Names | CIA (real name) Central Intelligence Agency (real name) | |
Country | USA | |
Sponsor | State-sponsored | |
Motivation | Information theft and espionage, Sabotage and destruction | |
First seen | 1947 | |
Description | (Wikipedia) The Central Intelligence Agency is a civilian foreign intelligence service of the federal government of the United States, tasked with gathering, processing, and analyzing national security information from around the world, primarily through the use of human intelligence (HUMINT). As one of the principal members of the United States Intelligence Community (IC), the CIA reports to the Director of National Intelligence and is primarily focused on providing intelligence for the President and Cabinet of the United States. (Yahoo) In September 2018, Bolton announced that Trump had signed a presidential directive easing Obama-era rules governing military cyber operations. Although the administration disclosed the existence of that directive — known as National Security Presidential Memorandum 13 — the underlying rules of engagement for military cyber operations remain secret. The administration also kept secret the CIA finding, which gave the agency its new authorities. Former officials declined to speak in detail about cyber operations the CIA has carried out as a result of the finding, but they said the agency has already conducted covert hack-and-dump actions aimed at both Iran and Russia. This more permissive environment may also intensify concerns about the CIA’s ability to secure its hacking arsenal. In 2017, WikiLeaks published a large cache of CIA hacking tools known as “Vault 7” (see [Vault 7/8].) The leak, which a partially declassified CIA assessment called “the largest data loss in CIA history,” was made possible by “woefully lax” security practices at the CIA’s top hacker unit, the assessment said. The CIA was also one of the parties involved in Operation Olympic Games where Stuxnet was deployed in Iran. While not strictly related to APT activity and not just involving the CIA, the following publication in 3 parts sheds more light: 1. <https://foreignpolicy.com/2020/12/21/china-stolen-us-data-exposed-cia-operatives-spy-networks/> 2. <https://foreignpolicy.com/2020/12/22/china-us-data-intelligence-cybersecurity-xi-jinping/> 3. <https://foreignpolicy.com/2020/12/23/china-tech-giants-process-stolen-data-spy-agencies/> The CIA has 2 subgroups: 1. Subgroup: Longhorn, The Lamberts. 2. Subgroup: [Unnamed group USA]. | |
Observed | Countries: Worldwide. | |
Tools used | ||
Operations performed | Sep 2018 | The Central Intelligence Agency has conducted a series of covert cyber operations against Iran and other targets since winning a secret victory in 2018 when President Trump signed what amounts to a sweeping authorization for such activities, according to former U.S. officials with direct knowledge of the matter. <https://news.yahoo.com/secret-trump-order-gives-cia-more-powers-to-launch-cyberattacks-090015219.html> Also see Subgroup: [Unnamed group USA]. |
Counter operations | Jul 2014 | Germany expels CIA official in US spy row <https://www.bbc.com/news/world-europe-28243933> |
Information | <https://www.washingtonpost.com/national-security/elite-cia-unit-that-developed-hacking-tools-failed-to-secure-its-own-systems-allowing-massive-leak-an-internal-report-found/2020/06/15/502e3456-ae9d-11ea-8f56-63f38c990077_story.html> <https://www.washingtonpost.com/national-security/swiss-report-reveals-new-details-on-cia-spying-operation/2020/11/10/c93ca7fc-2386-11eb-8672-c281c7a2c96e_story.html> <https://en.wikipedia.org/wiki/Central_Intelligence_Agency> |
Last change to this card: 07 January 2021
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |