A new collection of secret files was leaked on April 14, shedding light on the CIA pathogen control complement HIVE.
HIVE, a back-end infrastructure malware with a public-facing HTTPS interface, was used to transfer exfiltrated information from target machines to the CIA and to receive commands from its operators to execute specific tasks on the targets.
John Safa, confidence consultant and owner of Pushfor, a secure messaging and calm pity height for businesses, common his views on the new WikiLeaks’ recover with Radio Sputnik.
“A really engaging recover has come out. HIVE is a web-based interface that controls malware and spyware on different devices. So, for example, if we have spyware commissioned on a PC, it can be tranquil by this technology. And what creates it some-more worldly is [that] it indeed communicates over a VPN that is effectively an encrypted channel and also creates it like it’s articulate to different services that could be legitimate. So it is a really worldly technology,” Safa told Radio Sputnik.
Commenting on the CIA record destitute by WikiLeaks, a confidence consultant called courtesy to the fact that it is strikingly identical to the collection used by Longhorn, a North American cyberespionage organisation famous to be active since 2011.
American cyber confidence provider Symantec started tracking Longhorn several years ago to learn some-more about the group’s techniques and tools.
The many rare thing about the hacking organisation is that it looked zero reduction than a state-sponsored entity.
“Prior to the Vault 7 leak, Symantec’s comment of Longhorn was that it was a well-resourced classification that was concerned in intelligence entertainment operations,” Symantec’s central press release says.“This comment was formed on its tellurian operation of targets and entrance to a operation of comprehensively grown malware and zero-day exploits. The organisation seemed to work a customary Monday to Friday operative week, formed on timestamps and domain name registration dates, function that is unchanging with state-sponsored groups,” a press recover reveals, adding that there is justification dating a group’s activity behind as far as 2007.
After examining WikiLeaks’ papers a cyber confidence provider came to the end that there is small doubt that Longhorn is partial of the CIA hacking team.
Safa told Radio Sputnik that Longhorn conducted at least 40 attacks against targets in 16 countries across the globe. One attack, believed to be an unintended one, was launched against a aim in the US.
The confidence consultant highlighted that a hacking organisation has focused essentially on international handling organizations, businesses and supervision entities. As Symantec remarked, “all of the organizations targeted would be of interest to a nation-state attacker.”
The new recover by WikiLeaks has combined to existing concerns about the border of the CIA’s hacking activity.
However, besides corporations and bureaucratic organizations, typical users might also tumble plant to cyberespionage.
The problem is that after the CIA hacking practices were done open by WikiLeaks, a unprotected techniques could be simply used by any hackers around the world, a confidence consultant warned.
Hackers might implement a methods and source formula minute in WikiLeaks’ papers to create their possess malware to obtain personal information of general users, he believes.
As for the CIA, a new recover might do do serve repairs to the organization, Safa remarked, presumption that a comprehension use will now have to “move quick” to cover up its destiny attacks and to remain undetected.
Have we listened a news? Sign up to our Telegram channel and we’ll keep we up to speed!
Do you have an unusual story to tell? E-mail at: firstname.lastname@example.org