WikiLeaks has been fairly steadily releasing documents from what is known as the Vault 7 leaks, and now documentation has been released about a tool known as Aeris which specifically targets POSIX systems such as a couple GNU/Linux Distributions.
Posted on WikiLeaks yesterday, was information regarding the Imperial project of the CIA,
Aeris is an automated implant written in C that supports a number of POSIX-based systems (Debian, RHEL, Solaris, FreeBSD, CentOS). It supports automated file exfiltration, configurable beacon interval and jitter, standalone and Collide-based HTTPS LP support and SMTP protocol support - all with TLS encrypted communications with mutual authentication.
It is compatible with the NOD Cryptographic Specification and provides structured command and control that is similar to that used by several Windows implants.
This article will be focusing specifically on Aeris however.
Aeris appears to be an implant that is designed to allow an agent to retrieve and send information about the infected system through TLS encrypted channels.
There are multiple avenues for information transmission such as mail systems like Postfix, that allow the agent to send heavily encrypted information to the designated destination in a virtually unbreakable fashion using AES256 encryption.
What systems are targeted?
The distribution of Aeris consists of a set of Python utilities and a set of binaries, one per platform that is targeted by Aeris.
Aeris does not have a separate installer. To deploy it, simply place an Aeris binary in the desired directory. Rename the binary in any way that you wish. Note that the configuration is patched in at build time; hence, no additional files (beyond possibly those related to persistence -- see the next section) are needed.
While many people may view this on a political level, or on the topic of privacy advocacy etc, I look at this from a standpoint of future security.
In the past, malware that has caused problems for the general populace has been based on government malware; such as WannaCry for example. WannaCry was initially based on EternalBlue, that many attribute it to the NSA.
Read also: A look at the nano text editor in GNU/Linux
With the release of this information on Aeris, I worry that black-hat (read: bad hackers) may get their hands on / develop something similar, and use the methods described in the documentation in malicious ways.
However, with that being said, most home users would have very little to worry about, and unless a server has a reason to be targeted; again there shouldnt really be any need to worry. But, educating ones-self on the topic is never a bad thing!
In the Manual, there is a rather amusing part of one paragraph that I thought I might point out:
Each implant instance has a unique certificate authority associated with it. The CA's private key is used to sign the implant's certificate as well as certificates for each LP associated with the implant in question.
If anyone actually reads this paragraph, he or she is entitled to a small monetary prize courtesy of the Aeris team lead. Implant- collected data cannot be decrypted without the CA's private key; hence, this key is considered SECRET//NOFORN and must be maintained on a classified network. All keys and certificates (CA, target, and LP) are 2048 bits in size.
Many people like to think that GNU/Linux systems are invincible, and that simply by running a Linux based system you are totally safe from malware and the like; these releases are just further proof that this is not the case; lets just hope that more malicious users out there do not try and take advantage of these new tools!
For those who wish to see the information about Aeris, you can find the manual here (PDF).
Summary
Article Name
WikiLeaks releases Manual for Linux Implant Aeris
Description
WikiLeaks has been releasing documents from what is known as the Vault 7 leaks, and now documentation has been released about a tool known as Aeris
Author
Mike Turcotte
Publisher
Ghacks Technology News
Logo
You are here: Home > Linux > WikiLeaks releases Manual for Linux Implant Aeris
You can support us in many ways, for instance by disabling adblockers. Alternatively, you may support us with a PayPal donation.
Please check out our other support options here.
