Language Selection

English French German Italian Portuguese Spanish

Windows Intruded by CIA

Filed under
Microsoft
Security
  • Athena

    Today, May 19th 2017, WikiLeaks publishes documents from the "Athena" project of the CIA. "Athena" - like the related "Hera" system - provides remote beacon and loader capabilities on target computers running the Microsoft Windows operating system (from Windows XP to Windows 10). Once installed, the malware provides a beaconing capability (including configuration and task handling), the memory loading/unloading of malicious payloads for specific tasks and the delivery and retrieval of files to/from a specified directory on the target system. It allows the operator to configure settings during runtime (while the implant is on target) to customize it to an operation.

    According to the documentation (see Athena Technology Overview), the malware was developed by the CIA in cooperation with Siege Technologies, a self-proclaimed cyber security company based in New Hampshire, US. On their website, Siege Technologies states that the company "... focuses on leveraging offensive cyberwar technologies and methodologies to develop predictive cyber security solutions for insurance, government and other targeted markets.". On November 15th, 2016 Nehemiah Security announced the acquisition of Siege Technologies.

  • WikiLeaks Reveals 'Athena' CIA Spying Program Targeting All Versions of Windows

    WikiLeaks has published a new batch of the ongoing Vault 7 leak, detailing a spyware framework – which "provides remote beacon and loader capabilities on target computers" – allegedly being used by the CIA that works against every version of Microsoft's Windows operating systems, from Windows XP to Windows 10.

    Dubbed Athena/Hera, the spyware has been designed to take full control over the infected Windows PCs remotely, allowing the agency to perform all sorts of things on the target machine, including deleting data or uploading malicious software, and stealing data and send them to CIA server.

  • Microsoft held back free patch that could have slowed WannaCry

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story today's howtos Rianne Schestowitz 24/05/2017 - 12:03am
Story LinuxAndUbuntu Distro Review Of The Week - Deepin OS Rianne Schestowitz 23/05/2017 - 11:13pm
Story KDE Leftovers: digikam, KDevelop, Kate, GSoC, and Akademy Rianne Schestowitz 23/05/2017 - 10:06pm
Story Gaming News: Shogun, SteamOS, Dawn Of War III Rianne Schestowitz 23/05/2017 - 9:44pm
Story Galicia continues promotion of free software Rianne Schestowitz 23/05/2017 - 8:17pm
Story Linux Devices: Raspberry Pi, PIC32, Lime Micro Rianne Schestowitz 23/05/2017 - 7:49pm
Story Android Leftovers Rianne Schestowitz 23/05/2017 - 12:08pm
Story Server: Data Centres, Google, SDN, Amazon, and Microsoft Rianne Schestowitz 23/05/2017 - 11:44am
Story Security Leftovers: WannaCry, Windows in Linux, Windows 7, Windows 10 is Spyware Rianne Schestowitz 23/05/2017 - 10:32am
Story Android Leftovers Rianne Schestowitz 22/05/2017 - 8:29pm