{"id":45904,"date":"2023-10-20T15:47:08","date_gmt":"2023-10-20T15:47:08","guid":{"rendered":"http:\/\/startupsmart.test\/2023\/10\/20\/wikileaks-vault-7-reveals-staggering-breadth-of-cia-hacking-startupsmart\/"},"modified":"2023-10-20T15:47:08","modified_gmt":"2023-10-20T15:47:08","slug":"wikileaks-vault-7-reveals-staggering-breadth-of-cia-hacking-startupsmart","status":"publish","type":"post","link":"https:\/\/www.startupsmart.com.au\/uncategorized\/wikileaks-vault-7-reveals-staggering-breadth-of-cia-hacking-startupsmart\/","title":{"rendered":"WikiLeaks Vault 7 reveals staggering breadth of \u2018CIA hacking\u2019 &#8211; StartupSmart"},"content":{"rendered":"<div class=\"td-post-featured-image\"><img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"332\" itemprop=\"image\" class=\"entry-thumb\" src=\"\/wp-content\/uploads\/2016\/12\/EYE-data-retention-privacy-government-big-brother-surveillance-640x332.jpg\" alt=\"Green eye looking through keyhole breaching digital privacy\" title=\"EYE data retention privacy government big brother surveillance\"><\/div>\n<p>WikiLeaks today released what it claims is the largest leak of intelligence documents in history. It contains 8761 documents from the CIA detailing some of its hacking arsenal.<\/p>\n<p>The release, code-named \u201cVault 7\u201d by WikiLeaks, covers documents from 2013 to 2016 obtained from the CIA\u2019s Centre for Cyber Intelligence.<\/p>\n<p>They cover information about the CIA\u2019s operations as well as code and other details of its hacking tools including \u201cmalware, viruses, trojans, weaponized \u2018zero day\u2019 exploits\u201d and \u201cmalware remote control systems\u201d.<\/p>\n<p>One attack detailed by WikiLeaks turns a Samsung Smart TV into a listening device, fooling the owner to believe the device is switched off using a \u201cFake-Off\u201d mode.<\/p>\n<p>The CIA apparently was also looking at infecting vehicle control systems as a way of potentially enabling \u201cundetectable assassinations\u201d, according to WikiLeaks.<\/p>\n<p>One of the greatest focus areas of the hacking tools was getting access to both Apple and Android phones and tablets using \u201czero-day\u201d exploits. These are vulnerabilities that are unknown to the vendor, and have yet to be patched.<\/p>\n<p>This would allow the CIA to remotely infect a phone and listen in or capture information from the screen, including what a user was typing for example.<\/p>\n<p>This, and other techniques, would allow the CIA to bypass the security in apps like WhatsApp, Signal, Telegram, Wiebo, Confide and Cloackman by collecting the messages before they had been encrypted.<\/p>\n<p>If it is true that the CIA is exploiting zero-day vulnerabilities, then it may be in contravention of an Obama administration policy from 2014 that made it government policy to disclose any zero-day exploits it discovered, unless there was a \u201ca clear national security or law enforcement\u201d reason to keep it secret.<\/p>\n<p>Another potentially alarming revelation is the alleged existence of a group within the CIA called UMBRAGE that collects malware developed by other groups and governments around the world. It can then use this malware, or its \u201cfingerprint\u201d, to conduct attacks and direct suspicion elsewhere.<\/p>\n<h3>Year Zero<\/h3>\n<p>According to WikiLeaks, this is only the first part of the leak, titled \u201cYear Zero\u201d, with more to come.<\/p>\n<p>WikiLeaks\u2019 press release gives an overview on the range of the hacking tools and software, and the organisational structure of the groups responsible for producing them.<\/p>\n<p>WikiLeaks hasn\u2019t released any code, saying that it has avoided \u201cthe distribution of \u2018armed\u2019 cyberweapons until a consensus emerges on the technical and political nature of the CIA\u2019s program and how such \u2018weapons\u2019 should [be] analyzed, disarmed and published\u201d.<\/p>\n<p>WikiLeaks founder, Julian Assange, made a statement warning of the proliferation risk posted by cyber weapons:<\/p>\n<blockquote>\n<blockquote class=\"td_quote_box td_box_center\">\n<p>There is an extreme proliferation risk in the development of cyber \u201cweapons\u201d. Comparisons can be drawn between the uncontrolled proliferation of such \u201cweapons\u201d, which results from the inability to contain them combined with their high market value, and the global arms trade. But the significance of \u201cYear Zero\u201d goes well beyond the choice between cyberwar and cyberpeace. The disclosure is also exceptional from a political, legal and forensic perspective.