Paragon accidentally uploaded a photo of its spyware control panel (twitter.com)
90 points by CGMthrowaway 3 hours ago
ronsor an hour ago
From one Twitter user:
> It's just a demo instance, but, these front ends are barely revealed to the public
This genuinely doesn't look any different from the control panels of commercial infostealers and RATs sold on Russian hacking forums. Those usually sell for between $200 and $20,000 depending on features and pricing model (one-time vs. ongoing subscription).
These spyware companies hype themselves up, but they're really not any different from Ivan's RAT-as-a-Service, besides having extra exploits to burn and wealthier customers.
walletdrainer an hour ago
As it turns out, you just can’t make malware for targets like these much better.
recursivecaveat 2 hours ago
This company btw for anyone else who had not heard of them before (there are a lot of companies by that name): https://en.wikipedia.org/wiki/Paragon_Solutions
phendrenad2 2 hours ago
It's too bad that "The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no Warrants shall issue, but upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized" has become "we can download a full copy of all of your files at any time, or continually, if we feel like it, even if we don't suspect you of a crime".
phendrenad2 2 hours ago
Non-X link: https://archive.is/kqvnH
efilife 32 minutes ago
Can somebody please explain to an idiot (me) how is this possible for this to keep going? I thought that the world has decided that spyware is illegal and can't be produced. Is this company related to israeli government? If not, why is it allowed to function?
rtaylorgarlock 2 hours ago
Looks like image was removed and maybe only a demo?
moralestapia 2 hours ago
Awesome.
Moxie's "unbreakable" end-to-end communication protocol.
thmsths 2 hours ago
The message can't be intercepted in transit, since we are talking about spyware, I assume they get it from the device, hard to defend against that if they have access to your process' memory space.
lmm 27 minutes ago
Certainly very hard to defend against that when the messenger you're using won't let you use a device you control.
Hamuko 2 hours ago
Surprising that end-to-end encryption doesn't really matter when you get into one of the ends.
ASalazarMX an hour ago
akimbostrawman an hour ago
moralestapia an hour ago
>The message can't be intercepted in transit
Lol, so like ... all encryption schemes since the 70s?
sowbug an hour ago
Insanity 2 hours ago
How is this related?
moralestapia an hour ago
I see there's some room for ambiguity.
Insanity 7 minutes ago
dualbus 35 minutes ago
amai 42 minutes ago
I read Pentagon instead of Paragon.