WikiLeaks Releases Alleged Documents on CIA Hacking

WikiLeaks Releases Alleged Documents on CIA Hacking

WikiLeaks released thousands of documents that it said described the sophisticated software tools the Central Intelligence Agency uses to break into smartphones, computers and even internet-connected televisions, on Tuesday March 7.

The documents, which have not been confirmed as authentic to the CIA, include 7,818 web pages with 942 attachments, WikiLeaks said. The group has named the collection of released documents, “Vault 7.”

The source of the documents was not named, although it did say that Vault 7 had been “circulated among former U.S. government hackers and contractors in an unauthorized manner, one of whom has provided WikiLeaks with portions of the archive.”

The documents are dated from 2013 to 2016 and WikiLeaks has described them as “the largest ever publication of confidential documents on the agency.”

On Tuesday, a former intelligence officer who reviewed the documents said some of the code names for CIA programs, an organization chart and the description of a CIA hacking base seemed to be genuine.

Information released in these documents hint that CIA agents and allied intelligence services have been able to bypass encryption on popular phone and messaging services such as Signal, WhatsApp and Telegram.

In addition to the encryption hack, the documents also talk of a program code-named, “Weeping Angel” which uses a Samsung smart TV as covert listening devices. According to the WikiLeaks documents, even when the TV appears to be turned off, it is still on and listening to the conversations around it to send to CIA servers. The release said this program was created in cooperation with British intelligence.

Another program detailed in the documents is Umbrage, a voluminous library of cyberattack techniques that the CIA has collected from malware produced by other countries. Based on the leaked documents, CIA agents are able to mask the origin of some of its cyberattacks and confuse forensic investigators.

If proven to be authentic, the Vault 7 archive will fall into the same category as the biggest leaks of classified information in recent years, including the quarter million diplomatic cables taken by Chelsea Manning, the former Amry intelligence anyalyst and given to WikiLeaks in 2010, and the hundreds of thousands of documents taken from the National Security Agency by Edward Snowden and given to journalists in 2013.

Featured

  • New Report Reveals Top Security Risks for U.S. Retail Chains

    Interface Systems, a provider of security, actionable insights, and purpose-built networks for multi-location businesses, has released its 2024 State of Remote Video Monitoring in Retail Chains report. The detailed study analyzed over 2 million monitoring requests across 4,156 retail locations in the United States from September 2023 to August 2024. Read Now

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

Featured Cybersecurity

Webinars

New Products

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.” 3