Blog posts

July 23, 2021 Mobile Forensic Pegasus iOS
This guide gives you a step-by-step procedure to conduct forensic analysis of an iOS device using Mobile Verification Toolkit (MVT) created by Amnesty Tech team. This guide is written and maintained by Esther Onfroy & Abir Ghattas. Why? People are struggling to analyze iOS devices due to the complexity of the procedure on Linux. We have decided to use Docker because latest versions of iOS require the use of a version of libimobiledevice which is not available on Linux yet.
September 25, 2020 Mobile Applications FinSpy Malware analysis
We have collaborated with Amnesty International for whom we have analyzed a new variant of the FinSpy spyware. Executive summary By analyzing the sample we found what we suspect to be a new version of the FinFisher’s malware FinSpy for Android. Even though the malware behavior and capabilities seem to be the same as what it has already been described in the past, this version goes a step further to hide the malware configuration and its capabilities.
March 16, 2020 Mobile Applications Covid-19
Depuis le début de la pandémie de Covid-19, de nombreuses applications mobiles de suivi du Covid-19 ont vu le jour. La plupart d’entre-elles ne sont plus disponibles sur les magasins d’applications de Apple et Google car suspectées de relayer de fausses informations. Aussi, en cette période de forte inquiétude, il est primordial de ne pas laisser la panique prendre le dessus sur les bonnes pratiques d’hygiène numérique et de vérification de l’information.