Vault 7: The CIA weaponized these popular programs to spy on people

By Wayne Williams
Published 7 years ago

cia-vault-7

Two days ago, WikiLeaks unleashed a treasure trove of data relating to the CIA's supposed arsenal of hacking tools. Code-named Vault 7, the "Year Zero" cache contains over 8,500 documents and files, and is, according to WikiLeaks, just the first batch. More content will be leaked over time.

While we know that the CIA’s zero day weapons could be used to exploit iPhones, Android devices, Windows PCs and even Samsung TVs, one of the hacking tools is particularly interesting.

Named "Fine Dining", and developed by the OSB (Operational Support Branch), in the CIA's Center for Cyber Intelligence, it is a collection of malware-laced applications that could be used to spy on a target system. In all cases bar one (U3 Software, which had a Trojan as its execution vector) the OSB used DLL Hijacking to inject the malicious code into the application.

Once run (many of the weaponized apps are portable, and designed to run from a USB memory stick), the decoy app executed malicious code, and could steal information without the user knowing. "Fine Dining" allows for the decoy app to be fully customized depending on what is required.

An agent will need to install and run the malicious app on the target PC for it to gather data. It's important to note the standard programs -- which you might use on a daily basis -- are safe so you don't need to worry they are spying on you

The list of allegedly weaponized applications includes:

VLC Player Portable
IrfanView
Notepad++
Skype
Chrome Portable
Firefox Portable
Opera Portable
ClamWin Portable
Kaspersky TDSS Killer Portable
McAfee Stinger Portable
Sophos Virus Removal
Opera Mail
Thunderbird Portable
Foxit Reader
LibreOffice Portable
Prezi
Babel Pad
Iperius Backup
Sandisk Secure Access
U3 Software
2048
LBreakout2
7-Zip Portable
Portable Linux CMD Prompt

The latest version of Notepad++, which is included in the list, patches the DLL hijack security issue that was detailed on the WikiLeaks page. No doubt other software developers will be updating their products in light of the leak in the near future.

11 Comments

Vault 7: The CIA weaponized these popular programs to spy on people

11 Responses to Vault 7: The CIA weaponized these popular programs to spy on people

Recent Headlines

Firefox Nightly expands to Linux on ARM64

How writing zip support for Windows almost cost its creator his job at Microsoft

Apple AirPlay comes to IHG Hotels and Resorts

Millennials are key targets for phishing

Get 'Applied Machine Learning and AI for Engineers' (worth $67.99) for FREE

Best Windows apps this week

The dynamics of modern Windows device management [Q&A]

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE

EndeavourOS ARM discontinued: A huge loss for the Linux community