Dubbed OutlawCountry, the projection allows the CIA hackers to redirect all outbound network traffic on the targeted figurer to CIA controlled figurer systems for exfiltrate in addition to infiltrate data.
The OutlawCountry Linux hacking tool consists of a substance module, which the CIA hackers charge via vanquish access to the targeted scheme in addition to exercise a hidden Netfilter tabular array amongst an obscure mention on a target Linux user.
"The novel tabular array allows for sure rules to live on created using the "iptables" command. These rules accept precedence over existing rules, in addition to are alone visible to an administrator if the tabular array mention is known. When the Operator removes the substance module, the novel tabular array is also removed," CIA's leaked user manual reads.Although the installation in addition to persistence method of the OutlawCountry tool is non described inwards exceptional inwards the document, it seems similar the CIA hackers rely on the available CIA exploits in addition to backdoors to inject the substance module into a targeted Linux operating system.
However, at that topographic point are about limitations to using the tool, such equally the substance modules alone run amongst compatible Linux kernels.
"OutlawCountry v1.0 contains i substance module for 64-bit CentOS/RHEL 6.x; this module volition alone run amongst default kernels. Also, OutlawCountry v1.0 alone supports adding covert DNAT rules to the PREROUTING chain," WikiLeaks says.
Previous Vault seven CIA Leaks
Last week, WikiLeaks dumped a classified CIA malware that tracks geo-location of targeted PCs in addition to laptops running the Microsoft Windows operating system.
Dubbed ELSA, the malware captures the IDs of nearby world hotspots in addition to thence matches them amongst the global database of world Wi-Fi hotspots' locations.
Since March, the whistleblowing grouping has published fourteen batches of "Vault 7" series, which includes the latest in addition to final calendar week leaks, along amongst the next batches:
- Brutal Kangaroo – a CIA tool suite for Microsoft Windows that targets shut networks or air-gapped computers within an enterprise or arrangement without requiring whatever straight access.
- Cherry Blossom – a CIA's framework, to a greater extent than ofttimes than non a remotely controllable firmware-based implant, used for monitoring the Internet activity of the target systems yesteryear exploiting flaws inwards WiFi devices.
- Pandemic – a CIA's projection that allowed the spying way to plow Windows file servers into covert assail machines that tin silently infect other computers of involvement within a targeted network.
- Athena – an agency's spyware framework that has been designed to accept total command over the infected Windows machines remotely, in addition to works amongst every version of Microsoft's Windows operating systems, from Windows XP to Windows 10.
- AfterMidnight in addition to Assassin – Two apparent CIA's malware frameworks for the Microsoft Windows platform that is meant to monitor in addition to study dorsum actions on the infected remote host figurer in addition to execute malicious code.
- Archimedes – Influenza A virus subtype H5N1 man-in-the-middle assail tool allegedly built yesteryear the spying way to target computers within a Local Area Network (LAN).
- Scribbles – Influenza A virus subtype H5N1 slice of software reportedly designed to embed 'web beacons' into confidential documents, allowing the CIA hackers to rail insiders in addition to whistleblowers.
- Grasshopper – Influenza A virus subtype H5N1 framework that allowed the CIA to easily exercise custom malware for breaking into Microsoft's Windows in addition to bypassing antivirus protection.
- Marble – The source code of a hole-and-corner anti-forensic framework, primarily an obfuscator or a packer used yesteryear the spying way to shroud the actual source of its malware.
- Dark Matter – Hacking exploits the way designed in addition to used to target iPhones in addition to Mac machines.
- Weeping Angel – Spying tool used yesteryear the CIA to infiltrate smart TV's, transforming them into covert microphones inwards target's pocket.
- Year Zero – CIA hacking exploits for pop hardware in addition to software.