Advertisement
Recent Updates:
Pale Moon 27.4 Remove Intel True Key Firefox 54.0.1 Windows 10 Privacy Software The best Chrome extensions The best Firefox addons Firefox privacy and security preferences Firefox Release Schedule Firefox multi-process information Windows Backup Software overview Anti-Ransomware Software overview The Best Windows Software Firefox Roadmap 2017
Advertisement
Topics
Apple Development Facebook Games Ghacks Hardware Internet Internet Explorer Linux Microsoft Mobile Computing Music And Video Networks Opera Security Tutorials
Advertisement
Latest Downloads:
WinSuperMaximize Fing Network Discovery
Here is the original post:
WikiLeaks releases Manual for Linux Implant Aeris - Ghacks Technology News
- Wikileaks: Pictures, Videos, Breaking News [Last Updated On: January 22nd, 2014] [Originally Added On: January 22nd, 2014]
- WikiLeaks - Official Site [Last Updated On: January 22nd, 2014] [Originally Added On: January 22nd, 2014]
- WikiLeaks diplomatic cable release shows America's undiplomatic side2432 - Video [Last Updated On: January 22nd, 2014] [Originally Added On: January 22nd, 2014]
- Anonymous WikiLeaks - Video [Last Updated On: January 22nd, 2014] [Originally Added On: January 22nd, 2014]
- Anonymous WikiLeaks - Video [Last Updated On: January 22nd, 2014] [Originally Added On: January 22nd, 2014]
- WikiLeaks, drought and Syria [Last Updated On: January 23rd, 2014] [Originally Added On: January 23rd, 2014]
- Wikileaks - Wikileaks [Last Updated On: January 23rd, 2014] [Originally Added On: January 23rd, 2014]
- TPP Wikileaks Has Released Another Bombshell 17th JAN 2014 - Video [Last Updated On: January 23rd, 2014] [Originally Added On: January 23rd, 2014]
- Terabyte Leaks and Political Legitimacy in the U.S. and China [Last Updated On: January 24th, 2014] [Originally Added On: January 24th, 2014]
- Secret draft of TPP talks on environment show little enforcement measures [Last Updated On: January 24th, 2014] [Originally Added On: January 24th, 2014]
- Noam Chomsky on Wikileaks (2013) - Video [Last Updated On: January 24th, 2014] [Originally Added On: January 24th, 2014]
- Assange: Wikileaks - Video [Last Updated On: January 26th, 2014] [Originally Added On: January 26th, 2014]
- Wikileaks Reveal Secret US Activity in Afghanistan3963 - Video [Last Updated On: January 26th, 2014] [Originally Added On: January 26th, 2014]
- Wikileaks UFO/USA and Rant - Video [Last Updated On: January 27th, 2014] [Originally Added On: January 27th, 2014]
- ‘Bad Grandpa,’ ‘The Fifth Estate,’ ‘Cloudy’ sequel, ‘Rush’ [Last Updated On: January 28th, 2014] [Originally Added On: January 28th, 2014]
- Sam Worthington's Gallipoli drama for the WikiLeaks era [Last Updated On: January 30th, 2014] [Originally Added On: January 30th, 2014]
- Film Review | The Fifth Estate [Last Updated On: January 30th, 2014] [Originally Added On: January 30th, 2014]
- Freedom Of The Press Foundation Launches To Support WikiLeaks, Increase Transparency - Video [Last Updated On: January 31st, 2014] [Originally Added On: January 31st, 2014]
- FABIO BORGES EXPLICA QUE O É O WIKILEAKS - Video [Last Updated On: February 3rd, 2014] [Originally Added On: February 3rd, 2014]
- FABIO BORGES FALA SOBRE O WIKILEAKS - Video [Last Updated On: February 3rd, 2014] [Originally Added On: February 3rd, 2014]
- Douglas Murray and Amy Goodman - Wikileaks, Afghanistan, Arab Spring - Video [Last Updated On: February 3rd, 2014] [Originally Added On: February 3rd, 2014]
- The Fifth Estate [Last Updated On: February 4th, 2014] [Originally Added On: February 4th, 2014]
- Cumberbatch Opens TIFF With WikiLeaks Drama974 - Video [Last Updated On: February 4th, 2014] [Originally Added On: February 4th, 2014]
- Julian Assange opens up on Indian Govt's reaction to WikiLeaks - Video [Last Updated On: February 4th, 2014] [Originally Added On: February 4th, 2014]
