA IT Solutions said [...]

read full post »

This article on h-online is from October 2006 but for completeness I decided to add it anyway. Superintendent Trojan Whilst listening in on normal telephone calls over landlines or mobile phone networks has become a routine procedure, Voice over IP connections frequently present a problem for investigators, especially when the persons being monitored use Skype [...]

read full post »

At BlackHat DC 2009 Moxie Marlinspike demonstrated how to subvert HTTPS with SSLStrip. SSLStrip intercepts HTTP traffic, watches for HTTPS links inside the data stream and maps these HTTPS links to HTTP. Whenever a victim clicks on such a mapped HTTPS link SSLStrip will notice it and act as a HTTP2HTTPS proxy server. All the [...]

read full post »