Author Topic: WikiLeaks Reveals Android Hacking Tool Used by the CIA to Steal SMS Messages  (Read 78 times)

0 Members and 1 Guest are viewing this topic.

Offline Quizmaster

  • Flying Nurse
  • Seasonal Competition Team
  • *
  • Posts: 23301
    • Smokey's Security Forums
  • .: Surf Queen
WikiLeaks Reveals Android Hacking Tool Used by the CIA to Steal SMS Messages
14 July 2017, 10:34 am

WikiLeaks has just revealed the details of another CIA hacking tool as part of the Vault 7 saga, confirming that in addition to Windows and Linux systems, the agency was also targeting Android smartphones.

Called HighRise, the tool is essentially an Android malware that can intercept text messages and send them to a CIA server, allowing an operator to easily read any conversation on the compromised device.

“It provides a redirector function for SMS messaging that could be used by a number of IOC tools that use SMS messages for communication between implants and listening posts. HighRise acts as a SMS proxy that provides greater separation between devices in the field (‘targets’) and the listening post (LP) by proxying ‘incoming’ and ‘outgoing’ SMS messages to an internet LP,” WikiLeaks explains.

Specifically, the CIA was using an app called TideCheck to deploy the hacking utility, though it’s worth mentioning that the agency needed to already be in control of the ... (read more)

Source: Softpedia News / Security

>> To obtain the full Softpedia Security News article, click the link in the first post line <<


Except where otherwise stated, all content, graphics, banners and images included © 2006 - 2018 Smokey Services™ -- All rights reserved
Design board graphics, banners and images by DSTM & PseFrank

This site does not store profiling-, tracking-, third-party and/or any other non-essential cookie(s) on client computers and is fully compliant with the EU ePrivacy Directive
Smokey's does not use any Web Analytics/Analysis Service, and also does not use any browser fingerprinting techniques

Smokey's also provides free fully qualified Log / Malware Analysis & Removal Help and System Health Checks