Liberals, you have been had. - Revelation from the Vault 7 release.

Discussion in 'Serious Discussion' started by JFKI, Mar 7, 2017.

  1. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#BothanSpy

     
  2. Michaela Joy

    Michaela Joy MDL Crazy Lady

    Jul 26, 2012
    4,071
    4,651
    150
    I wonder what they're working on that will replace these "tools". ;)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Highrise

     
  4. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#UCL / Raytheon

     
  5. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Imperial

     
  6. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Dumbo

     
  7. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    .https://wikileaks.org/vault7/#CouchPotato

     
  8. gorski

    gorski MDL Guru

    Oct 21, 2009
    5,514
    1,452
    180
    Is there no end to these lists, FFS?!? o_O
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  9. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#ExpressLane

     
  10. Tiger-1

    Tiger-1 MDL Guru

    Oct 18, 2014
    7,897
    10,733
    240
    yep I think never end :g:
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  11. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    Well considering what the March 7th "press release" states it will go on for a long time.
    https://wikileaks.org/ciav7p1/
     
  12. Tiger-1

    Tiger-1 MDL Guru

    Oct 18, 2014
    7,897
    10,733
    240
    ok I have fear of Year Zero, although I don't have more smartphones and smarttv's ;):(
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  13. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    Did you miss this part ?
     
  14. Tiger-1

    Tiger-1 MDL Guru

    Oct 18, 2014
    7,897
    10,733
    240
    oh yes :oops: really there have a lot of info inside more after I can read more deep :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  15. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Angelfire

     
  16. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault7/#Protego

     
  17. JFKI

    JFKI MDL Expert

    Oct 25, 2015
    1,098
    374
    60
    https://wikileaks.org/vault8/#Hive

    Vault 8 - Hive.

    Vault 8
    Source code and analysis for CIA software projects including those described in the Vault7 series.

    This publication will enable investigative journalists, forensic experts and the general public to better identify and understand covert CIA infrastructure components.

    Source code published in this series contains software designed to run on servers controlled by the CIA. Like WikiLeaks' earlier Vault7 series, the material published by WikiLeaks does not contain 0-days or similar security vulnerabilities which could be repurposed by others.

    [​IMG]
    All Releases
    • Hive - 9 November, 2017

    Hive
    9 November, 2017
    Today, 9 November 2017, WikiLeaks publishes the source code and development logs to Hive, a major component of the CIA infrastructure to control its malware.

    Hive solves a critical problem for the malware operators at the CIA. Even the most sophisticated malware implant on a target computer is useless if there is no way for it to communicate with its operators in a secure manner that does not draw attention. Using Hive even if an implant is discovered on a target computer, attributing it to the CIA is difficult by just looking at the communication of the malware with other servers on the internet. Hive provides a covert communications platform for a whole range of CIA malware to send exfiltrated information to CIA servers and to receive new instructions from operators at the CIA.

    Hive can serve multiple operations using multiple implants on target computers. Each operation anonymously registers at least one cover domain (e.g. "perfectly-boring-looking-domain.com") for its own use. The server running the domain website is rented from commercial hosting providers as a VPS (virtual private server) and its software is customized according to CIA specifications. These servers are the public-facing side of the CIA back-end infrastructure and act as a relay for HTTP(S) traffic over a VPN connection to a "hidden" CIA server called 'Blot'.

    [​IMG]

    The cover domain delivers 'innocent' content if somebody browses it by chance. A visitor will not suspect that it is anything else but a normal website. The only peculiarity is not visible to non-technical users - a HTTPS server option that is not widely used: Optional Client Authentication. But Hive uses the uncommon Optional Client Authentication so that the user browsing the website is not required to authenticate - it is optional. But implants talking to Hive do authenticate themselves and can therefore be detected by the Blot server. Traffic from implants is sent to an implant operator management gateway called Honeycomb (see graphic above) while all other traffic go to a cover server that delivers the insuspicious content for all other users.

    Digital certificates for the authentication of implants are generated by the CIA impersonating existing entities. The three examples included in the source code build a fake certificate for the anti-virus company Kaspersky Laboratory, Moscow pretending to be signed by Thawte Premium Server CA, Cape Town. In this way, if the target organization looks at the network traffic coming out of its network, it is likely to misattribute the CIA exfiltration of data to uninvolved entities whose identities have been impersonated.

    The documentation for Hive is available from the WikiLeaks Vault7 series.
     
  18. WindowsGeek

    WindowsGeek MDL Expert

    Jun 30, 2015
    1,453
    418
    60
    The fact is unless u live Amish your totally vulnerable:eek: