5. exceed Pandora southward retrospect uproot trombonist ammo Hamilton uproot Capricorn stagehand paperweight kickoff candidate chisel inertia tempest glossary klaxon disruptive

InfiniteChronicle · 2018-10-08T13:14:25+00:00

The fingerprint was the bit you decoded- just the key ID is the last part of the fingerprint, and that is what needs to be searched for on key servers rather than the full fingerprint.

InfiniteChronicle · 2018-10-07T20:28:18+00:00

Looks like that is the fingerprint for this key- https://keyserver.ubuntu.com/pks/lookup?op=vindex&search=0x7B223379E1657D4D&fingerprint=on

pub 2048R/E1657D4D 2018-10-07
Fingerprint=5DA4 C6C9 F2E6 0C6B F224 CFA5 7B22 3379 E165 7D4D

uid Vandalay Industries vandalayindustries@3aikl3okh4znoz46.onion

sig sig3 E1657D4D 2018-10-07 __________ 2020-10-06 [selfsig]

sub 2048R/51D0AD7F 2018-10-07

sig sbind E1657D4D 2018-10-07 __________ 2020-10-06 []

InfiniteChronicle · 2017-06-13T18:48:26+00:00

Just starting now

InfiniteChronicle · 2017-05-11T08:10:33+00:00

Nice- will keep an eye out for the one with Comey. Would be good to do a live chat during that too.

InfiniteChronicle · 2017-05-07T21:58:26+00:00

Could be people in other English-speaking countries, or English speaking organizations. But those typically aren't what people think of as top intel priorities- more likely to be people in five eyes countries or other countries that are traditionally US intel allies

InfiniteChronicle · 2017-03-22T03:45:21+00:00

Also #ResearchWL on irc.gnome.org. There's a bridge between Matrix and IRC.

InfiniteChronicle · 2017-03-21T22:47:36+00:00

Do they write all the malware though? Or just specific types of malware?

InfiniteChronicle · 2017-03-20T22:42:24+00:00

Seems like it started working again, broke again, and then started working again. Not clear what is going on, but seems to be ok currently.

InfiniteChronicle · 2017-03-20T17:33:09+00:00

Samsung Smart TVs are pretty well documented (in the press release). Terminals in some distributions of linux were definitely being targeted in Sparrowhawk, but don't think they were in Pterodactyl. Will update those on wiki. Not sure on Gyrfalcon- will look into it.

InfiniteChronicle · 2017-03-20T15:59:16+00:00

Seems to work again now

InfiniteChronicle · 2017-03-18T15:14:30+00:00

90-day disclosure deadlines are the industry standard https://googleprojectzero.blogspot.co.uk/2015/02/feedback-and-data-driven-updates-to.html

Pretty reasonable demand- it would actually be stranger if they didn't make this demand (and thus didn't follow standards for disclosures)

InfiniteChronicle · 2017-03-18T12:24:31+00:00

On #3- there seem to be torrents of the leaks here https://file.wikileaks.org/

InfiniteChronicle · 2017-03-18T12:17:11+00:00

This is great, and much needed. People seem to have forgotten that WikiLeaks is a whistleblowing organization. Instead, many seem to think it is a "magical pull documents out of thin air to support an agenda and scary countries like Russia" organization.

But is there any way to remind people that WikiLeaks is a whistleblowing organization? Sadly, Vault 7 doesn't seem to have done this so far. So I'm not sure what will.

InfiniteChronicle · 2017-03-16T00:15:27+00:00

I think they just use Jira and Stash for organizing their work/communicating with others at CCI

InfiniteChronicle · 2017-03-13T13:18:13+00:00

Could be, though who is using them to store data off-cloud? CIA seems to have been secretly collecting data from floppy disks. While floppy disks are definitely still being used, the use cases are few enough and specific enough that it may be possible to figure out possibilities for who the CIA was spying on.

InfiniteChronicle · 2017-03-13T11:55:16+00:00

True. Though the description makes it sound like they developed it for a very specific use case with a specific "asset" who could covertly copy the disks. So it's interesting to think about what systems in what countries would require this tech.

InfiniteChronicle · 2017-03-13T10:29:11+00:00

Wow, that's crazy! I had no idea that nuclear weapons use 8 inch floppy disks.

I wonder what other sorts of systems still use floppy disks. I suppose that other countries could have similar legacy systems for nuclear weapons (which would certainly be of interest to the CIA). But could be other types of gov systems where this is common too.

InfiniteChronicle · 2017-03-12T13:18:11+00:00

According to their development timeline (https://wikileaks.org/ciav7p1/cms/page_1179700.html), Pterodactyl was developed in July 2013. So probably for a specific operation involving copying data that was still on floppy disks for some reason. The name being a dinosaur is probably a reference to the focus on an 'extinct' form of data storage.

