This morning, WikiLeaks released their Vault 7 dump. They describe it as “the largest ever publication of confidential documents on the agency”.
These leaks reveals an internal group within the CIA called UMBRAGE, which maintains a substantial library of attack techniques ‘stolen’ from malware produced in other states including the Russian Federation.
With UMBRAGE and related projects, the CIA cannot only increase its total number of attack types, but also misdirect attribution by leaving the “fingerprints” of the groups that the attack techniques were stolen from.
UMBRAGE components cover keyloggers, password collection, webcam capture, data destruction, persistence, privilege escalation, stealth, anti-virus (PSP) avoidance, and survey techniques.
Read more about the Vault 7 leaks on WikiLeaks’ website, https://wikileaks.org/ciav7p1/index.html.
This story is developing. More posts to come…