Vault 7: CIA can stage fake Russian hacking to undermine

Discussion in 'Wikileaks' started by MindWars, Mar 7, 2017.

  1. MindWars
    Offline

    MindWars Gold Member

    Joined:
    Oct 14, 2016
    Messages:
    28,470
    Thanks Received:
    6,468
    Trophy Points:
    290
    Ratings:
    +29,366
    WASHINGTON, D.C. – The Wikileaks “Vault 7” drop of CIA cyber-warfare documents contains the startling revelation that the CIA, under a project identified as “Umbrage,” maintained a substantial library of Russian cyber-attack techniques “stolen” from malware produced in other states including the Russian Federation.
    CIA kept Russian cyber-attack techniques handy for false flags
    Vault 7: CIA Can Stage Fake Russian Hacking to Undermine Trump



    upload_2017-3-7_10-13-42.png
    --------------------------------------------------------------------------------------------------------

    There is suppose to be more information coming out hat is going to blow OBAMA out of the water.

    I would not doubt if this dirt is bad enough we don't have a BLACKOUT..................

    those leaking this information are WHISTLEBLOWERS WHO ARE GOVERNMENT OFFICIALS
    FROM ALL LEVELS.
    THEY SEE WHAT IS HAPPENING AND HAVE BEEN THIS IS WHY THESE LEAKS HAVE BEEN COMING.....

    FROM OBAMA TO CLINTON THEY WERE RUNNING LIKE SCARED RATS ALL THE WHILE BRAINWASHING THE SHEEP INTO BELIEVING IT'S ALL FAKE NEWS............

    why do you think Obama and Clinton Both made it a point to say certain ALTERNATIVE NEWS MEDIA were fake news.
     
    • Winner Winner x 3
    • Thank You! Thank You! x 1
    • Funny Funny x 1
  2. MindWars
    Offline

    MindWars Gold Member

    Joined:
    Oct 14, 2016
    Messages:
    28,470
    Thanks Received:
    6,468
    Trophy Points:
    290
    Ratings:
    +29,366
     
    • Informative Informative x 3
    • Funny Funny x 1
  3. Moonglow
    Offline

    Moonglow BANNED

    Joined:
    Jun 27, 2011
    Messages:
    122,334
    Thanks Received:
    10,892
    Trophy Points:
    2,070
    Location:
    sw mizzouri
    Ratings:
    +51,737
    Well duh..
     
  4. MindWars
    Offline

    MindWars Gold Member

    Joined:
    Oct 14, 2016
    Messages:
    28,470
    Thanks Received:
    6,468
    Trophy Points:
    290
    Ratings:
    +29,366
    Wikileaks: CIA 'Stole' Russian Malware, Uses It to ‘Misdirect Attribution’ of Cyber Attacks
    From the Wikileaks "Year Zero" dump:

    The CIA's Remote Devices Branch's UMBRAGE group collects and maintains a substantial library of attack techniques 'stolen' from malware produced in other states including the Russian Federation.

    With UMBRAGE and related projects the CIA cannot only increase its total number of attack types but also misdirect attribution by leaving behind the "fingerprints" of the groups that
    Wikileaks: CIA 'Stole' Russian Malware, Uses It to ‘Misdirect Attribution’ of Cyber Attacks

    upload_2017-3-7_10-23-53.png
     
    • Informative Informative x 1
  5. dannyboys
    Offline

    dannyboys Gold Member

    Joined:
    Dec 2, 2013
    Messages:
    12,905
    Thanks Received:
    1,810
    Trophy Points:
    280
    Ratings:
    +8,780
    What's coming will very likely end up in Obama, Lynch and a few dozen other American traitors going to prison.
    The biggest scandal in American history is about to happen.
    There's NOTHING the CIA can do to stop it!
    Even if they assassinate Assange his supporters all have numerous hidden caches of duplicates ready to disseminate to the world's press.
     
    • Agree Agree x 1
    • Winner Winner x 1
  6. Odium
    Online

    Odium Gold Member

    Joined:
    Jan 29, 2015
    Messages:
    24,750
    Thanks Received:
    3,921
    Trophy Points:
    290
    Location:
    Georgia Mountains
    Ratings:
    +21,805
    https://www.nytimes.com/2017/03/07/...a-hacking.html?smid=fb-nytimes&smtyp=cur&_r=0

    Oh my!

    Among the more notable disclosures which, if confirmed, "would rock the technology world", the CIA had managed to bypass encryption on popular phone and messaging services such as Signal, WhatsApp and Telegram. According to the statement from WikiLeaks, government hackers can penetrate Android phones and collect “audio and message traffic before encryption is applied.”

    Another profound revelation is that the CIA can engage in "false flag" cyberattacks which portray Russia as the assailant. Discussing the CIA's Remote Devices Branch's UMBRAGE group, Wikileaks' source notes that it "collects and maintains a substantial library of attack techniques 'stolen' from malware produced in other states including the Russian Federation.






