Earlier this week, WikiLeaks published a startling news release announcing what could be the largest-ever dump of CIA documents 8,761 pages, a collection which the website calls "Vault 7." WikiLeaks, the "stateless news organization" led by Julian Assange, claims the leak is the first of a series called "Year Zero" that they plan to release regarding secret information on digital tools and techniques used by the agency. The documents, which are mostly pages of highly technical code, appear to reveal the intelligence agency's hacking capabilities, including how they exploited security flaws in popular smart electronics like iPhones and Samsung TVs to spy on individuals.

There is no evidence the hacking tools were used against Americans, and the CIA has refused to confirm the authenticity of the documents. On Wednesday, the CIA issued a statement declining to comment on the "purported intelligence documents" and said the agency was "legally prohibited from conducting electronic surveillance targeting individuals here at home... and CIA does not do so." That same day, the FBI began preparing to interview people with connections to such government documents and files. Intelligence officers and cyber-security experts are weighing in with varying opinions on whether the leak came from inside the CIA or from foreign hackers outside the agency.

Since the dump, there have been several developments, from Assange announcing he would work with electronics and software companies to help patch the security flaws, to experts questioning just what the document dump reveals. In an effort to make sense of the cluster, here's a guide to how the latest leak of secret information affects the government, tech companies and private citizens.

What did the release reveal? The WikiLeaks dump is now being analyzed by cybersecurity experts, who are focusing on what are known as "zero-day" vulnerabilities. These are unknown holes in software that hackers (or government agencies) can use to infect a device with malware or spyware, or gain access to personal information. Since the dump, the CIA has faced criticism from groups such as the ACLU for not turning the security flaws over to the companies so they could be fixed, instead leaving American citizens open for potential cyber attacks.

The alleged CIA documents, which are dated from 2013 to 2016, describe the agency's abilities to use the software flaws to hack into and control devices like the iPhone, Android and Samsung TVs, along with Skype, Wi-Fi networks and antivirus programs. They note, for instance, that agency's malware can infiltrate iPhone and Android mobile devices like the one known to handle the President's Twitter account. "If the CIA can hack these phones then so can everyone else," read one WikiLeaks press release, suggesting that Trump's personal accounts might have already been compromised.

According to the dump, the CIA has the ability to hack into devices remotely and activate cameras and microphones so they can keep tabs on a person's location and private messages. One of the most disturbing aspect of the documents comes in an explanation of how the CIA cooperated with United Kingdom intelligence services to develop techniques to hack into Samsung Smart TVs with a program called "Weeping Angel" that enabled them to record their surroundings while the television appeared to be off.

Does this mean the CIA is spying on me? The short answer is no. Nathan White of the digital rights nonprofit advocacy group Access Now in Washington, DC, says he is not surprised to learn the CIA developed tools and techniques for spying on tech devices, but there is no evidence the agency spies on the American population. "The CIA can hack into phones, TVs, and maybe even cars," he says, "but there is no reason to believe that this means that all of these things have been hacked." While it might be disconcerting that the nation's spy agency has these Orwellian abilities, they're supposed to only use them on foreign targets.

Then again, per Obama-era guidelines, they were supposed to disclose vulnerabilities they found to the tech companies so the security holes could be fixed, and they did not. Cybersecurity expert Stuart Madnick, head of the the Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity at MIT, says the CIA is conflicted: "How dangerous is it to you if the vulnerabilities persist, or how valuable are the vulnerabilities if the CIA can use them? We need to decide as a nation.

Who leaked the CIA documents? WikiLeaks says they published the CIA documents "as soon as its verification and analysis were ready." The website, of course, is not outing their source, but write that the "source wishes to initiate a public debate about the security, creation, use, proliferation and democratic control of cyberweapons."

James Lewis, an expert on cybersecurity at the Center for Strategic and International Studies in Washington, DC, says that he believes the source is probably an agency contractor. "The insider story has some odd bits: this sort of information is supposed to be compartmentalized, meaning that one person shouldn't have access to all of it," he says. "The agency has extensive new safeguard to detect such a leak after the Snowden incident." He says it's also possible the Russians stole the documents and gave them to WikiLeaks, as part of an ongoing struggle between the two powers, in which, as The Guardian describes, "WikiLeaks is widely seen as sitting firmly in Moscows corner."

How does this compare to Edward J. Snowden's leaks in 2013? WikiLeaks says the number of Vault 7 pages "eclipses" the first three years of the Snowden NSA leaks, but there are considerable differences here. Snowden exposed the NSA was spying on American citizens and uncovered surveillance on a global scale. WikiLeaks does not outright accuse the CIA of hacking its own, but rather keeps the focus on the agency's hacking tools. Also, WikiLeaks alleges the CIA didn't report identified zero-day vulnerabilities, while Snowden proved the NSA talked about actually making them.

Overall, there is no clear similarity between this dump and Snowden's. "The NSA leaks were shocking because they revealed mass surveillance that impacted all of us," White says. "We're not seeing that here at least not yet.

What's going to happen next? At a press conference on Thursday, Assange announced that WikiLeaks will give the affected tech companies access to CIA hacking tools for their defense measures, as the documents in the dump only described portions of agency tools, not full programs needed to run a cyber attack. Microsoft and Cisco Systems said they "have not yet been contacted," but would welcome "submissions of any vulnerabilities through normal reporting channels."

