MegaPanzer: Parts of Possible Govware Trojan Released under GPL
The name Ruben Unteregger may well become more newsworthy in the next few days. Unteregger has been working at the Swiss ERA IT Solutions company to develop the trojans MegaPanzer and MiniPanzer and has released the code under GPL.
After working for ERA IT Solutions for seven years, Unteregger is only sporadically releasing parts of his trojan under GPLv3. His homepage currently has the downloadable source code for his Skype trojan that taps Skype conversations and dumps the audio data to MP3 files. Swiss authorities have allegedly been using the software since October 2006.
Originally designed for attacks on Windows XP, the MegaPanzer code is "simple and straightforward," according to Unteregger in his blog. The backdoor gets instructions from a specially prepared server (the "dropzone") and transfers the audio data. The Skype-Tap intercepts Skype function calls, dumps the audio data to files, converts them to MP3 and encrypts them. The code is currently missing a few pieces for security reasons, among them a plugin system for the backdoor and functions to circumvent firewalls. These Unteregger will publish later as separate tools and also put them under GPL. His bottom line is, "as always I am open for your opinions and criticism."
The Swiss developer lets on to some of his work at ERA IT Solutions in an interview on gulli.com. Whether this type of benevolent malware has some use for other govware is yet to be seen. Unteregger won't say for sure whether Linux or Mac versions are currently being considered.
Comments
comments powered by DisqusSubscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Ubuntu 24.04 Comes with a “Flaw"
If you're thinking you might want to upgrade from your current Ubuntu release to the latest, there's something you might want to consider before doing so.
-
Canonical Releases Ubuntu 24.04
After a brief pause because of the XZ vulnerability, Ubuntu 24.04 is now available for install.
-
Linux Servers Targeted by Akira Ransomware
A group of bad actors who have already extorted $42 million have their sights set on the Linux platform.
-
TUXEDO Computers Unveils Linux Laptop Featuring AMD Ryzen CPU
This latest release is the first laptop to include the new CPU from Ryzen and Linux preinstalled.
-
XZ Gets the All-Clear
The back door xz vulnerability has been officially reverted for Fedora 40 and versions 38 and 39 were never affected.
-
Canonical Collaborates with Qualcomm on New Venture
This new joint effort is geared toward bringing Ubuntu and Ubuntu Core to Qualcomm-powered devices.
-
Kodi 21.0 Open-Source Entertainment Hub Released
After a year of development, the award-winning Kodi cross-platform, media center software is now available with many new additions and improvements.
-
Linux Usage Increases in Two Key Areas
If market share is your thing, you'll be happy to know that Linux is on the rise in two areas that, if they keep climbing, could have serious meaning for Linux's future.
-
Vulnerability Discovered in xz Libraries
An urgent alert for Fedora 40 has been posted and users should pay attention.
-
Canonical Bumps LTS Support to 12 years
If you're worried that your Ubuntu LTS release won't be supported long enough to last, Canonical has a surprise for you in the form of 12 years of security coverage.
great post
http://www.cocoschanel.com
http://www.gucciguccis.com
http://www.urboots.com
http://www.handbags2012.com
http://www.louisvuittonslv.com
http://www.uggmalls.com
New version of the sniffing plugin for Skype 4 available
It took its time, several bugs were fixed, some of the old features were removed as for example encryption and encoding.
The source is available here : http://www.megapanzer.com/w.../uploads/SkypeTap_20091226.zip