- Reuter Journalisten Zivilisten werden von US Army ermordet Wikileaks - Video [Last Updated On: February 4th, 2014] [Originally Added On: February 4th, 2014]
- June 4 1989 Wikileaks US Cables - Video [Last Updated On: February 5th, 2014] [Originally Added On: February 5th, 2014]
- WikiLeaks: US trying to 'criminalize journalism' over Snowden leaks - Video [Last Updated On: February 7th, 2014] [Originally Added On: February 7th, 2014]
- Rumbatá Beat Band -- Wikileaks (Jaime Rodríguez) (Live @ Bimhuis - Amsterdam) - Video [Last Updated On: February 10th, 2014] [Originally Added On: February 10th, 2014]
- Alex Gibney accepts the 2014 Paul Selvin Award for We Steal Secrets: The Story of WikiLeaks - Video [Last Updated On: February 10th, 2014] [Originally Added On: February 10th, 2014]
- Security Graph 3D Visualization: WikiLeaks.org - Video [Last Updated On: February 12th, 2014] [Originally Added On: February 12th, 2014]
- Russian UFO encounter wikileaks 2014 - Video [Last Updated On: February 14th, 2014] [Originally Added On: February 14th, 2014]
- WikiLeaks [Last Updated On: February 16th, 2014] [Originally Added On: February 16th, 2014]
- WIKILEAKS UFO FOOTAGE THAT WAS BANNED. - Video [Last Updated On: February 17th, 2014] [Originally Added On: February 17th, 2014]
- Snowden files show how governments monitor Wikileaks and supporters [Last Updated On: February 18th, 2014] [Originally Added On: February 18th, 2014]
- Snowden files show governments monitor Wikileaks and others [Last Updated On: February 18th, 2014] [Originally Added On: February 18th, 2014]
- WikiLeaks now has own search engine [Last Updated On: February 18th, 2014] [Originally Added On: February 18th, 2014]
- Spies monitored WikiLeaks visitors in real time, Snowden docs show [Last Updated On: February 18th, 2014] [Originally Added On: February 18th, 2014]
- Wikileaks - Soldati americani uccidono innocenti - Video [Last Updated On: February 18th, 2014] [Originally Added On: February 18th, 2014]
- Visited WikiLeaks? NSA and GCHQ know about it [Last Updated On: February 19th, 2014] [Originally Added On: February 19th, 2014]
- Julian Assange, Wikileaks and Site Visitors Targeted By NSA - Video [Last Updated On: February 19th, 2014] [Originally Added On: February 19th, 2014]
- Wikileaks on Lencho Leta (TOP Secret) - Video [Last Updated On: February 19th, 2014] [Originally Added On: February 19th, 2014]
- The Dalai Lama Treasure Chest: New Evidence from Wikileaks - Video [Last Updated On: February 19th, 2014] [Originally Added On: February 19th, 2014]
- BBC WikiLeaks The Secret Life of a Superpower Ep 1 - Video [Last Updated On: February 19th, 2014] [Originally Added On: February 19th, 2014]
- NSA Targeted WikiLeaks, Pressured Foreign Countries to Arrest Julian Assange for Publishing [Last Updated On: February 20th, 2014] [Originally Added On: February 20th, 2014]
- Documents Reveal NSA and GCHQ Efforts to Destroy Assange And Track Wikileaks Supporters - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- Glenn Greenwald On Surveillance Of Wikileaks - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- We Steal Secrets, la vérité sur Wikileaks - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- WikiLeaks spied on by the NSA and GCHQ - Truthloader - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- Tech News Today 946: WikiLeaks Visitors Tracked - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- 'Paranoid, vain and jealous' - the secret life of WikiLeaks founder Julian Assange [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- Wikileaks BBC Scandal, how I faked the winner of Chris Evans 500 Words Short Story Contest 2014 - Video [Last Updated On: February 22nd, 2014] [Originally Added On: February 22nd, 2014]
