"Today, June 29th 2017, WikiLeaks publishes documents from the OutlawCountry project of the CIA that targets computers running the Linux operating system. OutlawCountry allows for the redirection of all outbound network traffic on the target computer to CIA controlled machines for ex- and infiltration purposes. The malware consists of a kernel module that creates a hidden netfilter table on a Linux target; with knowledge of the table name, an operator can create rules that take precedence over existing netfilter/iptables rules and are concealed from an user or even system administrator.
The installation and persistence method of the malware is not described in detail in the document; an operator will have to rely on the available CIA exploits and backdoors to inject the kernel module into a target operating system. OutlawCountry v1.0 contains one kernel module for 64-bit CentOS/RHEL 6.x; this module will only work with default kernels. Also, OutlawCountry v1.0 only supports adding covert DNAT rules to the PREROUTING chain."
https://www.wikileaks.org/vault7/#OutlawCountry
-- Leaked Documents :
= OutlawCountry v1.0 User Manual
https://www.wikileaks.org/vault7/document/OutlawCountry_v1_0_User_Manual/
(PDF) https://www.wikileaks.org/vault7/document/OutlawCountry_v1_0_User_Manual/OutlawCountry_v1_0_User_Manual.pdf
= OutlawCountry v1.0 Test Plan
https://www.wikileaks.org/vault7/document/OutlawCountry_v1_0_Test_Plan/
(PDF) https://www.wikileaks.org/vault7/document/OutlawCountry_v1_0_Test_Plan/OutlawCountry_v1_0_Test_Plan.pdf
(Score: 4, Insightful) by butthurt on Friday June 30 2017, @06:42PM (3 children)
> [...] 95% of the computers hackers care about run Windows [...]
Because attackers don't care about the computers in data centres, nor the computers in people's pockets. They only care about the ones on desks.
(Score: 4, Funny) by bob_super on Friday June 30 2017, @06:54PM (1 child)
I've been mining bitcoin on top500 machines for years, because the people running them just assumed that linux is too small of a target and didn't ever consider security...
I hope that CIA tool being public doesn't get me booted from Oak Ridge, I already have to deal with Kim's friends slowing me down when they try to access nuke sim results.
(Score: 0) by Anonymous Coward on Saturday July 01 2017, @02:55AM
Hey, is that my tax $$ paying the electric bill for your mining?
Time to share the wealth...
(Score: 0) by Anonymous Coward on Saturday July 01 2017, @06:19AM
Actually, they care about computers people use for ebanking nowadays, and those usually do indeed reside on desks (or in their pockets).