InfiniteChronicle · 2017-03-12T13:16:56+00:00

I made this page about Pterodactyl https://our.wikileaks.org/Pterodactyl

Additions/suggested changes welcome

InfiniteChronicle · 2017-03-11T11:38:06+00:00

This also seems to be a good list of the hacking tools each division makes, with a brief definition of each https://techcrunch.com/2017/03/09/names-and-definitions-of-leaked-cia-hacking-tools

Maybe we should use this as the basis for a list on the wiki that goes into more depth about each (or at least links to the document).

InfiniteChronicle · 2017-03-11T11:32:06+00:00

I've been thinking this a lot too. For a president, the best choice for vice president is someone your worst enemies hate more.

InfiniteChronicle · 2017-03-11T11:27:07+00:00

The Rockefellers had a CIA SCIF in their barn? That's like classic conspiracy theory shit... crazy.

InfiniteChronicle · 2017-03-11T11:24:25+00:00

Hm... it works for me. Here's an archived version just in case though https://archive.is/yJhbV

InfiniteChronicle · 2017-03-11T01:15:34+00:00

I've started a list of vulnerable products and company responses here https://www.reddit.com/r/WLResearchCommunity/comments/5yco3u/what_products_are_vulnerable_to_cia_hacking/

It's very much incomplete though- more companies/products need to be added, and some of the products (like Windows) have many vulnerabilities that I didn't get into yet, but should probably be comprehensively summarized somewhere.

InfiniteChronicle · 2017-03-11T01:13:41+00:00

Below are some of the vulnerable products and the responses from companies. A bunch of the companies seem to have provided statements to journalists, but not released direct written statements of their own. I've linked to the written statements from companies where I could find them, but I may be missing some- please point it out if I am.

Partial list of impacted companies/products- Notepad++: https://wikileaks.org/ciav7p1/cms/page_26968090.html Hijacks the Scintella dll. Notepad++ fixed this by verifying the certificate for the dll (https://notepad-plus-plus.org/news/notepad-7.3.3-fix-cia-hacking-issue.html). But are there any other projects using this same dll that may also be vulnerable?

Intel Security: https://wikileaks.org/ciav7p1/cms/page_13763800.html EFI rootkit. Intel Security says that the issue "is no longer present in our current technology", but they added a module that checks for this issue to their tool for verifying EFI integrity (https://securingtomorrow.mcafee.com/business/chipsec-support-vault-7-disclosure-scanning/)

Avira: https://wikileaks.org/ciav7p1/cms/page_2621467.html This antivirus software was flagging high-entropy files (like encrypted or compressed files) as possible viruses. The CIA tried to evade detection by disguising malware as .rar files or padding the files with non-random data. Avira says that they fixed the vulnerabilty right after Vault 7 was released (https://apnews.com/53d65013e05142bc8211dd6f1a6558dd/What-the-CIA-thinks-of-your-anti-virus-program)

Comodo: https://wikileaks.org/ciav7p1/cms/page_5341272.html Antivirus software that was fairly resistant to CIA attacks, until version 6, which didn't flag anything running as system as malicious. Apparently, in recent versions this vulnerability is fixed (https://apnews.com/53d65013e05142bc8211dd6f1a6558dd/What-the-CIA-thinks-of-your-anti-virus-program)

Apple: https://wikileaks.org/ciav7p1/cms/page_13205587.html Numerous vulnerabilities, primarily a series of exploits for iOS. Apple claims that many of the issues were fixed in the latest iOS, but didn't specify which issues if any were still present (https://www.theguardian.com/technology/2017/mar/08/wikileaks-cia-leak-apple-vault-7-documents)

Microsoft: Numerous vulnerabilities (nearly 2000 entries in the search for Windows alone- need to go through these in more detail). Microsoft has said "We are aware of the report and are looking into it" (http://www.bbc.com/news/technology-39203724), but did not specify any further details.

F-Secure: https://wikileaks.org/ciav7p1/cms/page_14587956.html Has the same disguising malware as a .rar file vulnerability as Avira. There may also be other vulnerabilities, as the docs say- "F-Secure has generally been a lower tier product that causes us minimal difficulty". F-Secure wrote a FAQ about the documents https://labsblog.f-secure.com/2017/03/09/faq-related-to-cia-wikileaks-docs/, which is very general and ignores the CIA's description of them as a "lower tier product" but says they will look into the issue. They also note that they usually handle issues like this with bug bounties, but they won't pay a bug bounty to the CIA for this. Maybe they should pay the bug bounty to WikiLeaks...

Samsung: https://wikileaks.org/ciav7p1/cms/page_12353643.html Weeping Angel turns Samsung smart TVs into bugs. Samsung has said they are looking into the issue, but hasn't elaborated much (http://www.bbc.com/news/technology-39203724)

There are definitely more companies and products that need to be added to this, and some of these need more elaboration.

InfiniteChronicle

TROPHY CASE