Chennai: The National Security Agency (NSA) is probing an alert from cyber security experts on weaponised surveillance software used by Pakistan and Bangladesh intelligence to spy on computers and mobile phones used by Indian politicians, journalists and security establishments. Several computers and mobile phones have already been exposed. Following the most recent Wikileaks release titled ‘Spyfiles 4’ on surveillance malware FinSpy, cyber security experts here claim that several computers and mobile phones of important people could have been compromised, exposing a huge chink in Indian cyber space.

On September 15, Wikileaks released previously unseen copies of weaponised German surveillance malware, FinFisher, that had been used by intelligence agencies around the world to spy on journalists, political dissidents and others. Analysing the report in detail, cyber security experts at Cyber Security and Privacy Foundation (CSPF) here isolated records of Pakistan-based users, accessing FinFisher products to spy on Indians. “Several FinFisher products have been sold to a person/organisation in Pakistan.

It should be noted that Finspy does not sell to any non-governmental organisation,” said J. Prasanna, founder, CSPF. “The FinSpy product is capable of bypassing all major anti-viruses and there is no known anti-virus software that can detect it effectively. Data released by Wikileaks indicates that this malware has been used mostly to spy on India than for domestic use,” he said.

FinFisher (formerly part of the UK-based Gamma Group International until late 2013) is a German company that produces and sells computer intrusion systems, software exploits and remote monitoring systems that are capable of intercepting communications and data from OS X, Windows and Linux computers as well as Android, iOS, BlackBerry, Symbian and Windows Mobile devices.

Data released by Wikileaks suggests that at least several dozen Indian computers have been compromised, including those belonging to defence organisations and prominent politicians in New Delhi. “Based on the IP addresses of the computers that have been hacked into, we can identify the user who has been compromised. We have forwarded all the information to our intelligence agencies for their perusal,” cyber experts at CSPF said.

Since the first SpyFiles release, researchers published reports that identified the presence of FinFisher products in countries around the world and have documented their use.