    I absolutely love WIkileaks!
     
    • Winner Winner x 2
    • Informative Informative x 2
  7. Odium
    Online

    Odium Gold Member

    Joined:
    Jan 29, 2015
    Messages:
    24,750
    Thanks Received:
    3,921
    Trophy Points:
    290
    Location:
    Georgia Mountains
    Ratings:
    +21,805
    "With UMBRAGE and related projects the CIA cannot only increase its total number of attack types but also misdirect attribution by leaving behind the "fingerprints" of the groups that the attack techniques were stolen from. UMBRAGE components cover keyloggers, password collection, webcam capture, data destruction, persistence, privilege escalation, stealth, anti-virus (PSP) avoidance and survey techniques."

    Among the various techniques profiled by WikiLeaks is “Weeping Angel”, developed by the CIA's Embedded Devices Branch (EDB), which infests smart TVs, transforming them into covert microphones. After infestation, Weeping Angel places the target TV in a 'Fake-Off' mode, so that the owner falsely believes the TV is off when it is on. In 'Fake-Off' mode the TV operates as a bug, recording conversations in the room and sending them over the Internet to a covert CIA server.

    As Kim Dotcom chimed in on Twitter, "CIA turns Smart TVs, iPhones, gaming consoles and many other consumer gadgets into open microphones" and added " CIA turned every Microsoft Windows PC in the world into spyware. Can activate backdoors on demand, including via Windows update"
     
    • Winner Winner x 3
  8. easyt65
    Offline

    easyt65 Diamond Member

    Joined:
    Aug 4, 2015
    Messages:
    45,433
    Thanks Received:
    9,745
    Trophy Points:
    2,140
    Ratings:
    +50,563
    When Wiki-Leaks hacked Hillary / the DNC liberals declared (without proof) they had hacked no one, that it was the Russians. So who is it that is supposed to have hacked the CIA this time?

    (BTW, another thread already exists / existed on this....)
     
    • Informative Informative x 3
  9. Odium
    Online

    Odium Gold Member

    Joined:
    Jan 29, 2015
    Messages:
    24,750
    Thanks Received:
    3,921
    Trophy Points:
    290
    Location:
    Georgia Mountains
    Ratings:
    +21,805
    Key Highlights from the Vault 7 release so far:

    • "Year Zero" introduces the scope and direction of the CIA's global covert hacking program, its malware arsenal and dozens of "zero day" weaponized exploits against a wide range of U.S. and European company products, include Apple's iPhone, Google's Android and Microsoft's Windows and even Samsung TVs, which are turned into covert microphones.
    • Wikileaks claims that the CIA lost control of the majority of its hacking arsenal including malware, viruses, trojans, weaponized "zero day" exploits, malware remote control systems and associated documentation. This extraordinary collection, which amounts to more than several hundred million lines of code, gives its possessor the entire hacking capacity of the CIA. The archive appears to have been circulated among former U.S. government hackers and contractors in an unauthorized manner, one of whom has provided WikiLeaks with portions of the archive.
    • By the end of 2016, the CIA's hacking division, which formally falls under the agency's Center for Cyber Intelligence (CCI), had over 5000 registered users and had produced more than a thousand hacking systems, trojans, viruses, and other "weaponized" malware. Such is the scale of the CIA's undertaking that by 2016, its hackers had utilized more code than that used to run Facebook.
    • The CIA had created, in effect, its "own NSA" with even less accountability and without publicly answering the question as to whether such a massive budgetary spend on duplicating the capacities of a rival agency could be justified.
    • Once a single cyber 'weapon' is 'loose' it can spread around the world in seconds, to be used by rival states, cyber mafia and teenage hackers alike.
    Snowden 2.0?

    • In a statement to WikiLeaks the source details policy questions that they say urgently need to be debated in public, including whether the CIA's hacking capabilities exceed its mandated powers and the problem of public oversight of the agency. The source wishes to initiate a public debate about the security, creation, use, proliferation and democratic control of cyberweapons.
    CIA targets iPhones, Androids, smart TVs:

    • CIA malware and hacking tools are built by EDG (Engineering Development Group), a software development group within CCI (Center for Cyber Intelligence), a department belonging to the CIA's DDI (Directorate for Digital Innovation). The DDI is one of the five major directorates of the CIA (see this organizational chart of the CIA for more details).
    • The increasing sophistication of surveillance techniques has drawn comparisons with George Orwell's 1984, but "Weeping Angel", developed by the CIA's Embedded Devices Branch (EDB), which infests smart TVs, transforming them into covert microphones, is surely its most emblematic realization.
    Also cars, suggesting that the CIA may have a role in the death of Michael Hastings:

    • As of October 2014 the CIA was also looking at infecting the vehicle control systems used by modern cars and trucks.
    • The purpose of such control is not specified, but it would permit the CIA to engage in nearly undetectable assassinations.
    And computers:

