Slashdot Mirror

An anonymous reader quotes a report from Motherboard: WikiLeaks published new alleged material from the CIA on Thursday, releasing source code from a tool called Hive, which allows its operators to control malware it installed on different devices. WikiLeaks previously released documentation pertaining to the tool, but this is the first time WikiLeaks has released extensive source code for any CIA spying tool. This release is the first in what WikiLeaks founder Julian Assange says is a new series, Vault 8, that will release the code from the CIA hacking tools revealed as part of Vault 7. "This publication will enable investigative journalists, forensic experts and the general public to better identify and understand covert CIA infrastructure components," WikiLeaks said in its press release for Vault 8. "Hive solves a critical problem for the malware operators at the CIA. Even the most sophisticated malware implant on a target computer is useless if there is no way for it to communicate with its operators in a secure manner that does not draw attention." In its release, WikiLeaks said that materials published as part of Vault 8 will "not contain zero-days or similar security vulnerabilities which could be repurposed by others."

Documents published by Wikileaks reveal a secret project to siphon out data through its technical liaison service, dating back to 2009. The Verge reports: The program, called ExpressLane, is designed to be deployed alongside a biometric collection system that the CIA provides to partner agencies. In theory, those partners are agreeing to provide the CIA with access to specific biometric data -- but on the off-chance those partners are holding out on them, ExpressLane gives the agency a way to take it without anyone knowing. ExpressLane masquerades as a software update, delivered in-person by CIA technicians -- but the documents make clear that the program itself will remain unchanged. Instead, the program siphons the system's data to a thumb drive, where agents can examine it to see if there's anything the partner system is holding back. If the partners refuse the phony update, there's a hidden kill-switch that lets agents shut down the entire system after a set period of time, requiring an in-person visit to restore the system.

An anonymous reader quotes a report from The Stack: WikiLeaks has released a new set of documents in the CIA Vault 7 leak, outlining the "Dumbo" hacking tool which allows control of webcams and microphones. The release explains that the tool is capable of completely suspending processes on webcams and corrupting video recordings. Dumbo's is tasked specifically with gaining and exploiting physical access to target computers used in CIA field operations, the release notes. According to WikiLeaks, the tool allows for the identification, control and manipulation of monitoring and detection systems, such as webcams and microphones, running the Microsoft Windows operating system. The technology first identifies all installed devices, whether they are connected locally, wirelessly, or across wired networks. Once Dumbo has detected all of these devices, it identifies all the related processes, which may include recording, monitoring or detection of video, audio and network streams. These operations can then be suspended by the operator. "By deleting or manipulating recordings the operator is aided in creating fake or destroying actual evidence of the intrusion operation," the release added. Dumbo does require direct access to the target computer and is run from a USB stick. The release states that it supports 32bit Windows XP, Windows Vista, and newer versions of Windows operating system. However, 64bit Windows XP and Windows versions prior to XP are not supported.

An anonymous reader quotes a report from The Hacker News: WikiLeaks has today published the 15th batch of its ongoing Vault 7 leak, this time detailing two alleged CIA implants that allowed the agency to intercept and exfiltrate SSH (Secure Shell) credentials from targeted Windows and Linux operating systems using different attack vectors. Secure Shell or SSH is a cryptographic network protocol used for remote login to machines and servers securely over an unsecured network. Dubbed BothanSpy -- implant for Microsoft Windows Xshell client, and Gyrfalcon -- targets the OpenSSH client on various distributions of Linux OS, including CentOS, Debian, RHEL (Red Hat), openSUSE and Ubuntu. Both implants steal user credentials for all active SSH sessions and then sends them to a CIA-controlled server.