The offer comes two months after the American intelligence reported a link between WikiLeaks and the Russians in regards to the Democratic National Committee hack during the 2016 presidential election. It is a growing belief among U.S. officials and lawmakers that Assange is a pawn of Russian President Vladimir Putin in hacking the American government. Russia and the US will continue these battles over whodunnit. But for now, the Kremlin are telling us the CIA information dump is cause enough to turn their phones off.

Sign up for our newsletter to receive breaking news directly in your inbox.

Originally posted here:
WikiLeaks' CIA Document Dump: What You Need to Know - RollingStone.com

The Daily Banter

Wikileaks Jumps The Shark The Daily Banter Since well before the election, there was a nagging suspicion that the darlings of the anti-Hillary hard left, Julian Assange and Wikileaks, were not all that progressive. It started to feel like they were working very hard to tilt the election towards ... WikiLeaks aids doubters of Russian election hackingThe Hill WikiLeaks' CIA dump makes the Russian hacking story even murkier if that's possibleSalon GOP senator claims he was targeted by hackers after blasting WikiLeaks' Julian Assange as 'an enemy'New York Daily News Mediaite -Washington Times -Kenai Peninsula Online all 69 news articles »

Read more:
Wikileaks Jumps The Shark - The Daily Banter

WikiLeaks is a foe and can't be embraced for partisan reasons, the head of an influential conservative group stated Sunday in the wake of the group's disclosure of CIA hacking methods.

"WikiLeaks is an enemy of the United States," said Heritage Action for America CEO Michael Needham, speaking on "Fox News Sunday."

"Both sides need to recognize it cannot be embraced for partisan domestic politics," Needham said of the group.

Some on the right, including President Trump, applauded WikiLeaks for its publication of emails from Hillary Clinton's top campaign adviser. In the past, Needham noted, people on the left backed WikiLeaks when it released damaging disclosures about the Bush administration.

"We have a big problem in this country if there's somebody inside the CIA leaking this kind of information," Needham said. "It's something that we all as Americans need to be deeply concerned about."

Last week, WikiLeaks released stolen documents with information about the CIA's cyber spying methods.

That, said commentator Juan Williams, is far different from past WikiLeaks publications, which shed light on legally dubious domestic spying.

"What was revealed this week was about CIA methods, sources, tactics overseas," Williams noted.

Also from the Washington Examiner

This last election didn't show many gains for women, but more women are running than ever before.

03/13/17 1:01 AM

Read more here:
Heritage Action chief: Don't embrace WikiLeaks for partisan reasons - Washington Examiner

I always have had mixed feelings about unauthorized disclosure of U.S. government surveillance activities. National security officials can make a good case for secrecy as they pursue those who would do us harm, but all of us have reason to feel somewhat uncomfortable at the prospect of Big Brother snooping into our private lives as well.

With each new electronic gadget, the stakes get higher. What are we to think? One thing for sure: We should assume everything we submit to cyberspace is public.

Not that our every interaction via smartphone, tablet, brainy new television and the like will be misused, but the primary restraint stems from the mere volume of human communication and the fact most of it is uninteresting to others. This is sort of security by default, not because of any intentional defense against hacking. Which means for the time being, at least information of interest to others can and will be discovered.

WikiLeaks keeps proving the art of hacking is running ahead of the art of encryption. Certainly the ability of government agencies to know what average citizens are doing with electronic devices is greater than anything we can do in electronic defense. Our only real defense is attitudinal. We should assume we are living in electronic fishbowls and act accordingly.

All of which makes a case for the Luddite life.

Against todays societal norm, I have avoided the use of smartphones altogether, not mainly because of fears of unauthorized snooping but because of a combination of inertia and disdain for the way smartphones take over users lives. I do have an old-fashioned cellphone but rarely turn it on. Our family bill consistently shows my monthly use at less than 10 minutes.

People whose phones are constantly in use volunteer astonishing amounts of information to the internet for easy surveillance. Any government that assumes some of the information on the internet might come from terrorists and other enemies of the state is bound to tap in continually. To tell the bad guys from the good guys, the good guys will receive at least summary attention.

Revelations by WikiLeaks remind us of the brave, disturbing new world of the internet. By our eager embrace of the new technology, we invite its abuses as well as its attributes.

So, Im not ready to blame anybody, including WikiLeaks, when new evidence of hacking shows up.

Defense officials blame insiders who leak information, but this is nothing new. Now its done more efficiently electronically, but the acts are no more heinous than similar thefts by yesterdays spies using yesterdays technology. Every combatant will snoop to find the bad snoops. The new technology guarantees ordinary citizens will be examined in the process.

Managers of the CIA and other intelligence agencies bemoan todays massive cyber leaks as threats to the ability of their agencies to perform their protective duties. We want them to continue the race against hacking, but we also want them to successfully hack enemy files, an activity that will always imply they could be looking at information provided by all of us.

The only words that dont offend a single human being are words delivered without a purpose.

See more here:
WikiLeaks: What are we to think? - Columbia Daily Tribune