@infosec_jcp 🐈🃏 done differentlyHistorical list of #SystemApp callback to #FinFisher clients logged while on #InfoseceXchange that's good for #tcpdump correlation #investigations in #AMER on #akamai hosting since November 2022ish for #Prosecutors to correlate.
#FinFisherCom🤝#EnemyOfTheInternet
#CALEA #greymarket #CALEAmalware 🔍🧐#infosec
¹
a23-2-76-180.deploy.static.akamaitechnologies.com
²
a96-7-153-84.deploy.static.akamaitechnologies.com
³
a104-86-4-102.deploy.static.akamaitechnologies.com
⁴
a184-31-10-236.deploy.static.akamaitechnologies.com
⁵
a96-6-226-157.deploy.static.akamaitechnologies.com
⁶
a23-50-34-13.deploy.static.akamaitechnologies.com
⁷
a23-15-137-146.deploy.static.akamaitechnologies.com
⁸
a23-213-123-78.deploy.static.akamaitechnologies.com
⁹
a23-213-123-78.deploy.static.akamaitechnologies.com
¹⁰
a23-11-22-101.deploy.static.akamaitechnologies.com
¹¹
a23-59-206-230.deploy.static.akamaitechnologies.com
¹²
a104-125-55-184.deploy.static.akamaitechnologies.com
¹³
a23-78-154-233.deploy.static.akamaitechnologies.com
¹⁴
a23-7-132-30.deploy.static.akamaitechnologies.com
¹⁵
a104-86-104-224.deploy.static.akamaitechnologies.com
¹⁶
a104-122-42-39.deploy.static.akamaitechnologies.com
¹⁷
a23-202-60-225.deploy.static.akamaitechnologies.com
¹⁸
a104-86-184-250.deploy.static.akamaitechnologies.com
¹⁹
a184-51-48-250.deploy.static.akamaitechnologies.com
²⁰
a104-121-159-217.deploy.static.akamaitechnologies.com
²¹
a104-121-159-225.deploy.static.akamaitechnologies.com
²²
a104-84-227-133.deploy.static.akamaitechnologies.com
²³
a23-42-151-231.deploy.static.akamaitechnologies.com
²⁴
a23-40-167-73.deploy.static.akamaitechnologies.com
²⁵
a23-223-16-122.deploy.static.akamaitechnologies.com
²⁶
a184-31-10-237.deploy.static.akamaitechnologies.com
²⁷
a23-48-32-80.deploy.static.akamaitechnologies.com
²⁸
a23-48-32-75.deploy.static.akamaitechnologies.com
²⁹
a173-222-162-31.deploy.static.akamaitechnologies.com
³⁰
a23-45-32-210.deploy.static.akamaitechnologies.com
³¹
a184-30-164-84.deploy.static.akamaitechnologies.com
³²
a23-59-200-173.deploy.static.akamaitechnologies.com
³³
a23-43-191-224.deploy.static.akamaitechnologies.com
This is just #akamai attaccc nodes for the past two years I have logged as #FinFisher shims/proxies/nodes. Every single one of these tried a MITM attaccc & multiple other OTS exploits. They were blocked and logged.
Cities:
¹
https://www.reddit.com/r/netzpolitik/comments/jax0e3/our_criminal_complaint_german_statemalware/
²
https://en.wikipedia.org/wiki/FinFisher
⁵
https://www.securityweek.com/german-authorities-seize-spyware-firm-finfishers-accounts/