{"id":6882,"date":"2017-03-07T08:30:21","date_gmt":"2017-03-07T16:30:21","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/03\/07\/news-673\/"},"modified":"2017-03-07T08:30:21","modified_gmt":"2017-03-07T16:30:21","slug":"news-673","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/03\/07\/news-673\/","title":{"rendered":"WikiLeaks' CIA document dump shows agency can compromise Android, TVs"},"content":{"rendered":"

<\/p>\n

Credit to Author: Grant Gross| Date: Tue, 07 Mar 2017 08:22:00 -0800<\/strong><\/p>\n

WikiLeaks has released more than 8,700 documents it says come from the\u00a0CIA’s Center for Cyber Intelligence, with some of the leaks saying the agency had 24 “weaponized” and previously undisclosed exploits for the Android operating system as of 2016. <\/p>\n

Some of the Android exploits<\/a> were developed by the CIA, while others came from the U.S. National Security Agency, U.K. intelligence agency GCHQ, and cyber arms dealers, according to the\u00a0trove of documents<\/a>\u00a0released Tuesday.\u00a0 <\/p>\n

Some smartphone attacks developed by the CIA allow the agency to bypass the encryption in WhatsApp, Confide, and other apps by collecting audio and message traffic before encryption is applied, according to the WikiLeaks analysis. <\/p>\n

The documents show the CIA “hoarding” undisclosed, or zero-day, exploits for a number of systems, despite promises from former President Barack Obama’s administration to share the vulnerabilities with vendors, according to the WikiLeaks analysis. <\/p>\n

The CIA declined to comment on the authenticity of the leaks. The documents, which cover the years 2013 to 2016, amount to the “largest ever publication of confidential documents on the agency” and the “entire hacking capacity of the CIA,” WikiLeaks claimed. <\/p>\n

Some documents released describe how the spy agency used malware and hacking tools to target iPhones and smart television sets. Others detail\u00a0the CIA unit’s efforts to compromise Windows, Apple’s OS X, Linux, and routers. <\/p>\n

One attack, called Weeping Angel<\/a>, targets Samsung smart TVs and was developed by the CIA and the U.K.’s MI5, according\u00a0to WikiLeaks’ analysis of the documents. <\/p>\n

The Weeping Angel attack attempts to place the target TV in a “fake off” mode to trick the owner into believing the devices is off when it is on. In the fake off mode, the TV set can be used as a bug, recording conversations in the room and sending them over the internet to a CIA server. <\/p>\n

In late 2014, the CIA was also looking for ways to\u00a0infect\u00a0vehicle software systems<\/a>, according to one document. <\/p>\n

The CIA unit’s cyber weapons could create serious problems if the agency loses control of them, WikiLeaks editor Julian Assange said in a press release. <\/p>\n

“There is an extreme proliferation risk in the development of cyber ‘weapons,'” he\u00a0said. “Comparisons can be drawn between the uncontrolled proliferation of such ‘weapons’, which results from the inability to contain them combined with their high market value, and the global arms trade.” <\/p>\n

Samsung and Google, the creator of the Android operating system, didn’t immediately respond to questions about potential CIA attacks against their products. <\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: Grant Gross| Date: Tue, 07 Mar 2017 08:22:00 -0800<\/strong><\/p>\n

\n
\n

WikiLeaks has released more than 8,700 documents it says come from the\u00a0CIA’s Center for Cyber Intelligence, with some of the leaks saying the agency had 24 “weaponized” and previously undisclosed exploits for the Android operating system as of 2016.<\/p>\n

Some of the Android exploits<\/a> were developed by the CIA, while others came from the U.S. National Security Agency, U.K. intelligence agency GCHQ, and cyber arms dealers, according to the\u00a0trove of documents<\/a>\u00a0released Tuesday.\u00a0<\/p>\n

Some smartphone attacks developed by the CIA allow the agency to bypass the encryption in WhatsApp, Confide, and other apps by collecting audio and message traffic before encryption is applied, according to the WikiLeaks analysis.<\/p>\n

To read this article in full or to leave a comment, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[714],"class_list":["post-6882","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6882","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=6882"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6882\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=6882"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=6882"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=6882"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}