Turkey Using German Spy Software On Opposition Politicians & Activists

Opposition protesters in Turkey were reportedly deceived into downloading a spy app made by a German firm despite Germany having previously vowed to block exports of spy software to authoritarian countries.

The Turkish government used a German-made spy program to infiltrate the smartphones of Turkish opposition members, according to a report seen by German media. 

Germany has strict rules for exporting spy software and has in the past vowed to block exports to authoritarian countries.

What we Know so far:
German daily newspaper Süddeutsche Zeitung and public broadcasters NDR and WDR reported the news based on a study by the digital rights group Access Now. Access Now found evidence that Turkish officials had used the program "Finspy" by Finfisher, a German company headquartered in Munich, to spy on members of the opposition party CHP.

The software was primarily used during a three-week protest against Turkish President Recep Erdogan organized by CHP leader Kemal Kilicdaroglu in July 2017. Fake Twitter accounts posted links to websites that promised to inform protesters about the demonstration if they downloaded a smartphone app.

The app included Finspy software and allowed the government to gain real-time access to the smartphone owners contacts, photos and videos.

A security expert at Germany's University of Bochum independently analyzed the software and told the Süddeutsche Zeitung newspaper and regional broadcasters NDR and WDR that "it appeared to be a newer version" of previous Finspy software.

What were the Reactions?
Responding to a question by the three media outlets, the German Economy Ministry said it had not approved any export licenses for spy software since October 2014.  FinFisher refused to comment on the story after being contacted by Süddeutsche Zeitung, NDR and WDR.

The Germany director for Human Rights Watch, Wenzel Michalski, wrote on Twitter: "This [news] would mean there are holes in our export regulations. This must be investigated immediately." Green lawmaker Konstantin von Notz wrote on Twitter: "Turkish spy attacks on the opposition with technology that was created with German tax money and should never have been exported?! The #GroKo [German coalition government] must urgently clarify [the situation] and prevent something like this from happening in the future."

Germany's export policy: The same three media outlets reported in 2014 that then-Economy Minister Sigmar Gabriel wanted to stop exports of spy software to authoritarian governments. Gabriel was quoted as saying: "We want to stop the export of these types of technologies to countries that suppress civil rights movements and that do not accept basic human rights."

What is Finfisher? The company works exclusively with governments to provide police and intelligence software. On its website, it says its mission is "to provide first-class cyber solutions and knowledge for successful operations against organised crime."

DW

You Might Also Read: 

Some Notes About Wassenaar:

Snowden’s Haven - A New Surveillance App:

Biter Bitten: The Hacking Team Hit by Breach:
 

« Meet Tess: The Mental Health Chatbot
Facebook Suspends Hundreds Of Apps »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Micro Focus

Micro Focus

Micro Focus is one of the world’s largest enterprise software providers. We deliver trusted and proven mission-critical software that keeps the digital world running.

evoila

evoila

evoila GmbH is one of the leading providers in consulting, analysis, implementation and management of cloud infrastructure.

A-SIT Secure Information Technology Center

A-SIT Secure Information Technology Center

A-SIT was founded in 1999 as a registered nonprofit association and is established as a competence center for IT-Security.

Cimcor

Cimcor

Cimcor’s flagship software product, CimTrak, helps organizations to monitor and protect a wide range of physical, network and virtual IT assets in real-time.

Infortec

Infortec

Infortec provide consultancy and solutions for the protection of digital information and the management of computer resources.

CUJO AI

CUJO AI

CUJO AI is the global leader in the development and application of artificial intelligence to improve the security, control and privacy of connected devices in homes and businesses.

Pioneer Search

Pioneer Search

Pioneer Search is a UK based Technology & Change, Electronics Engineering, Cyber Security & Cloud and Data & Analytics Employment Agency.

ISA Global Cybersecurity Alliance (ISAGCA)

ISA Global Cybersecurity Alliance (ISAGCA)

ISAGCA is a collaborative forum to advance OT cybersecurity awareness, education, readiness, and knowledge sharing.

AEWIN Technologies

AEWIN Technologies

AEWIN is professional in the fields of Network Appliance, Cyber Security, Server, Edge Computing and an ODM/OEM expert.

Global Cybersecurity Institute - Rochester Institute of Technology (RIT)

Global Cybersecurity Institute - Rochester Institute of Technology (RIT)

At RIT’s Global Cybersecurity Institute, we educate and train cybersecurity professionals; develop new cybersecurity and AI-based knowledge for industry, academia, and government.

Omdia

Omdia

Omdia is a technology research and advisory group. Our deep knowledge of tech markets combined with our actionable insights empower organizations to make smart growth decisions.

Sonar

Sonar

AI generated or written by humans, Sonar’s Clean Code Solutions cover your code quality needs, improving code reliability, maintainability, and security.

SpectrumWise

SpectrumWise

SpectrumWise is a business technology specialist that provides Managed Services and Managed Security for small and medium IT Networks.

Hexagate

Hexagate

Hexagate is at the forefront of blockchain threat prevention and automated risk management, proactively detecting and mitigating threats to smart contracts and onchain assets.

VPNBlade

VPNBlade

VPNBlade is your go-to resource for expert reviews and advice on VPN services.

AVIANET

AVIANET

AVIANET's goal is to empower enterprises and corporations worldwide and manage their digital transformation journey with confidence.