WikiLeaks
Today,
August 3rd 2017 WikiLeaks publishes documents from the Dumbo project
of the CIA. Dumbo is a capability to suspend processes utilizing
webcams and corrupt any video recordings that could compromise a PAG
deployment. The PAG (Physical Access Group) is a special branch
within the CCI (Center for Cyber Intelligence); its task is to gain
and exploit physical access to target computers in CIA field
operations.
Dumbo can
identify, control and manipulate monitoring and detection systems on
a target computer running the Microsoft Windows operating sytem. It
identifies installed devices like webcams and microphones, either
locally or connected by wireless (Bluetooth, WiFi) or wired networks.
All processes related to the detected devices (usually recording,
monitoring or detection of video/audio/network streams) are also
identified and can be stopped by the operator. By deleting or
manipulating recordings the operator is aided in creating fake or
destroying actual evidence of the intrusion operation.
Dumbo is run
by the field agent directly from an USB stick; it requires
administrator privileges to perform its task. It supports 32bit
Windows XP, Windows Vista, and newer versions of Windows operating
system. 64bit Windows XP, or Windows versions prior to XP are not
supported.
Documents:
Comments
Post a Comment