Security Market Segment LS
Tuesday, 23 July 2019 10:44

Researchers connect FaceApp with the Kremlin Featured

By

Researchers at a relatively unknown security research group Red Wolf Intelligence have uncovered what they claim are definitive connections between facial altering app FaceApp and the Russian Government.

FaceApp, developed by Russian software company Wireless Lab, enables users to realistically alter facial features of photos so that they can have different expressions and look older or younger. The app has recently raised alarm bells due to privacy concerns.

Red Wolf Intelligence is a very new group of researchers (so new that they don't currently have a web site!) keen to gain a prominent position in the IT security research community.

According to Logan Hicks, co-founder of Red Wolf Intelligence (Twitter: @redwolfintel), "We can at this point confirm with certainty that FaceApp is using the system to create Dossiers on users by integrating the data, and cross correlating it against WhatsApp, Google, Twitter, and other social media systems to collectively aggregate as much publicly available data on a user as possible."

Hicks continues, "The original data, in combination with other available public data, in correlation with modern day imagery analysis software could be easily used to create complex profiles of each individual user.

"The system as a whole is impressively complex, with a wide array of systems and platforms, at massive scale in consideration to relative age, and with a wide array of impressive security implementations.

"That being said, we can confirm the presence of a Japanese linked APT already observed on system."

Hicks has also confirmed that FaceApp Pro is definitely malware. "Don't download it under any circumstances." The team is quite sure that FaceApp Pro is not an authorised app from the same team that developed FaceApp. It is assumed that it was created by some malicious third-party developer.

Further investigation has confirmed that FaceApp uses servers with both "logical and geographical proximity to the Kremlin."

The images below show "a name server linked directly to the Kremlin and FaceApp, as well as geographic proximity to the Kremlin itself, which is also known to utilise Geo-Distorting technology to offset for defence purposes for several critical locations within the Russian Federation, to include the Kremlin."

 faceApp whois

The geolocation shown places the server in the middle of the Moskva River, less than two kilometres from the Kremlin.

 faceApp geolocate

iTWire spoke to Hicks earlier today, where he requested we refrain from publishing certain aspects of the team's investigation, pending the completion of a formal research paper. Further information will be provided in a follow-up.

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

ADVERTISE ON ITWIRE NEWS SITE & NEWSLETTER

iTWire can help you promote your company, services, and products.

Get more LEADS & MORE SALES

Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]

OR CLICK HERE!

VENDOR NEWS & EVENTS

REVIEWS

Recent Comments