WikiLeaks has published the documentation manual for an alleged CIA tool that can track users of Wi-Fi-capable Windows devices based on the Extended Service Set (ESS) data of nearby Wi-Fi networks. According to the tool's 42-page manual, the tool's name is ELSA. Bleeping Computer has an image embedded in its report that explains how the tool works. There are six steps that summarize the ELSA operation. Bleeping Computer reports: Step 1: CIA operative configures ELSA implant (malware) based on a target's environment. This is done using a tool called the "PATCHER wizard," which generates the ELSA payload, a simple DLL file.
Step 2: CIA operative deploys ELSA implant on target's Wi-Fi-enabled Windows machine. Because ELSA is an implant (malware), the CIA operator will likely have to use other CIA hacking tools and exploits to place the malware on a victim's PC.
Step 3: The implant begins collecting Wi-Fi access point information based on the schedule set by the operator. Data collection can happen even if the user is disconnected from a Wi-Fi network.
Step 4: When the target user connects to the Internet, ELSA will take the collected Wi-Fi data and query a third-party database for geolocation information.
Step 5: The CIA operative connects to the target's computer and fetches the ELSA log. This is done via the tools that allowed the operator to place ELSA on his system, or through other tools.
Step 6: The operator decrypts the log and performs further analysis on their target. Optionally, he can use the collected WiFi data to query alternate EES geo-location databases, if he feels they provide a better accuracy.

An anonymous reader writes: "WikiLeaks dumped today the manuals of several hacking utilities part of Brutal Kangaroo, a CIA malware toolkit for hacking into air-gapped (offline) networks using tainted USB thumb drives," reports Bleeping Computer. The CIA uses these tools as part of a very complex attack process, that allows CIA operatives to infect offline, air-gapped networks. The first stage of these attacks start with the infection of a "primary host," an internet-connected computer at a targeted company. Malware on this primary host automatically infects all USB thumb drives inserted into the machine. If this thumb drive is connected to computers on an air-gapped network, a second malware is planted on these devices. This malware is so advanced, that it can even create a network of hacked air-gapped PCs that talk to each other and exchange commands. To infect the air-gapped computers, the CIA malware uses LNK (shortcut) files placed on the USB thumb drive. Once the user opens and views the content of the thumb drive in Windows Explorer, his air-gapped PC is infected without any other interaction.

An anonymous reader writes: After a two-week hiatus, WikiLeaks dumped new files as part of the Vault 7 series -- documents about a CIA tool named CherryBlossom, a multi-purpose framework developed for hacking hundreds of home router models. The tool is by far one of the most sophisticated CIA malware frameworks in the CIA's possession. The purpose of CherryBlossom is to allow operatives to interact and control SOHO routers on the victim's network. The tool can sniff, log, and redirect the user's Internet traffic, open a VPN to the victim's local network, execute actions based on predefined rules, alert operators when the victim becomes active, and more. A 24-page document included with the CherryBlossom docs lists over 200 router models from 21 vendors that the CIA could hack. The biggest names on this list are Apple, D-Link, Belkin, Aironet (Cisco), Linksys, and Motorola.

An anonymous reader quotes a report from Bleeping Computer: "After taking last week off, WikiLeaks came back today and released documentation on another CIA cyber weapon. Codenamed Pandemic, this is a tool that targets computers with shared folders, from where users download files via SMB. The way Pandemic works is quite ingenious and original, and something not seen before in any other malware strain. According to a leaked CIA manual, Pandemic is installed on target machines as a "file system filter driver." This driver's function is to listen to SMB traffic and detect attempts from other users to download shared files from the infected computer. Pandemic will intercept this SMB request and answer on behalf of the infected computer. Instead of the legitimate file, Pandemic will deliver a malware-infected file instead. According to the CIA manual, Pandemic can replace up to 20 legitimate files at a time, with a maximum size of 800MB per file, and only takes 15 seconds to install. Support is included for replacing both 32-bit and 64-bit files. The tool was specifically developed to replace executable files, especially those hosted on enterprise networks via shared folders. The role of this cyber weapon is to infect corporate file sharing servers and deliver a malicious executable to other persons on the network, hence the tool's name of Pandemic.

schwit1 quotes a report from Zero Hedge: As the latest installment of it's "Vault 7" series, WikiLeaks has just dropped a user manual describing a CIA project known as "Scribbles" (a.k.a. the "Snowden Stopper"), a piece of software purportedly designed to allow the embedding of "web beacon" tags into documents "likely to be stolen." The web beacon tags are apparently able to collect information about an end user of a document and relay that information back to the beacon's creator without being detected. Per WikiLeaks' press release. But, the "Scribbles" user guide notes there is just one small problem with the program: it only works with Microsoft Office products. So, if end users use other programs such as OpenOffice of LibreOffice then the CIA's watermarks become visible to the end user and their cover is blown.

An anonymous reader quotes a report from The Next Web: In case you haven't had your dose of paranoia fuel today, WikiLeaks released new information concerning a CIA malware program called "Grasshopper," that specifically targets Windows. The Grasshopper framework was (is?) allegedly used by the CIA to make custom malware payloads. According to the user guide: "Grasshopper is a software tool used to build custom installers for target computers running Microsoft Windows operating systems." Grasshopper is designed to detect the OS and protection on any Windows computer on which it's deployed, and it can escape detection by anti-malware software. If that was enough for you to put your computer in stasis, brace yourself for a doozy: Grasshopper reinstalls itself every 22 hours, even if you have Windows Update disabled. As if this wasn't alarming enough, the Grasshopper user guide even states upfront that Grasshopper uses bits from a toolkit taken from Russian organized crime.

Free software Notepad++ (released under the GNU General Public License) received a new update this week which was announced under the headline "Fix CIA Hacking Notepad++ Issue". The CIA documents in WikiLeaks' 'Vault 7' included a "Notepad++ DLL Hijack" document which affected the popular Windows editor for text and source code. "It's not a vulnerability/security issue in Notepad++, but for remedying this issue, from this release (v7.3.3) forward, notepad++.exe checks the certificate validation in scilexer.dll before loading it," reads the announcement. From the Notepad++ web site: If the certificate is missing or invalid, then it just won't be loaded, and Notepad++ will fail to launch. Checking the certificate of DLL makes it harder to hack.

Note that once users' PCs are compromised, the hackers can do anything on the PCs. This solution only prevents from Notepad++ loading a CIA homemade DLL. It doesn't prevent your original notepad++.exe from being replaced by modified notepad++.exe while the CIA is controlling your PC.
The update also includes "a lot of enhancements and bug-fixes," and if no critical issues are found, "Auto-updater will be triggered in few days."

Earlier today, WikiLeaks unleashed a cache of thousands of files it calls "Year Zero," which is part one of the release associated with "Vault 7." Since there are over 8,000 pages in this release, it will take some time for journalists to comb through the release. The Independent has highlighted six of the "biggest secrets and pieces of information yet to emerge from the huge dump" in their report. 1) The CIA has the ability to break into Android and iPhone handsets, and all kinds of computers. The U.S. intelligence agency has been involved in a concerted effort to write various kinds of malware to spy on just about every piece of electronic equipment that people use. That includes iPhones, Androids and computers running Windows, macOS and Linux.
2) Doing so would make apps like Signal, Telegram and WhatsApp entirely insecure. Encrypted messaging apps are only as secure as the devices they are used on -- if an operating system is compromised, then the messages can be read before they are encrypted and sent to the other user(s).
3) The CIA could use smart TVs to listen in on conversations that happened around them. One of the most eye-catching programs detailed in the documents is "Weeping Angel." That allows intelligence agencies to install special software that allows TVs to be turned into listening devices -- so that even when they appear to be switched off, they're actually on.
4) The agency explored hacking into cars and crashing them, allowing "nearly undetectable assassinations." Many of the documents reference tools that appear to have dangerous and unknown uses. One file, for instance, shows that the CIA was looking into ways of remotely controlling cars and vans by hacking into them.
5) The CIA hid vulnerabilities that could be used by hackers from other countries or governments. Such bugs were found in the biggest consumer electronics in the world, including phones and computers made Apple, Google and Microsoft. But those companies didn't get the chance to fix those exploits because the agency kept them secret in order to keep using them, the documents suggest.
6) More information is coming. The documents have still not been looked through entirely. There are 8,378 pages of files, some of which have already been analyzed but many of which haven't. And that's not to mention the other sets of documents that are coming. The "Year Zero" leaks are just the first in a series of "Vault 7" dumps, Julian Assange said. You can view the Vault 7 Part 1 'Year Zero' release here via WikiLeaks. The Intercept has an in-depth report focusing on how the "CIA Could Turn Smart TVs Into Listening Devices."

