WikiLeaks released documentation on another Vault 7 hacking tool used by the CIA for large cyber-espionage operations.
Dated December 2013, the 12-page document describes an Android malware, internally known as HighRise, hidden in an application named TideCheck.
HighRise runs on Android versions 4.0 to 4.3 with a “redirector function for SMS messaging” to a remote CIA server.
According to the document, the malware has the following features:
The application has to be manually downloaded, installed and activated by CIA agents on the victim”s phone, an odd and complicated scenario as most hacks rely on social engineering techniques. This implies agents need physical access to the device on which they have to insert the code “inshallah,” Arabic for “God willing.”
The manual doesn”t say why this specific word and language were chosen. Once activated, the program automatically runs in the background and intercepts all communication.
Since the document was released four years ago, the tool may have been updated to run on newer Android versions.
tags
After having addressed topics such as NFC, startups, and tech innovation, she has now shifted focus to internet security, with a keen interest in smart homes and IoT threats.
View all postsSeptember 06, 2024
September 02, 2024