Wikileaks release reveals CIA broke into many popular wireless routers

wikileaks release reveals cia router hacking tool flag
Wikileaks and its cache of CIA documents are making the news again, this time concerning an agency tool that is used to hack into a variety of the most popular Wi-Fi routers. Apparently, the tool allowed the CIA to break into routers and perform a variety of surveillance and other functions for years now, ZDNet reports.

The documents, which could not be immediately verified, are part of an ongoing series of leaks released by the website WikiLeaks.

Dubbed “Cherry Blossom,” the hacking tool was able to attack around 25 routers from a variety of manufacturers in 2012. According to a document titled “Cherry Bomb: Cherry Blossom (CB) User’s Manual,” the tool can essentially be injected into the router’s original firmware and then a new version with CB implanted can be used to upgrade the router.

According to the document:

“As of August 2012, CB-implanted firmware can be built for roughly 25 different devices from 10 different manufacturers (including Asus, Belkin, Buffalo, Dell, Dlink, Linksys, Motorola, Netgear, Senao, and US Robotics), although only 7 devices have undergone the formal FAT procedure … Additionally, the CB implant has been built for a few Motorola WiMax devices under the Roundhouse project.”

CB allowed the CIA to perform a number of functions once a router was compromised, all included under the general category of creating a “Flytrap.” A Flytrap is defined in the document as “a wireless device that has been implanted with CB firmware,” and it can do everything from hiding its presence, to sending a beacon reporting its status and security settings, to committing suicide if it cannot send a beacon.

wikileaks release reveals cia router hacking tool cherry blossom test infrastructure

Once it is up and running, the Flytrap can harvest email addresses and chat users, redirect browsers to whatever site the CIA desires, and more. All of this can be targeted by a user’s email address, geolocation, wireless adapter address, chat usernames, and voice-over-IP (VoIP) phone numbers. Simply put, a router that has been compromised by CB become a fairly powerful tool that allows the CIA to direct a target’s internet usage and gather significant amounts of information.

There are many additional details in the leaked document, and as ZDNet points out there is no indication of whether the CIA is still using Cherry Blossom. Router vulnerabilities are well-documented lately and in a twist of irony, the Federal Trade Commission (FTC) has been active in pushing router manufacturers to improve their security. In the meantime, the best that users can do is make sure that their routers are updated with the latest firmware and then hope that the manufacturers are doing their jobs in making them more secure.


Not just for Lightroom anymore, Loupedeck+ now works with Photoshop

Loupedeck+ can now help photographers edit in Photoshop too, thanks to physical controls for swapping tools, running actions, and more. The photo-editing console expanded to include Photoshop in the list of compatible editing programs.

Lost your router? Here's how to find its IP address to help track it down

Changing the login information for your router isn't always easy, that's why so many have that little card on the back. But in order to use it, you need to know where to go. Here's how to find the IP address of your router.

Fix those internet dead zones by turning an old router into a Wi-Fi repeater

Is there a Wi-Fi dead zone in your home or office? A Wi-Fi repeater can help. Don't buy a new one, though. Here is how to extend Wi-Fi range with another router you have lying around.

These are the best action cameras money can buy

Action cameras are great tools for capturing videos of your everyday activities, whether it's a birthday party or the steepest slope you've ever descended on your snowboard. These are the best money can buy.

With our Steam guide, you can give the gift of gaming this holiday season

The holidays may have passed, but it's always a good time to give the gift of gaming (especially when there's a Steam sale)! Here's our quick guide on how to give a Steam game as a gift.

Forget painting-style transfers, this A.I. creates realistic portraits of fake people

Do these images look computer-generated? Nvidia researchers recently published a paper on a new variation on style transfer artificial intelligence that's able to generate entirely new portraits.

Leaked HP laptop listing reveals entry-level Nvidia MX250 GPU

Alongside powerful graphics cards, Nvidia may have more mobile GPUs to show off at next year's CES show in January. The MX250 has been spotted in a listing for an HP laptop, potentially replacing the entry-level MX150.

ZSpace’s laptop brings education to life with its own 3D technology

The ZSpace laptop wants to overhaul education and training by offering affordable access to 3D mixed reality through a bespoke screen and glasses technology that is already supported by a wide array of applications.

Former Microsoft intern claims Google may have sabotaged Edge browser

Google's Chrome web browser has been able to establish such dominance that Microsoft is abandoning its web rendering engine, switching Edge over to Chromium, but did Google play dirty in an attempt to force Microsoft to make the decision?

ViewSonic’s 1080p gaming monitor lets you experience the action in style

ViewSonic is catering to gamers with its latest monitor, the XG240R. Featuring a 1080p 144Hz panel, RGB lighting, and a fast 1ms response time, you can conquer your opponents and do it in style.

Here’s why you might still be using Wi-Fi after cellular 5G launches

Cellular 5G might be around the corner and promising to deliver lightning fast speeds, but the folks over at the Wi-Fi Alliance have a few reasons why they think you shouldn't dump Wi-Fi just yet.

Pinning websites to your taskbar is as easy as following these quick steps

Would you like to know how to pin a website to the taskbar in Windows 10 in order to use browser links like apps? Whichever browser you're using, it's easier than you might think. Here's how to get it done.

Detangle your desk with a mighty wireless mouse. Here are our six favorites

If you're looking for the best wireless mouse on the market, we've got the list for you!. These six models have something for everyone, whether you're a hardcore gamer or simply looking to ward off carpal tunnel.

Canceling Amazon Prime is easy, and you might get a refund

Don't be intimidated. Learning how to cancel Amazon Prime is easier than you might think. You might even get a partial or full refund on the cost, depending on how much you've used it. Check out our quick-hit guide for doing so.