The New York Times is reporting that President Obama has commuted Chelsea Manning's sentence. What this translates to is a reduced sentence for Manning, from 35 years to just over seven years. Since Manning has already served a majority of those years, she is due to be released from federal custody on May 17th. The Verge reports: While serving as an intelligence analyst in Iraq, Manning leaked more than 700,000 documents to Wikileaks, including video of a 2007 airstrike in Baghdad that killed two Reuters employees. In 2013, Manning was sentenced to 35 years in prison for her role in the leak and has been held at the U.S. Disciplinary Barracks at Fort Leavenworth for the past three years. Julian Assange, who has long been sought by U.S. and EU authorities for extradition on Swedish rape charges, had previously pledged to surrender himself to U.S. authorities if Manning was pardoned. Born Bradley Manning, Chelsea announced her gender transition the day after the verdict was handed down. "I am Chelsea Manning. I am a female," she said in a statement. "Given the way that I feel, and have felt since childhood, I want to begin hormone therapy as soon as possible." Obtaining the resulting medical treatments was extremely difficult for Manning, and was the subject of significant and sustained activism. After a lawsuit, Manning was approved for hormone therapy in 2015. In September 2016, she launched a hunger strike, demanding access to gender reassignment surgery; the military complied five days later.

"President Obama has a political moment to pardon Manning & Snowden," WikiLeaks tweeted on Friday, adding "If not, he hands a Trump presidency the freedom to take his prize." And a new online petition is also calling for a pardon of WikiLeaks founder Julian Assange, saying Assange is "a hero and must be honoured as such," attracting over 10,000 supporters in just a few days. An anonymous reader writes: Monday WikiLeaks also announced, "irrespective of the outcome of the 2016 U.S. Presidential election, the real victor is the U.S. public which is better informed as a result of our work." Addressing complaints that they specifically targeted Hillary Clinton's campaign, the group said "To date, we have not received information on Donald Trump's campaign, or Jill Stein's campaign, or Gary Johnson's campaign or any of the other candidates that fulfills our stated editorial criteria." But they also objected to the way their supporters were portrayed during the U.S. election, arguing that Trump and others "were painted with a broad, red brush. The Clinton campaign, when they were not spreading obvious untruths, pointed to unnamed sources or to speculative and vague statements from the intelligence community to suggest a nefarious allegiance with Russia. The campaign was unable to invoke evidence about our publications -- because none exists."
Thursday a WikiLeaks representative expressed surprise that, despite the end of the U.S. election, Julian Assange's internet connection in the Ecuadorean Embassy in London has not yet been restored.

