Malware

FinSpy

First seen: 2011 • Status: active

Currently Active Threat

FinSpy is like a professional spy kit that governments can buy to secretly watch everything someone does on their phone or computer.

Overview

FinSpy is commercial surveillance software developed by FinFisher GmbH and sold to governments worldwide. It provides comprehensive device monitoring including calls, messages, emails, and location tracking.

Also Known As

FinFisher, WingBird

How It Spreads

  • Fake software updates
  • Malicious websites
  • Physical access
  • ISP-level injection

What It Does

  • Call interception
  • Message capture
  • Webcam access
  • Microphone activation
  • File extraction
  • Location tracking

Is your business exposed?

Target Platforms

Windows, macOS, Linux, Android, iOS

Detection Tips

  • Check for unusual system processes
  • Monitor microphone and camera usage
  • Analyze network traffic for anomalies
  • Use mobile device integrity tools

MITRE ATT&CK Techniques

T1123, T1125, T1113, T1056, T1005

If You're Infected

  1. 1.

    Factory reset affected devices

  2. 2.

    Change all account credentials

  3. 3.

    Review which data may have been compromised

  4. 4.

    Consider device replacement for sensitive roles

Related Malware

Pegasus, Predator, Candiru

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices