(The Gateway Pundit) On Thursday, WikiLeaks released ‘Vault 8,’ a series of documents detailing how the CIA developed code to impersonate Russian anti-virus giant ‘Kaspersky Labs.
RT reports:WikiLeaks says it has published the source code for the CIA hacking tool ‘Hive,’ which indicates that the agency-operated malware could mask itself under fake certificates and impersonate public companies, namely Russian cybersecurity firm Kaspersky Lab.
The CIA multi-platform hacking suite ‘Hive’ was able to impersonate existing entities to conceal suspicious traffic from the user being spied on, the source code of the malicious program indicates, WikiLeaks said on Thursday.
The extraction of information would therefore be misattributed to an impersonated company, and at least three examples in the code show that Hive is able to impersonate Russian cybersecurity company Kaspersky Lab, WikiLeaks stated.
As The Gateway Pundit’s Carter Brown previously reported, WikiLeaks published over 600more files back in March claiming to show the CIA used extensive measures to hide its hacking attacks and make it look like Russia, China, North Korea, or Iran carried out the attacks.
The Vault 7 tranche of files and code WikiLeaks continues to drop gives us a better look at what the CIA’s ‘Marble’ software is and how it carries out its attacks.
The code traverses a number of languages from Arabic to Chinese, to Korean, Farsi (the language of the Iranians), and Russian.
It says: ‘This would permit a forensic attribution double game, for example by pretending that the spoken language of the malware creator was not American English, but Chinese.’
This could lead forensic investigators into wrongly concluding that CIA hacks were carried out by the Kremlin, the Chinese government, Iran, North Korea or Arabic-speaking terror groups such as ISIS.