Something to Remember Us By: Device Confiscated by Russian Authorities Returned with Monokle-Type Spyware Installed
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
A joint investigation by The First Department and The Citizen Lab uncovered spyware covertly implanted on a Russian programmer's phone after it was confiscated by authorities. The individual, accused of sending money to Ukraine, was subjected to beatings and recruitment attempts by the FSB during his 15-day detention. The spyware, resembling the Monokle family, allows for extensive surveillance capabilities including location tracking, call recording, and message interception. Analysis reveals similarities to previously reported Monokle samples, suggesting either an updated version or new software using much of the same code. The case highlights the risks of device confiscation by hostile security services and the need for expert analysis upon return.
OPENCTI LABELS :
russia,spyware,android,surveillance,monokle,trojanized app,device confiscation,fsb
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Something to Remember Us By: Device Confiscated by Russian Authorities Returned with Monokle-Type Spyware Installed