Skip to main content

Wikileaks: CIA is using computer viruses to frame other countries

Agency source code uses 'obfuscation' to change English in malware into decoy languages

Wikileaks: CIA is using computer viruses to frame other countries

WikiLeaks on Friday released what it claims to be a stolen CIA code that would prevent hacking and virus attacks from being traced back to the spy agency.

This "Marble" source code is used for "obfuscation" by altering the English language text in malware code into decoy languages. WikiLeaks said this tool could be used to throw forensic investigators and anti-virus companies off the CIA's trail when investigating CIA-backed insurgents who are using U.S. produced weapons systems.

WikiLeaks said "Marble" also gives the CIA the ability to play a "forensic attribution double game" because the source code has test examples in languages other than English, including Chinese, Russian, Korean, Arabic and Farsi. This would make the CIA capable of "pretending that the spoken language of the malware creator was not American English, but Chinese, but then showing attempts to conceal the use of Chinese," WikiLeaks said.

WikiLeaks said "Marble" was in use in 2016 and a "1.0" version was released in 2015. WikiLeaks said with this latest release, "thousands of CIA viruses and hacking attacks could now be attributed."

The "Marble" publication of hacked CIA documents is the third in WikiLeaks' "Vault 7" series. The first two publications claimed to reveal how the CIA is capable of hacking various consumer devices.

While the CIA wouldn't say whether the WikiLeaks documents are real, and would not confirm reports that it is investigating any leaks, it warned that any time WikiLeaks publishes something that could hurt the CIA's ability to do its job is a problem.

This article continues at [Washington Examiner] WikiLeaks release shows how CIA could protect itself from being traced to viruses

Back to top