Language Selection

English French German Italian Portuguese Spanish

Windows Intruded by CIA

Filed under
Microsoft
Security
  • Athena

    Today, May 19th 2017, WikiLeaks publishes documents from the "Athena" project of the CIA. "Athena" - like the related "Hera" system - provides remote beacon and loader capabilities on target computers running the Microsoft Windows operating system (from Windows XP to Windows 10). Once installed, the malware provides a beaconing capability (including configuration and task handling), the memory loading/unloading of malicious payloads for specific tasks and the delivery and retrieval of files to/from a specified directory on the target system. It allows the operator to configure settings during runtime (while the implant is on target) to customize it to an operation.

    According to the documentation (see Athena Technology Overview), the malware was developed by the CIA in cooperation with Siege Technologies, a self-proclaimed cyber security company based in New Hampshire, US. On their website, Siege Technologies states that the company "... focuses on leveraging offensive cyberwar technologies and methodologies to develop predictive cyber security solutions for insurance, government and other targeted markets.". On November 15th, 2016 Nehemiah Security announced the acquisition of Siege Technologies.

  • WikiLeaks Reveals 'Athena' CIA Spying Program Targeting All Versions of Windows

    WikiLeaks has published a new batch of the ongoing Vault 7 leak, detailing a spyware framework – which "provides remote beacon and loader capabilities on target computers" – allegedly being used by the CIA that works against every version of Microsoft's Windows operating systems, from Windows XP to Windows 10.

    Dubbed Athena/Hera, the spyware has been designed to take full control over the infected Windows PCs remotely, allowing the agency to perform all sorts of things on the target machine, including deleting data or uploading malicious software, and stealing data and send them to CIA server.

  • Microsoft held back free patch that could have slowed WannaCry

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story Security Leftovers: WCry/Ransomwar, WannaCry, Athena Rianne Schestowitz 22/05/2017 - 5:16pm
Story OSS Leftovers Rianne Schestowitz 22/05/2017 - 4:54pm
Story Tizen News: Phones and TVs Rianne Schestowitz 22/05/2017 - 4:37pm
Story How To Encrypt DNS Traffic In Linux Using DNSCrypt Mohd Sohail 22/05/2017 - 9:36am
Story Debian-Based Untangle 13.0 Linux Firewall Tackles Bufferbloat, Adds New Features Rianne Schestowitz 22/05/2017 - 6:09am
Story Kernel Space: HMM, Cloud Native, Linux 4.12, TFS, Linux 4.11.2, and 4.10 EoL Rianne Schestowitz 22/05/2017 - 6:02am
Story ROSA Fresh R9 Rianne Schestowitz 22/05/2017 - 5:47am
Story More of today's howtos Rianne Schestowitz 22/05/2017 - 5:38am
Story Software: Linfo, EasyTag, Simple Scan, Albert, VLC, Remote Desktop, Frogr, Brisk Menu, and OpenShot Rianne Schestowitz 22/05/2017 - 5:14am
Story CloudReady - Chromebook re-experienced Rianne Schestowitz 22/05/2017 - 5:00am