Filip Kafka

Filip Kafka

Malware Analyst


Education: ESET VirusLab.

Highlights of your career: Discovery of one of the biggest surveillance campaign seen so far

What malware do you hate the most? Everyone of them.

Favorite activities: Learning from other experts. Sports (swimming).

Golden rule for cyberspace? Always be careful.

When did you get your first computer and what kind was it? When I was five, it was very old one.

Favorite computer game / activity: Reverse engineering!


4 articles by Filip Kafka

ESET research

New traces of Hacking Team in the wild

New traces of Hacking Team in the wild

ESET research

New traces of Hacking Team in the wild

Since being founded in 2003, the Italian spyware vendor Hacking Team gained notoriety for selling surveillance tools to governments and their agencies across the world. The capabilities of its flagship product, the Remote Control System (RCS), include extracting files from a targeted device, intercepting emails and instant messaging, as well as remotely activating a device’s webcam and microphone.

Filip Kafka09 Mar 20185 min. read


ESET research

ESET’s guide makes it possible to peek into FinFisher

ESET’s guide makes it possible to peek into FinFisher

ESET research

ESET’s guide makes it possible to peek into FinFisher

To help malware analysts and security researchers overcome FinFisher’s advanced anti-disassembly obfuscation and virtualization features, ESET researchers have framed some clever tricks into a whitepaper, “ESET’s guide to deobfuscating and devirtualizing FinFisher”.

Robert Lipovsky and Filip Kafka23 Jan 20182 min. read


ESET research

StrongPity2 spyware replaces FinFisher in MitM campaign – ISP involved?

StrongPity2 spyware replaces FinFisher in MitM campaign – ISP involved?

ESET research

StrongPity2 spyware replaces FinFisher in MitM campaign – ISP involved?

As we reported in September, in campaigns we detected in two different countries, man-in-the-middle attacks had been used to spread FinFisher, with the “man” in both cases most likely operating at the ISP level.

Filip Kafka08 Dec 20173 min. read


ESET research

New FinFisher surveillance campaigns: Internet providers involved?

New FinFisher surveillance campaigns: Internet providers involved?

ESET research

New FinFisher surveillance campaigns: Internet providers involved?

FinFisher has extensive spying capabilities, such as live surveillance through webcams and microphones, keylogging, and exfiltration of files. What sets FinFisher apart from other surveillance tools, however, are the controversies around its deployments.

Filip Kafka21 Sep 20174 min. read