Bavarian Skype Trojan

Martin Brinkmann
Jan 26, 2008
Updated • Nov 9, 2017
Security
|
4

Two, seemingly authentic, documents have been leaked to the German Pirate Party on Wednesday that contain information about costs and technical information about a Skype trojan that could be used to eavesdrop on Skype communications. The documents contain indications of at least one operation of the Skype Trojan in Germany.

Some of the key elements of both documents are the following ones:

  • The installation of the Skype trojan is by email or by law enforcement in the apartment of the target.
  • The software can be updated, extended and removed without leaving traces on the system.
  • Data is sent through a computer located outside German jurisdiction.
  • It has access to internal settings of the Skype client and access to SSL-encrypted websites.

The two zipped PDF documents offer information about the company that designed the Trojan, the costs of the Trojan and the federal agencies involved. The second document offers detailed information about the technique used to eavesdrop on communications, especially what the so called Skype Capture Unit does.

The Skype Capture Unit is installed on the client's system, capable of recording voice and chat among other things, and directs the data to a recording server. A Recording proxy was not part of the offer but would be possible to install as well. Members of the police are able to access the data on the recording server in real time.

The document further mentioned that Skype Capture Units were only available for Windows XP or Windows 2000 at the moment.

Besides offering the Skype Trojan, Digitalk also offered Man in the Middle attacks on SSL encrypted web traffic if the client uses Firefox or Internet Explorer.

The costs for the operations are the following:

  • Skype Capture Unit €3500 per month
  • Installation of Unit €2500 once
  • Man in the Middle Attack €2500 per month

You are currently safe if you use Windows Vista, Linux or have a Mac. You are safe with Opera or Safari.

The question that a lot of people in Germany currently asks are about the low costs of the software. Some see it as an indication that there had to be an agreement to use those units on a large scale.

Before everyone else says: Yeah, that's Bavaria, part of Germany. I live in XXX, why should I care? I would like to point out that other countries are most likely using techniques like that as well. Or, they simply ask Skype for assistance which is possible if you read the Skype Privacy Statement:

Please be informed that, notwithstanding the aforementioned, in the event of a designated authority lawfully requesting Skype or Skype's local partner to retain and provide personal data, communications content and/or traffic data, Skype and/or its local partner will provide all reasonable assistance and information to fulfill this request.

Summary
Article Name
Bavarian Skype Trojan
Description
Information on a Skype Trojan that is used in the German state of Bavaria was leaked to the German Pirate Party.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «
Next Post: «

Comments

  1. zzzZZZzzz said on January 26, 2008 at 9:40 pm
    Reply

    What are this kind of comments?

    […] desde la web de German Pirate Party este miércoles, que tiene información técnica acerca de un troyano que podría ser utilizado para espiar las comunicaciones por Skype… los documentos contiene incluso al menos de una operación de este troyano en Alemania por parte […]

  2. Tech said on January 26, 2008 at 9:33 pm
    Reply

    Germany for one didn’t ask Skype for assistance.

    german link:
    http://www.heise.de/newsticker/meldung/100072

    It also quotes a skype representative saying the extent of their regular cooperation is basing on the law in luxembourg where they have their company hq. He also denies to answer whether data has been given out due to regular investigations.

  3. Bastl said on January 26, 2008 at 8:18 pm
    Reply

    Hello Martin,

    i just installed this really nice app on my n95 ..

    http://graho.wordpress.com/2008/01/04/light-sabre-v15/

    im not sure if you already mentioned on ghacks – i think its worthy!

    greetings an thanks for this awesome site-

    Bastl

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.