Catching NSO Group's Pegasus spyware

c-base
Donncha Ó Cearbhaill
NSO Group has continued to make headlines for all the wrong reasons. This talk will provide a behind-the-scenes look at how Amnesty International's Security Lab tracked NSO Group spyware over years and developed innovative forensic tools and techniques to detect the supposedly "undetectable" Pegasus spyware on infected devices. These tools were ultimately used to identify traces of Pegasus spyware on the devices of numerous activists and journalists around the world. The talk will demonstrate the open-source mobile forensic tool MVT, developed by Amnesty International during this investigation, which can be used to check mobile devices for signs of Pegasus and other sophisticated mobile spyware threats.

Additional information

Live Stream https://streaming.media.ccc.de/rc3/cbase
Type Remote
Language English

More sessions

12/27/21
R3S local fun
heyhej
r3s - Monheim/Rhein
Unser Opening auf der R3S - Remote Rhein Ruhr Stage
12/27/21
Chaos-West TV
The rC3 2021 NOWHERE opening
12/27/21
r3s - RemoteRheinRuhr Talk
Daniel Maslowski
r3s - Monheim/Rhein
With approaches dating back to the 20th century, the idea of a TPM is simple: An isolated, constrained environment to offload trust establishment in a larger computing environment. That implies cryptography, firmware, hardware, and per application, different requirements. This talk elaborates on how the seemingly simple concept has been expanded over the years, enumerating implementations in hardware, firmware, other layers of software, and even web browsers, explaining why it is in fact far ...
12/27/21
Abchillgleis
chilloutservice hahn a collective of music nerds
12/27/21
chaoszone crew
ChaosZone TV
Feierliche Eröffnung des ChaosZone TV Channels beim rC3 2021.
12/27/21
Thomas Fricke
c-base
In den letzten Wochen der scheidenden Bundesregierung erhielt der Sprecher eine Mail von der Open Knowledge Foundation https://okfn.de/en/ über seine Meinung zur Open Source Sicherheit. Daraufhin erstellte er er eine Studie zum Thema Sicherheit von Open Source Projekten. Vier Projekte dienten als Beispiele und deren Hauptakteur:innen wurden befragt. Darunter "the random programmer from Nebraska" https://www.explainxkcd.com/wiki/index.php/2347:_Dependency Ariadne Connill ...
12/27/21
r3s - RemoteRheinRuhr Talk
Siebo M. H. Janssen
r3s - Monheim/Rhein
kommt noch - wird nachgereicht - Wunschtermin: 27.12.2021 gegen Mittag - einzige Möglichkeit