Tag: iPhone

What Time Will WikiLeaks Vault 7 Release ‘Dark Matter’ CIA Docs?

UPDATE 3/23/17 @ 1:02 p.m. EDT: The new WikiLeaks dossier will drop anytime within the next 24-hours.


LONDON, ENGLAND – FEBRUARY 05: Wikileaks founder Julian Assange speaks from the balcony of the Ecuadorian embassy where he continues to seek asylum following an extradition request from Sweden in 2012, on February 5, 2016 in London, England. (Carl Court/Getty Images)

This morning, the official Twitter account for WikiLeaks promoted the newest “Vault 7” leak. Titled “Dark Matter,” the leak promises information on “several CIA projects that infect Apple Mac Computer” and iPhones. When will it be released? The Periscope is live but has repeatedly failed.

However, it appears to be back online although running well over an hour late from the originally promoted 10 a.m. EDT start time. A new start time of 11:30 a.m. has been given. We will update with the tweet with the passcode once it becomes available.

The decryption passphrase from the first, March 7 Vault 7 leak was “SplinterItIntoAThousandPiecesAndScatterItIntoTheWinds,” a quote credited to President John F. Kennedy. Watch a video about the quote here.

A summary of the new, March 23 documents has been released by the Julian Assange-led organization on the WikiLeaks website. It reads:

Today, March 23rd 2017, WikiLeaks releases Vault 7 “Dark Matter”, which contains documentation for several CIA projects that infect Apple Mac Computer firmware (meaning the infection persists even if the operating system is re-installed) developed by the CIA’s Embedded Development Branch (EDB). These documents explain the techniques used by CIA to gain ‘persistence’ on Apple Mac devices, including Macs and iPhones and demonstrate their use of EFI/UEFI and firmware malware.

Among others, these documents reveal the “Sonic Screwdriver” project which, as explained by the CIA, is a “mechanism for executing code on peripheral devices while a Mac laptop or desktop is booting” allowing an attacker to boot its attack software for example from a USB stick “even when a firmware password is enabled”. The CIA’s “Sonic Screwdriver” infector is stored on the modified firmware of an Apple Thunderbolt-to-Ethernet adapter.

“DarkSeaSkies” is “an implant that persists in the EFI firmware of an Apple MacBook Air computer” and consists of “DarkMatter”, “SeaPea” and “NightSkies”, respectively EFI, kernel-space and user-space implants.

Documents on the “Triton” MacOSX malware, its infector “Dark Mallet” and its EFI-persistent version “DerStake” are also included in this release. While the DerStake1.4 manual released today dates to 2013, other Vault 7 documents show that as of 2016 the CIA continues to rely on and update these systems and is working on the production of DerStarke2.0.

Also included in this release is the manual for the CIA’s “NightSkies 1.2” a “beacon/loader/implant tool” for the Apple iPhone. Noteworthy is that NightSkies had reached 1.2 by 2008, and is expressly designed to be physically installed onto factory fresh iPhones. i.e the CIA has been infecting the iPhone supply chain of its targets since at least 2008.

While CIA assets are sometimes used to physically infect systems in the custody of a target it is likely that many CIA physical access attacks have infected the targeted organization’s supply chain including by interdicting mail orders and other shipments (opening, infecting, and resending) leaving the United States or otherwise.

WikiLeaks Vault 7 Leak Claims CIA Bugs ‘Factory Fresh’ iPhones

A new WikiLeaks Vault 7 leak titled “Dark Matter” claims, with unreleased documents, that the Central Intelligence Agency has been bugging “factory fresh” iPhones since at least 2008.

Click here to read more

WikiLeaks Vault 7 Conspiracy: Michael Hastings Assassinated by CIA Remote Car Hack?

It was revealed today by the WikiLeaks’ Vault 7 leak that the Central Intelligence Agency may have car hacking capabilities, leading online conspiracists to further the claims that journalist Michael Hastings was murdered by the CIA.

Click here to read more

{ Add a Comment }

WikiLeaks Vault 7 Leak Claims CIA Bugs ‘Factory Fresh’ iPhones

A visitor tries out an Apple iPhone 7 on the first day of sales of the new phone at the Berlin Apple store on September 16, 2016 in Berlin, Germany. (Sean Gallup/Getty Images)

A new WikiLeaks Vault 7 leak titled “Dark Matter” claims, with unreleased documents, that the Central Intelligence Agency has been bugging “factory fresh” iPhones since at least 2008. WikiLeaks further claims that the CIA has the capability to permanently bug iPhones, even if their operating systems are deleted or replaced.

The documents are expected to be released in the next 24-hours. The announced was made after a “press briefing” that WikiLeaks promoted on its Twitter.

Watch a playback of the Assange-led livestream here.

A summary of the documents has been released on the WikiLeaks website. It reads:

Today, March 23rd 2017, WikiLeaks releases Vault 7 “Dark Matter”, which contains documentation for several CIA projects that infect Apple Mac Computer firmware (meaning the infection persists even if the operating system is re-installed) developed by the CIA’s Embedded Development Branch (EDB). These documents explain the techniques used by CIA to gain ‘persistence’ on Apple Mac devices, including Macs and iPhones and demonstrate their use of EFI/UEFI and firmware malware.

Among others, these documents reveal the “Sonic Screwdriver” project which, as explained by the CIA, is a “mechanism for executing code on peripheral devices while a Mac laptop or desktop is booting” allowing an attacker to boot its attack software for example from a USB stick “even when a firmware password is enabled”. The CIA’s “Sonic Screwdriver” infector is stored on the modified firmware of an Apple Thunderbolt-to-Ethernet adapter.

“DarkSeaSkies” is “an implant that persists in the EFI firmware of an Apple MacBook Air computer” and consists of “DarkMatter”, “SeaPea” and “NightSkies”, respectively EFI, kernel-space and user-space implants.

Documents on the “Triton” MacOSX malware, its infector “Dark Mallet” and its EFI-persistent version “DerStake” are also included in this release. While the DerStake1.4 manual released today dates to 2013, other Vault 7 documents show that as of 2016 the CIA continues to rely on and update these systems and is working on the production of DerStarke2.0.

Also included in this release is the manual for the CIA’s “NightSkies 1.2” a “beacon/loader/implant tool” for the Apple iPhone. Noteworthy is that NightSkies had reached 1.2 by 2008, and is expressly designed to be physically installed onto factory fresh iPhones. i.e the CIA has been infecting the iPhone supply chain of its targets since at least 2008.

While CIA assets are sometimes used to physically infect systems in the custody of a target it is likely that many CIA physical access attacks have infected the targeted organization’s supply chain including by interdicting mail orders and other shipments (opening, infecting, and resending) leaving the United States or otherwise.

What Time Will WikiLeaks Vault 7 Release ‘Dark Matter’ CIA Docs?

This morning, the official Twitter account for WikiLeaks promoted the newest “Vault 7” leak. Titled “Dark Matter,” the leak promises information on “several CIA projects that infect Apple Mac Computer” and iPhones. When will it be released?

Click here to read more

WikiLeaks Vault 7 Conspiracy: Michael Hastings Assassinated by CIA Remote Car Hack?

It was revealed today by the WikiLeaks’ Vault 7 leak that the Central Intelligence Agency may have car hacking capabilities, leading online conspiracists to further the claims that journalist Michael Hastings was murdered by the CIA.

Click here to read more

{ Add a Comment }