{"id":23856,"date":"2017-05-05T14:28:55","date_gmt":"2017-05-05T19:28:55","guid":{"rendered":"http:\/\/olduvai.ca\/?p=23856"},"modified":"2017-05-05T14:28:55","modified_gmt":"2017-05-05T19:28:55","slug":"wikileaks-reveals-archimedes-malware-used-to-hack-local-area-networks","status":"publish","type":"post","link":"https:\/\/olduvai.ca\/?p=23856","title":{"rendered":"WikiLeaks Reveals “Archimedes”: Malware Used To Hack Local Area Networks"},"content":{"rendered":"

WikiLeaks Reveals “Archimedes”: Malware Used To Hack Local Area Networks<\/a><\/h3>\n
\n
\n

In its seventh CIA leak since March 23rd, WikiLeaks has just revealed the user manual of a CIA hacking tool known as \u2018Archimedes\u2019 which is purportedly used to attack computers inside a Local Area Network (LAN).\u00a0 The CIA tool works by redirecting a target’s webpage search to a CIA server which serves up a webpage that looks exactly like the original page they were expecting to be served, but which contains malware. It\u2019s only possible to detect the attack by examining the page source.\u00a0 Per WikiLeaks<\/a>:<\/p>\n

\n
Today, May 5th 2017, WikiLeaks publishes “Archimedes”, a tool used by the CIA to attack a computer inside a Local Area Network (LAN), usually used in offices.<\/strong> It allows the re-directing of traffic from the target computer inside the LAN through a computer infected with this malware and controlled by the CIA. This technique is used by the CIA to redirect the target’s computers web browser to an exploitation server while appearing as a normal browsing session.<\/strong><\/div>\n

The document illustrates a type of attack within a “protected environment” as the the tool is deployed into an existing local network abusing existing machines to bring targeted computers under control and allowing further exploitation and abuse.<\/p>\n<\/blockquote>\n

\n
<\/p>\n
View image on Twitter<\/span><\/a><\/p>\n
\n
\"View<\/a><\/div>\n<\/div>\n<\/div>\n<\/article>\n
\n
is-deciderHtmlWhitespace\" cite=\"https:\/\/twitter.com\/wikileaks\/status\/860424440051634176\" data-tweet-id=\"860424440051634176\" data-scribe=\"section:subject\"><\/p>\n
\n
\n
Follow<\/a><\/div>\n<\/div>\n
\"\"<\/span>WikiLeaks<\/span> <\/a>\u2714<\/b><\/span>@wikileaks<\/span><\/a><\/div>\n<\/div>\n
\n

RELEASE: CIA ‘#<\/span>Archimedes<\/span><\/a>‘ system for exfiltration and browser hijacking.\u00a0Includes manuals and binary signatures. https:\/\/<\/span>wikileaks.org\/vault7\/releases\/#Archimedes\u00a0<\/span>\u2026<\/a><\/p>\n

5:22 AM – 5 May 2017<\/a><\/time><\/div>\n<\/div>\n<\/blockquote>\n
\n

The RT<\/a> provided more details:<\/p>\n

is-deciderHtmlWhitespace\" cite=\"https:\/\/twitter.com\/wikileaks\/status\/860424440051634176\" data-tweet-id=\"860424440051634176\" data-scribe=\"section:subject\"><\/p>\n
\n

The Archimedes tool enables traffic from one computer inside the LAN to be redirected through a computer infected with this malware and controlled by the CIA,<\/strong> according to WikiLeaks.<\/p>\n

The technique is used to redirect the target\u2019s computer web browser to an exploitation server while appearing as a normal browsing session, the whistleblowing site said. In this way, the hackers gain an entry point that allows them access to other machines on that network.<\/p>\n<\/blockquote>\n<\/blockquote>\n

…click on the above link to read the rest of the article…<\/p>\n

is-deciderHtmlWhitespace\" cite=\"https:\/\/twitter.com\/wikileaks\/status\/860424440051634176\" data-tweet-id=\"860424440051634176\" data-scribe=\"section:subject\"><\/p>\n

\n

\n<\/blockquote>\n<\/div>\n<\/div>\n<\/section>\n","protected":false},"excerpt":{"rendered":"

WikiLeaks Reveals “Archimedes”: Malware Used To Hack Local Area Networks In its seventh CIA leak since March 23rd, WikiLeaks has just revealed the user manual of a CIA hacking tool known as \u2018Archimedes\u2019 which is purportedly used to attack computers inside a Local Area Network (LAN).\u00a0 The CIA tool works by redirecting a target’s webpage […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[6],"tags":[15239,135,15240,15241,880,4318],"class_list":["post-23856","post","type-post","status-publish","format-standard","hentry","category-liberty","tag-archimedes","tag-cia","tag-lan","tag-local-area-network","tag-wikileaks","tag-zerohedge"],"_links":{"self":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23856","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=23856"}],"version-history":[{"count":1,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23856\/revisions"}],"predecessor-version":[{"id":23857,"href":"https:\/\/olduvai.ca\/index.php?rest_route=\/wp\/v2\/posts\/23856\/revisions\/23857"}],"wp:attachment":[{"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=23856"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=23856"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/olduvai.ca\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=23856"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}