New submitter troublemaker_23 writes: Eric Schmidt, the chairman of Google's parent company Alphabet, submitted a detailed draft to a key Clinton aide on April 15, 2014, outlining his ideas for a possible run for the presidency and stressing that "The key is the development of a single record for a voter that aggregates all that is known about them." The ideas, in an email released by the whistleblower website WikiLeaks, were sent to Cheryl Mills, former deputy White House counsel to Bill Clinton. Mills forwarded it to Clinton campaign chairman John Podesta, campaign manager Robby Mook and Barack Obama's 2012 campaign manager David Plouffe. The email is one of a trove from Podesta's gmail account that was obtained by WikiLeaks. About two weeks prior to this, Podesta wrote to Mook that he had met Schmidt and that he (Schmidt) was keen to be the "top outside adviser." In the April 15, 2014 email, Schmidt emphasized that what he was putting forward was a draft, writing, "Here are some comments and observations based on what we saw in the 2012 campaign. If we get started soon, we will be in a very strong position to execute well for 2016." It was titled "Notes for a 2016 Democratic campaign." He divided his comments into categories such as size, structure and timing; location; the pieces of a campaign; the rules; and what he called the key things. With regard to size, structure and timing, Schmidt wrote: "Let's assume a total budget of about US$1.5 billion, with more than 5000 paid employees and million(s) of volunteers. The entire start-up ceases operation four days after 8 November 2016." As to location, he did not like the idea of using Washington DC as a base and was keen on low-paid workers. "The campaign headquarters will have about a thousand people, mostly young and hard-working and enthusiastic. It's important to have a very large hiring pool (such as Chicago or NYC) from which to choose enthusiastic, smart and low-paid permanent employees," he wrote. "DC is a poor choice as it's full of distractions and interruptions. Moving the location from DC elsewhere guarantees visitors have taken the time to travel and to help."

New submitter troublemaker_23 writes: Eric Schmidt, the chairman of Google's parent company Alphabet, submitted a detailed draft to a key Clinton aide on April 15, 2014, outlining his ideas for a possible run for the presidency and stressing that "The key is the development of a single record for a voter that aggregates all that is known about them." The ideas, in an email released by the whistleblower website WikiLeaks, were sent to Cheryl Mills, former deputy White House counsel to Bill Clinton. Mills forwarded it to Clinton campaign chairman John Podesta, campaign manager Robby Mook and Barack Obama's 2012 campaign manager David Plouffe. The email is one of a trove from Podesta's gmail account that was obtained by WikiLeaks. About two weeks prior to this, Podesta wrote to Mook that he had met Schmidt and that he (Schmidt) was keen to be the "top outside adviser." In the April 15, 2014 email, Schmidt emphasized that what he was putting forward was a draft, writing, "Here are some comments and observations based on what we saw in the 2012 campaign. If we get started soon, we will be in a very strong position to execute well for 2016." It was titled "Notes for a 2016 Democratic campaign." He divided his comments into categories such as size, structure and timing; location; the pieces of a campaign; the rules; and what he called the key things. With regard to size, structure and timing, Schmidt wrote: "Let's assume a total budget of about US$1.5 billion, with more than 5000 paid employees and million(s) of volunteers. The entire start-up ceases operation four days after 8 November 2016." As to location, he did not like the idea of using Washington DC as a base and was keen on low-paid workers. "The campaign headquarters will have about a thousand people, mostly young and hard-working and enthusiastic. It's important to have a very large hiring pool (such as Chicago or NYC) from which to choose enthusiastic, smart and low-paid permanent employees," he wrote. "DC is a poor choice as it's full of distractions and interruptions. Moving the location from DC elsewhere guarantees visitors have taken the time to travel and to help."

"Please know that Apple will continue its work with law enforcement," reads an email from Apple's vice president of Environment, Policy and Social Initiatives, who reports directly to CEO Tim Cook, according to new documents this week on WikiLeaks. An anonymous reader writes: In the email the Apple executive writes "we work closely with authorities to comply with legal requests for data that have helped solve complex crimes. Thousands of times every month, we give governments information about Apple customers and devices, in response to warrants and other forms of legal process. We have a team that responds to those requests 24 hours a day." The email was addressed to Clinton campaign chairman John Podesta.

But the context is missing, and could show a larger attempt to soften Hillary Clinton's position on encryption. While Jackson writes that at Apple, "We share law enforcement's concerns about the threat to citizens," she later writes "Strong encryption does not eliminate Apple's ability to give law enforcement meta-data or any of a number of other very useful categories of data."
The email also compliments Clinton for her "principled and nuanced stance" on encryption in a December debate against Bernie Sanders. Clinton had said "maybe the backdoor is the wrong door, and I understand what Apple and others are saying about that. But I also understand, when a law enforcement official charged with the responsibility of preventing attack...well, if we can't know what someone is planning, we are going to have to rely on the neighbor... I just think there's got to be a way, and I would hope that our tech companies would work with government to figure that out."

