I'm not sure you fully understand what is going on here, Philip S.

>>Linux safe Guess again.<<

The only method by which FinFisher can install itself on your Linux machine is by pretending it is something else, and inviting you - the user - to install it for them. This is in stark contrast to Windows systems, where there are many different ways to insert an exploit of this kind.

FinFisher itself is actually a piece of commercially available software that you can buy and install yourself. If you have the patience, you can browse through its entire capabilities, conveniently gather together by Wikileaks here:

https://wikileaks.org/spyfiles/list/tags/gamma-finfisher-trojan.html

I downloaded the FinSpy 3.0 User Manual, and their "Tactical IT Intrusion Portfolio" brochure. Interesting reading as a starting point.

You can protect yourself against spyware in the normal way (by installing anti-spyware software) and by being normally vigilant as to what you expose your system to - i.e., be careful whom you trust. Here's one method that users of FinFisher have employed...

https://blog.mozilla.org/blog/2013/04/30/protecting-our-brand-from-a-global-spyware-provider/

Be alert. But not alarmed. Unless of course you have installed Windows, in which case you are beyond help, and deserve everything you get.

It's a typical windows user response, Pericles. They have no idea how linux works and naturally assume it's like windows.

Linux users have no need to scour the internet for software, sometimes from dodgy websites claiming to be their saviours. They only need to install software via their package management tool which provides software from their disto provider which have been vetted for nasties, all free(in all meanings of the word) of course.

I don't even know how one could get spyware or viruses in linux if they only install packages from their distro provider which is all that's necessary. Debian based distro's have over a 100 thousand software packages to choose from, That's kept me more than satisfied in the software department and I use my system for a lot of things most normal users wouldn't even dream about.

I went to the wikileaks web site that pericles gave and read the brochure and the specifications.
Very interesting.
Nowhere did it indicate that their software could be installed on the target m/c remotely.
Even the brochure on the first page gave me the suspicion that their software
was installable via memory sticks. That was how Stuckfx was installed in Iran.

I could be wrong there as we know windows m/c are weak in outside intrusion.
Even if they got it in with Linux, I think I can see a way to prevent any unauthorised
connection being made.
Not going to say it here, but it is possible I think.
Anyway very interesting.

Quite alot of exploits on Windows are done via 3rd party apps like Java and Adobe, Windows can be made just as secure as Linux (EMET for windows, similar to SELinux) but most don't for convenience. In saying that, attacks on Windows machines does more damage as the userbase is so much bigger.

I use Windows and I have never caught a virus or spyware. My antivirus does pickup phishing emails daily though. Its the same for all OSes, if the email looks suspicious, don't open it and don't download illegal SW.

I tried to migrate to Linux, used Gentoo for about half a year but I reverted back. There are a few industry specific programs I use that only runs on Windows and I found that I logged onto Linux to fire up the windows virtual machine! But if you just surf the net, type emails and a few word docs, Linux is an ideal as its free.

Folks,

Rest easy because your privacy only exists if it's uninteresting and someone has been in there and deemed your computer and web traffic to be so.

I recently had a few computer problems so rang the son of an American friend, the son works in the industry.

I told him the problems, he replied to me to not touch my mouse and to
ignore what my arrow was doing.

Next thing my computer went haywire as the arrow flew all over the place and the screen went berserk as he searched my files.

Then he said "There you are, all fixed."
I said that he was very quick but he told me that the first few moves were him but the rest was a program.

Now if one guy in a small company has access to gear like that then what do the big players have?

I wonder will the Government take note of my playing 'Solitaire'?

< Now if one guy in a small company has access to gear like that then what do the big players have? >

That's standard fare on most computer systems these days, Is Mise.
On Windows it's called Remote desktop. On linux we have several ways of doing it, Remote Desktop, X Forwarding, ssh, and vnc. Your own computer can do if you know how to use it!