- Hasan Minhaj explains why your internet sucks in ‘Patriot Act’ episode, puts it on DVD Monday 8:41 PM
- Hackers got control of Dylan Sprouse’s Twitter account, posted offensive content Monday 7:38 PM
- Twitch is suing the trolls who flooded the platform with porn and Christchurch shooting footage Monday 6:55 PM
- Cat filter turns Pakistani politicians’ press conference into frisky business Monday 6:12 PM
- Couple calls for boycott of dog walker app Wag! after their dog was abducted Monday 5:07 PM
- Trump gets banned from SeekingArrangement because he’s not a ‘real sugar daddy’ Monday 4:17 PM
- InfoWars accidentally sent child porn to lawyers representing Sandy Hook parents Monday 4:12 PM
- Sticker warns men changing diapers about ‘feminization of the American male’ Monday 4:10 PM
- The genius way Genius caught Google allegedly stealing lyrics Monday 3:03 PM
- This bubble tea challenge is a balancing act Monday 2:15 PM
- Laura Dern gifts the internet with more ‘Big Little Lies’ memes Monday 1:54 PM
- The Stonks meme is back—and it’s weirder than ever Monday 1:27 PM
- Video shows officer threatening to shoot pregnant Black woman in front of her children Monday 1:12 PM
- Netflix’s ‘Leila’ tells a familiar dystopian horror story Monday 12:37 PM
- O.J. Simpson says in Twitter video that he never slept with Kris Jenner Monday 12:06 PM
WikiLeaks sparks conspiracy theory that CIA hacked the DNC, not Russia
Photo via 360b/Shutterstock, Inc. (Licensed)
Well, that didn’t take long.
Within hours of WikiLeaks publishing thousands of CIA documents on Tuesday, pro-Russian websites began pushing a new theory that absolves Russia of the cyberattacks that upended the Democratic Party last summer.
Among files that reveal how the Central Intelligence Agency is able to hack smartphones and internet-connected TVs, WikiLeaks disclosed that a subdivision of the CIA, known as “Umbrage,” maintains a catalog of malware derived from various sources, including foreign cyberespionage groups. This library of exploits may be used by CIA to “provide functional code snippets that can be rapidly combined into custom solutions,” one of the WikiLeaks-release documents says.
In other words—for the sake of expediency—the agency uses existing code from malicious tools discovered “in the wild” to piece together its own custom malware rather than create every tool it uses from scratch.
Umbrage is the first CIA operation highlighted by WikiLeaks in its press release under a section describing “examples” of “around 500 different projects” uncovered in the leak. (Only a fraction of the projects are disclosed in the first release, which WikiLeaks has dubbed “Year Zero.”)
WikiLeaks tweeted that this collection of malware must be used by the CIA to conduct “false flag” attacks because the borrowed code would contain “fingerprints” pointing forensic investigators towards the code’s creator rather than the CIA itself.
— WikiLeaks (@wikileaks) March 7, 2017
All of this immediately gave rise to a new conspiracy theory: the CIA must have hacked the Democratic National Committee itself and blamed Russia. The website Sputnik International, which is owned and operated by the Russian government, was happy to entertain this theory, as was the “citizen journalism” website Russia Insider, which asserted that any evidence of hacking that points to Russia “must now be dismissed as either fake or meaningless.”
Milo Yiannopoulos, the former Breitbart editor who resigned last month after a video circulated in which he appeared to endorse sexual relations with 13-year-old boys, also began pushing the theory on his personal website under the headline: “Did the CIA deliberately mimic Russian hacking protocols?”
(Disclosure: Yiannopoulos was the founder of the Kernel, a publication the Daily Dot acquired in 2014.)
Others joined suit on Twitter:
CIA uses techniques to make cyber attacks look like they originated from enemy state. It turns DNC/Russia hack allegation by CIA into a JOKE
— Kim Dotcom (@KimDotcom) March 7, 2017
Russia said they hacked nothing. Assange said Russia didn't provide the emails. Now we learn CIA can make a hack "look" like Russia.
— Bill Mitchell (@mitchellvii) March 7, 2017
So people be telling me that Russia hacked Clinton for Trump. But now I see it was actually the CIA, and its all a setup. #Vault7
— Andre (@Potatomed) March 7, 2017
While the “component library” of the CIA files note that the code is “borrowed from in-the-wild malware”—meaning malware that has already been detected or exposed in some fashion—WikiLeaks described the tools as “attack techniques ‘stolen’ from malware produced in other states including the Russian Federation.” WikiLeaks did not highlight in its press release any other countries from which the Umbrage malware supposedly originates.
Of course, there’s nothing particularly controversial about the CIA accumulating malware. Prior to the publication of the so-called “Vault 7” files, it was widely accepted that the CIA—like the National Security Agency—frequently uses hacking tools, including those not created by American coders. Any number of cybersecurity experts familiar with attacks by “state actors” would have gladly admitted as much, even before the WikiLeaks release.
While reporting in December that a U.S. cybersecurity firm was “highly confident” that Russia was behind the DNC attack, the Daily Dot noted that, “Attribution with regards to cyberattacks is difficult and often problematic,” adding: “Malware can be stolen; it can be re-packaged and sold on the black market; and it can be used as well to throw off investigators.”
That these new CIA documents help illustrate how nebulous cyberthreat attribution can be is a good thing. But ultimately, they offer no proof that the CIA had any hand in hacking the Democrats.
Dell Cameron was a reporter at the Daily Dot who covered security and politics. In 2015, he revealed the existence of an American hacker on the U.S. government's terrorist watchlist. He is a co-author of the Sabu Files, an award-nominated investigation into the FBI's use of cyber-informants. He became a staff writer at Gizmodo in 2017.