Wikileaks Unveils CIA Implants that Steal Credentials from your PC – 7/08/2017

Wikileaks Unveils CIA Implants that Steal Credentials from your PC

Wikileaks Unveils CIA Implants that Steal SSH Credentials from Windows & Linux PCs

Swati Khandelwal | The Hacker News
July 6, 2017

WikiLeaks has today published the 15th batch of its ongoing Vault 7 leak, this time detailing two alleged CIA implants that allowed the agency to intercept and exfiltrate SSH (Secure Shell) credentials from targeted Windows and Linux operating systems using different attack vectors.

Secure Shell or SSH is a cryptographic network protocol used for remote login to machines and servers securely over an unsecured network.

Dubbed BothanSpy — implant for Microsoft Windows Xshell client, and Gyrfalcon — targets the OpenSSH client on various distributions of Linux OS, including CentOS, Debian, RHEL (Red Hat), openSUSE and Ubuntu.

Both implants steal user credentials for all active SSH sessions and then sends them to a CIA-controlled server.

Read More:

https://thehackernews.com/2017/07/ssh-credential-hacking.html

http://operationdisclosure.blogspot.ca/2017/07/wikileaks-unveils-cia-implants-that.html

Advertisements
This entry was posted in Uncategorized. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s