    • The CIA also runs a very substantial effort to infect and control Microsoft Windows users with its malware. This includes multiple local and remote weaponized "zero days", air gap jumping viruses such as "Hammer Drill" which infects software distributed on CD/DVDs, infectors for removable media such as USBs, systems to hide data in images or in covert disk areas ( "Brutal Kangaroo") and to keep its malware infestations going.
    Hoarding of Zero Day exploits:

    • In the wake of Edward Snowden's leaks about the NSA, the U.S. technology industry secured a commitment from the Obama administration that the executive would disclose on an ongoing basis — rather than hoard — serious vulnerabilities, exploits, bugs or "zero days" to Apple, Google, Microsoft, and other US-based manufacturers.
    • Serious vulnerabilities not disclosed to the manufacturers places huge swathes of the population and critical infrastructure at risk to foreign intelligence or cyber criminals who independently discover or hear rumors of the vulnerability. If the CIA can discover such vulnerabilities so can others.
    Proliferation of leaked/hacked Cyberwar programs:

    • While nuclear proliferation has been restrained by the enormous costs and visible infrastructure involved in assembling enough fissile material to produce a critical nuclear mass, cyber 'weapons', once developed, are very hard to retain. Cyber 'weapons' are in fact just computer programs which can be pirated like any other. Since they are entirely comprised of information they can be copied quickly with no marginal cost.
    • Over the last three years the United States intelligence sector, which consists of government agencies such as the CIA and NSA and their contractors, such as Booze Allan Hamilton, has been subject to unprecedented series of data exfiltrations by its own workers.
    • Once a single cyber 'weapon' is 'loose' it can spread around the world in seconds, to be used by peer states, cyber mafia and teenage hackers alike.
    The U.S. Consulate in Frankfurt is a covert CIA hacker base

    • In addition to its operations in Langley, Virginia the CIA also uses the U.S. consulate in Frankfurt as a covert base for its hackers covering Europe, the Middle East and Africa. CIA hackers operating out of the Frankfurt consulate ( "Center for Cyber Intelligence Europe" or CCIE) are given diplomatic ("black") passports and State Department cover.
    • The instructions for incoming CIA hackers make Germany's counter-intelligence efforts appear inconsequential: "Breeze through German Customs because you have your cover-for-action story down pat, and all they did was stamp your passport"
    Examples of CIA projects

    • The CIA's Engineering Development Group (EDG) management system contains around 500 different projects (only some of which are documented by "Year Zero") each with their own sub-projects, malware and hacker tools. The majority of these projects relate to tools that are used for penetration, infestation ("implanting"), control, and exfiltration.
    • Umbrage: The CIA's Remote Devices Branch's UMBRAGE group collects and maintains a substantial library of attack techniques 'stolen' from malware produced in other states including the Russian Federation. With UMBRAGE and related projects the CIA cannot only increase its total number of attack types but also misdirect attribution by leaving behind the "fingerprints" of the groups that the attack techniques were stolen from.
    • Fine Dining: Fine Dining comes with a standardized questionnaire i.e menu that CIA case officers fill out. The questionnaire is used by the agency's OSB (Operational Support Branch) to transform the requests of case officers into technical requirements for hacking attacks (typically "exfiltrating" information from computer systems) for specific operations. Among the list of possible targets of the collection are 'Asset', 'Liason Asset', 'System Administrator', 'Foreign Information Operations', 'Foreign Intelligence Agencies' and 'Foreign Government Entities'. Notably absent is any reference to extremists or transnational criminals.
    • 'Improvise'; a toolset for configuration, post-processing, payload setup and execution vector selection for survey/exfiltration tools supporting all major operating systems like Windows (Bartender), MacOS (JukeBox) and Linux (DanceFloor).
    • HIVE: HIVE is a multi-platform CIA malware suite and its associated control software. The project provides customizable implants for Windows, Solaris, MikroTik (used in internet routers) and Linux platforms and a Listening Post (LP)/Command and Control (C2) infrastructure to communicate with these implants. The implants are configured to communicate via HTTPS with the webserver of a cover domain; each operation utilizing these implants has a separate cover domain and the infrastructure can handle any number of cover domains.
     
    • Informative Informative x 2
  10. Siete
    Offline

    Siete Gold Member

    Joined:
    May 19, 2014
    Messages:
    27,376
    Thanks Received:
    2,882
    Trophy Points:
    280
    Ratings:
    +15,939
    A set of N.S.A. hacking tools, evidently leaked from the agency or stolen in an electronic break-in, was put up for auction on the web last summer by a group calling itself the Shadow Brokers. Those tools were among the N.S.A.’s arsenal for penetrating foreign computer networks. At first glance the Vault 7 programs appeared to be aimed at smaller, individual targets rather than large networks.


    an auction on the web last summer tells me all I need to know.
     

Share This Page

Search tags for this page

azs

,

news