- Julian Assange posed 'no real security threat' to Australia [Last Updated On: February 23rd, 2014] [Originally Added On: February 23rd, 2014]
- Wikileaks Exposes 9 11 Conspirators - Video [Last Updated On: February 23rd, 2014] [Originally Added On: February 23rd, 2014]
- [002] Nuclear Plant Whistleblower Fired / Banker Suicides / WikiLeaks Surveillance - Video [Last Updated On: February 23rd, 2014] [Originally Added On: February 23rd, 2014]
- WikiLeaks Spied On By The NSA And GCHQ - Video [Last Updated On: February 23rd, 2014] [Originally Added On: February 23rd, 2014]
- wikileaks Drone footage 2013 - Video [Last Updated On: February 25th, 2014] [Originally Added On: February 25th, 2014]
- Wikileaks Reveals Saddam And Bush Negotiated Before Kuwait Invasion - Video [Last Updated On: February 25th, 2014] [Originally Added On: February 25th, 2014]
- More Snowden Leaks How The Government Reacted To Wikileaks - Video [Last Updated On: February 25th, 2014] [Originally Added On: February 25th, 2014]
- Amazing Wikileaks Video Of Roswell Grey Alien Unbelievable! - Video [Last Updated On: February 25th, 2014] [Originally Added On: February 25th, 2014]
- More Snowden Leaks: How The Government Reacted To Wikileaks - Video [Last Updated On: February 25th, 2014] [Originally Added On: February 25th, 2014]
- 42 David Duke Wikileaks exposes Zionist Treachery - Video [Last Updated On: February 26th, 2014] [Originally Added On: February 26th, 2014]
- Wikileaks Nibiru Planet X new evidence 2014 - Video [Last Updated On: February 26th, 2014] [Originally Added On: February 26th, 2014]
- WikiLeaks' Julian Assange Has Cost The Met Police £5.3m During Ecuador Embassy Stay [Last Updated On: February 27th, 2014] [Originally Added On: February 27th, 2014]
- تطوانيون بإفران و النواحي - Video [Last Updated On: February 27th, 2014] [Originally Added On: February 27th, 2014]
- 'This Week' Transcript: WikiLeaks' Julian Assange [Last Updated On: March 1st, 2014] [Originally Added On: March 1st, 2014]
- WikiLeaks UFO Video Analyzed avi - Video [Last Updated On: March 1st, 2014] [Originally Added On: March 1st, 2014]
- WikiLeaks Cables Foreshadow Russian Instigation of Ukrainian Military Action [Last Updated On: March 2nd, 2014] [Originally Added On: March 2nd, 2014]
- Assange Held Back Wikileaks About U S , Israel - Video [Last Updated On: March 2nd, 2014] [Originally Added On: March 2nd, 2014]
- WikiLeaks Cables Reveal Ukraine's Past Cries For Help; Is Kerry's $1 Billion In Aid Too Late? [Last Updated On: March 4th, 2014] [Originally Added On: March 4th, 2014]
- Flashback: WikiLeaks Cables Show Ukraine Worried About Russian Incursion in 2006 [Last Updated On: March 5th, 2014] [Originally Added On: March 5th, 2014]
- Wikileaks. Film dokumentalny - Video [Last Updated On: March 6th, 2014] [Originally Added On: March 6th, 2014]
- Assange: Is Obama wearing pants? [Last Updated On: March 7th, 2014] [Originally Added On: March 7th, 2014]
- SXSW: Julian Assange Says Living in Ecuadorian Embassy Is 'Like Prison' [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- WikiLeaks founder has harsh words for Google, Facebook [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- 'WikiLeaks' Assange hints at more leaks [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- WikiLeaks' Julian Assange talks NSA, hints at more leaks [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- WikiLeaks' Julian Assange: NSA critics got lucky because agency had no PR strategy [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- Wikileaks' Assange says group will release new secret data [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- Afghan journalist Enayat Najafizada on the burden of releasing WikiLeaks documents - Video [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]
- The Dalai Lama files from Wikileaks - Video [Last Updated On: March 9th, 2014] [Originally Added On: March 9th, 2014]