Analyzing an Off-the-Shelf Surveillance Software: Hacking Team
Case Study

D 2017

Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study

ŠPAČEK, Stanislav; Pavel ČELEDA; Martin DRAŠAR a Martin VIZVÁRY

Základní údaje

Originální název

Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study

Autoři

ŠPAČEK, Stanislav; Pavel ČELEDA ; Martin DRAŠAR a Martin VIZVÁRY

Vydání

Brno, SPI 2017 - Security and Protection of Information 2017, od s. 143-158, 16 s. 2017

Nakladatel

Univerzita obrany

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10201 Computer sciences, information science, bioinformatics

Stát vydavatele

Česká republika

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

tištěná verze "print"

Odkazy

URL

Označené pro přenos do RIV

Ano

Kód RIV

RIV/00216224:14610/17:00094472

Organizační jednotka

Ústav výpočetní techniky

ISBN

978-80-7231-414-0

Klíčová slova anglicky

Hacking Team; Remote Control System; KYPO Cyber Range; Advanced Persistent Threat; Malware Builder Kit

Štítky

rivok

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 16. 4. 2018 20:16, prof. Ing. Pavel Čeleda, Ph.D.

Anotace

V originále

In July 2015, a major distributor and developer of covert surveillance tools, Italian company Hacking Team, has been hacked. Due to the attack, nearly 400 GB of internal data leaked on sharing networks. The data contained the latest version of the surveillance software named Galileo, including full technical and user documentation. We use this opportunity to examine key features of surveillance software that was designed for governmental agencies and its specification was kept secret. In this paper, we deploy the system in an isolated virtual environment and test its behavior during a surveillance operation. We use collected information to classify the advancement level of Galileo among similar mass-spread malware and the advanced persistent threats tools. With the hindsight of nearly two years, it is also possible to evaluate the impact the data leak had.

Návaznosti

VI20162019014, projekt VaV

Název: Simulace, detekce a potlačení kybernetických hrozeb ohrožujících kritickou infrastrukturu (Akronym: KYPO II)

Investor: Ministerstvo vnitra ČR, Simulace, detekce a potlačení kybernetických hrozeb ohrožujících kritickou infrastrukturu

Přiložené soubory

2017-SPI-hacking-team-case-study-presentation.pdf

2017-SPI-hacking-team-case-study-paper.pdf

Citovat

ŠPAČEK, Stanislav; Pavel ČELEDA; Martin DRAŠAR a Martin VIZVÁRY. Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study. In Jaroslav Dočkal, Milan Jirsa, Josef Kaderka. SPI 2017 - Security and Protection of Information 2017. Brno: Univerzita obrany, 2017, s. 143-158. ISBN 978-80-7231-414-0.

@inproceedings{1382042,
   author = {Špaček, Stanislav and Čeleda, Pavel and Drašar, Martin and Vizváry, Martin},
   address = {Brno},
   booktitle = {SPI 2017 - Security and Protection of Information 2017},
   editor = {Jaroslav Dočkal, Milan Jirsa, Josef Kaderka},
   keywords = {Hacking Team; Remote Control System; KYPO Cyber Range; Advanced Persistent Threat; Malware Builder Kit},
   howpublished = {tištěná verze "print"},
   language = {eng},
   location = {Brno},
   isbn = {978-80-7231-414-0},
   pages = {143-158},
   publisher = {Univerzita obrany},
   title = {Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study},
   url = {https://is.muni.cz/repo/1382042/2017-SPI-hacking-team-case-study-paper.pdf},
   year = {2017}
}

TY  - CONF
ID  - 1382042
AU  - Špaček, Stanislav - Čeleda, Pavel - Drašar, Martin - Vizváry, Martin
PY  - 2017
TI  - Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study
PB  - Univerzita obrany
CY  - Brno
SN  - 9788072314140
KW  - Hacking Team
KW  - Remote Control System
KW  - KYPO Cyber Range
KW  - Advanced Persistent Threat
KW  - Malware Builder Kit
UR  - https://is.muni.cz/repo/1382042/2017-SPI-hacking-team-case-study-paper.pdf
N2  - In July 2015, a major distributor and developer of covert surveillance tools, Italian company Hacking Team, has been hacked. Due to the attack, nearly 400 GB of internal data leaked on sharing networks. The data contained the latest version of the surveillance software named Galileo, including full technical and user documentation. We use this opportunity to examine key features of surveillance software that was designed for governmental agencies and its specification was kept secret. In this paper, we deploy the system in an isolated virtual environment and test its behavior during a surveillance operation. We use collected information to classify the advancement level of Galileo among similar mass-spread malware and the advanced persistent threats tools. With the hindsight of nearly two years, it is also possible to evaluate the impact the data leak had.
ER  -

ŠPAČEK, Stanislav; Pavel ČELEDA; Martin DRAŠAR a Martin VIZVÁRY. Analyzing an Off-the-Shelf Surveillance Software: Hacking Team Case Study. In Jaroslav Dočkal, Milan Jirsa, Josef Kaderka. \textit{SPI 2017 - Security and Protection of Information 2017}. Brno: Univerzita obrany, 2017, s.~143-158. ISBN~978-80-7231-414-0.

Přehled o publikaci