Government Spyware Vendor Left Customer, Victim Data Online for Everyone To See (vice.com)

← Back to Stories (view on slashdot.org)

Government Spyware Vendor Left Customer, Victim Data Online for Everyone To See (vice.com)

Posted by msmash on Wednesday October 24, 2018 @06:17AM from the well-that's-unfortunate dept.

The Germany-based spyware startup Wolf Intelligence exposed its own data, including surveillance target's information, passports scans of its founder and family, and recordings of meetings. From a report: A startup that claims to sell surveillance and hacking technologies to governments around the world left nearly all its data -- including information taken from infected targets and victims -- exposed online, according to a security firm who found the data. Wolf Intelligence, a Germany-based spyware company that made headlines for sending a bodyguard to Mauritania and prompting an international incident after the local government detained the bodyguard as collateral for a deal went wrong, left a trove of its own data exposed online. The leak exposed 20 gigabytes of data, including recordings of meetings with customers, a scan of a passport belonging to the company's founder, and scans of the founder's credit cards, and surveillance targets' data, according to researchers.

Security researchers from CSIS Security discovered the data on an unprotected command and control server and a public Google Drive folder. The researchers showed screenshots of the leaked data during a talk at the Virus Bulletin conference in Montreal, which Motherboard attended. "This is a very stupid story in the sense that you would think that a company actually selling surveillance tools like this would know more about operational security," CSIS co-founder Peter Kruse told Motherboard in an interview. "They exposed themselves -- literally everything was available publicly on the internet."

25 comments

Min score:

Reason:

Sort:

"Government Spyware Vendor"?! by Anonymous Coward · 2018-10-24 06:29 · Score: 0

VENDOR?! They openly admit to their existence now?! How exactly are the targets compromised? Backdoors in Windows? Hardware backdoors? AND they left this info lying around in public?! WTF?!
1. Re:"Government Spyware Vendor"?! by Sique · 2018-10-24 06:57 · Score: 1
  
  Thanks for giving a sensationalist version of the information in this article.
  
  --
  .sig: Sique *sigh*
2. Re:"Government Spyware Vendor"?! by wwphx · 2018-10-24 08:09 · Score: 1
  
  CEO: Johnny English, CTO: Mr. Bean.
  
  --
  When you sympathize with stupidity, you start thinking like an idiot.
gestalt of our age by Anonymous Coward · 2018-10-24 06:41 · Score: 0

Whatever happened to basic competency in your core skillset?
1. Re:gestalt of our age by jellomizer · 2018-10-24 06:52 · Score: 2
  
  It appears you have never worked anywhere.
  There is always that one guy who you have no idea why they were hired, and why they are still there. And is a net loss to your work.
  
  --
  If something is so important that you feel the need to post it on the internet... It probably isn't that important.
2. Re:gestalt of our age by Anonymous Coward · 2018-10-24 11:41 · Score: 0
  
  And their name is almost always Kevin.
3. Re: gestalt of our age by Anonymous Coward · 2018-10-24 15:07 · Score: 0
  
  Wow. I have a Kevin too.
Surprising if 2016, but common now by BoRegardless · 2018-10-24 06:50 · Score: 1

I've lost respect for people who use "easy" cloud services.
1. Re:Surprising if 2016, but common now by Opportunist · 2018-10-24 10:34 · Score: 1
  
  Funny that it's a German company. "Cloud" is pronounced exactly the same as the German "klaut", which means "he/she/it steals", as well as the imperative plural of "steal!"
  
  --
  We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Ahead of their time - a real leader by Anonymous Coward · 2018-10-24 07:13 · Score: 0

They were just taking 'transparency' and 'full disclosure' to its logical conclusion.
THIS is how workers can fight back! by Anonymous Coward · 2018-10-24 07:31 · Score: 0

This was no accident.
Keep dragging those evil fuckers hiding in the dark corners of our governments into the light of exposure! They cant do their evil without us technical peons. We peons can change the world for good.
Re:Limerick by Anonymous Coward · 2018-10-24 07:34 · Score: 1

But your sister enjoys my lignite
Best kind of advertising by Anonymous Coward · 2018-10-24 07:50 · Score: 1

They were just demonstrating their software on themselves! Look at how well it works!
1. Re: Best kind of advertising by Anonymous Coward · 2018-10-24 08:39 · Score: 0
  
  Wolf intelligence is a total fraud. You can duplicate their surveillance tool by copy pasting together snippets from GitHub...
Wolf Intelligence... by sconeu · 2018-10-24 08:20 · Score: 1

Doesn't sound very intelligent to me.
(disclaimer, I only RTFS)

--
General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
1. Re:Wolf Intelligence... by careysub · 2018-10-24 09:21 · Score: 1
  
  I wonder if the German spy company Wolf Intelligence's name was inspired by Markus Wolf, the most notorious spymaster of the East German Stasi -- the spy organization with a state attached.
  
  --
  Starships were meant to fly, Hands up and touch the sky - Nicky Minaj
2. Re:Wolf Intelligence... by Opportunist · 2018-10-24 10:33 · Score: 1
  
  I'm pretty sure Wolf would turn green in envy when he could see just how easy it could've been. All the time and effort he put into it... only to see capitalism succeed yet again where communism failed.
  
  --
  We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
3. Re:Wolf Intelligence... by Sique · 2018-10-24 11:02 · Score: 1
  
  Actually, Wolf is a pretty common family name in Germany. And of course, Wolf in German means wolf, the animal. Thus I doubt any parallel to Markus Wolf, and I guess Mr. Kumar (the founder) was trying to play to the connotation of the wolf as a hunting animal with a superior nose to find its prey and the nature of hunting as a pack.
  
  --
  .sig: Sique *sigh*
I think this is by mandark1967 · 2018-10-24 08:26 · Score: 1

taking corporate transparency a little too far.

--
Sig Follows: "Suppose you were an idiot. And suppose you were a member of Congress. But I repeat myself." -- Mark Twain
Their advertisement on youtube by Anonymous Coward · 2018-10-24 08:37 · Score: 0

https://www.youtube.com/watch?v=YQBFx-4ZltA
Summed up nicely in six words by mark-t · 2018-10-24 09:04 · Score: 1

This is a very stupid story...
What more does anyone need to say?
#facepalm

--
File under 'M' for 'Manic ranting'
1. Re:Summed up nicely in six words by thomst · 2018-10-24 10:14 · Score: 1
  
  In response to the observation:
  
  This is a very stupid story...
  
  mark-t inquired:
  
  What more does anyone need to say?
  Only that editor msmash appears to have "corrected" Motherboard's proper use of the apostrophe following the plural word "targets" by inserting it between the second "t" and the pluralizer "s" - thus publicly displaying her ignorance of proper English punctuation.
  Imagine my surprise ...
  
  --
  Check out my novel.
Hey, politicians, take a good look by Opportunist · 2018-10-24 10:31 · Score: 1

This is the kind of company you want to make deals with concerning spying on your voters? If they can't even keep their own crap secure, do you think they will keep your shady deals with them from public eyes? From the eyes of the people you want to spy on that you on the other hand also want to vote for you?
Yeah. Smart move. Then again, we didn't exactly expect you to know anything about IT anyway, considering your track record.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Whodathunkit... by Anonymous Coward · 2018-10-24 13:39 · Score: 0

.... and many heads were shaken.