<\/p>\n<\/blockquote>\n<\/blockquote>\n<p>There hasn\u2019t been time for there to be any validation that what WikiLeaks has published is actually from the CIA. But given the scale of the leak, it seems likely to be the case.<\/p>\n<p>WikiLeaks has indicated that its \u201csource\u201d wants there to be a public debate about the nature of the CIA\u2019s operations and the fact that it had, in effect, created its \u201cown NSA\u201d with less accountability regarding its actions and budgets.<\/p>\n<p>This release of documents from the CIA follows on from a much smaller release of some of the NSA\u2019s \u201ccyber weapons\u201d last year. In that case, the hackers, calling themselves the \u201cShadow Brokers\u201d, tried to sell the information that they had stolen.<\/p>\n<p>At the time, it was thought that this hack was likely to be the work of an insider but could have also been the work of the Russian secret services as part of a general cyber campaign aimed at disrupting the US elections.<\/p>\n<p>This release also follows the much larger release of NSA documents by Edward Snowden in 2013.<\/p>\n<p>While WikiLeaks may have a point in trying to engender a debate around the development, hoarding and proliferation of cyber weapons of this type, it is also running a very real risk of itself acting as a vector for their dissemination.<\/p>\n<p>It is not known how securely this information is stored by WikiLeaks or who has access to it, nor how WikiLeaks intends to publish the software itself.<\/p>\n<p>WikiLeaks has redacted a large amount of information from the documents \u2013 70,875 redactions in total \u2013 including the names of CIA employees, contractors, targets and tens of thousands of IP addresses of possible targets and CIA servers.<\/p>\n<h3>Damage done<\/h3>\n<p>The damage that this release is likely to do to the CIA and its operations is likely to be substantial. WikiLeaks has stated that this leak is the first of several.<\/p>\n<p>How the CIA chooses to respond is yet to be seen, but it is likely to have made Julian Assange\u2019s chance of freedom outside the walls of the Ecuadorian Embassy even less likely than it already was.<\/p>\n<p>The fact that the CIA would have an arsenal of this type or be engaging in cyber espionage is hardly a revelation. WikiLeak\u2019s attempts to make the fact that the CIA was involved in this activity a topic of debate will be difficult simply because this is not surprising, nor is it news.<\/p>\n<p>The fact that an insider leaked this information is more of an issue, as is the possibility of it being another example of a foreign state using WikiLeaks to undermine and discredit the US secret services.<\/p>\n<p>US intelligence officials have declined to comment on the disclosure by WikiLeaks, in all probability because they would need to analyse what information has actually been posted and assess the resulting damage it may have caused.<\/p>\n<p><em>David Glance&nbsp;is the Director of UWA Centre for Software Practice at&nbsp;University of Western Australia.<\/em><\/p>\n<p><em>This article was originally published on The Conversation. Read the original article.<\/em><\/p>\n<p><em>Follow StartupSmart on<\/em>&nbsp;<em>Facebook,<\/em>&nbsp;<em>Twitter,&nbsp;LinkedIn&nbsp;and iTunes.&nbsp;<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>WikiLeaks today released what it claims is the largest leak of intelligence documents in history. It contains 8761 documents from<\/p>\n","protected":false},"author":1,"featured_media":63089,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20,1],"tags":[],"_links":{"self":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts\/45904"}],"collection":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/comments?post=45904"}],"version-history":[{"count":0,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/posts\/45904\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/media\/63089"}],"wp:attachment":[{"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/media?parent=45904"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/categories?post=45904"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.startupsmart.com.au\/wp-json\/wp\/v2\/tags?post=45904"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}