WikiLeaks has been releasing thousands of emails over the past couple of weeks belonging to Hillary Clinton's campaign chair John Podesta. One of the more interesting tidbits revealed from the email dump was the list of potential running mates considered by Clinton's campaign. The Verge reports: Clinton's vice presidential candidates, while not altogether surprising, include some vaguely interesting choices like Bill and Melinda Gates, Apple CEO Tim Cook, and General Motors CEO Mary Barra. In the mail, Podesta says he has organized the list into "rough food groups," one of which includes all the people mentioned above. Xerox CEO Ursula Burns and Starbucks CEO Howard Shultz are also in this "food group," along with Michael Bloomberg. With just under 40 names on the list, it's not immediately obvious how close any of these people came to actually being asked to take on the role (Tim Kaine is on the list).

An anonymous reader writes from a report via Gizmodo: For the past several days, WikiLeaks has been publishing thousands of emails belonging to Clinton campaign chairman John Podesta -- and the leaks are starting to cause some serious damage. Gizmodo reports: "Many of the leaked emails contained contact info, cell phone numbers, and account data, none of which was redacted by Wikileaks before being posted. With this information accessible to anyone with the time and energy to read through it all, users on 4chan's /pol/ (politically incorrect) board were able to gain access to Podesta's Twitter account, tweeting a message in support of Trump. Imageboard posters also stumbled on an email containing Podesta's Apple ID -- and appear to have exploited it. 'iPad/iPhone info and data wiped out,' a post on Endchan claimed, show screenshots of what seems to be the hacker gaining access to Find My iPhone using Podesta's credentials. If Podesta's Apple ID was compromised, it stands to reason that his iCloud account was similarly vulnerable. And sure enough, Redditor's on r/The_Donald claim Podesta's iCloud data was downloaded. A hacker known as CyberZeist also appears to have uncovered the passwords to dozens of senators' email addresses, as well as social security numbers and credit card info for many Democrats including Vice President Joe Biden, Senate Minority Leader Harry Reid, House Minority Leader Nancy Pelosi, and acting Chair of the DNC Donna Brazile. The information was posted to pastebin.

An anonymous reader quotes a report from Gizmodo: The former lead singer of Blink 182, Tom DeLonge, has publicly admitted to his obsession with UFOs -- but that still doesn't explain why he was sending two cryptic messages about alien spacecrafts to Hillary Clinton's campaign chairman John Podesta, as the Wall Street Journal reported earlier today. The former rockstar's UFO emails became public in the latest Wikleaks dump, published earlier this month. DeLonge, who is best known for his shitty guitar riffs and vocals in songs like "What's My Age Again," emailed Podesta at least twice from his personal account, urging him to meet in person so he could introduce Podesta to high-level officials (presumably with info about UFOs). Here's a small taste of one of the messages: "I would like to bring two very 'important' people out to meet you in DC. I think you will find them very interesting, as they were principal leadership relating to our sensitive topic. Both were in charge of most fragile divisions, as it relates to Classified Science and DOD topics. Other words, these are A-Level officials. Worth our time, and as well the investment to bring all the way out to you. I just need 2 hours from you." In another email, DeLonge said he's been working with someone named General McCasland, and explained some of the General's public comments. The email is rather strange, given that there's no specific request made or really any context at all for the message: "He mentioned he's a 'skeptic,' he's not.... He just has to say that out loud, but he is very, very aware -- as he was in charge of all of the stuff. When Roswell crashed, they shipped it to the laboratory at Wright Patterson Air Force Base. General McCasland was in charge of that exact laboratory up to a couple years ago." It's unclear if Podesta ever responded to the messages, but he has shown interest in UFOs in the past. When he stepped down from his role as a senior advisor to President Barack Obama, Podesta tweeted, "Finally, my biggest failure of 2014: Once again not securing the #disclosure of the UFO files. #thetruthisstilloutthere cc: @NYTimesDowd." The famous tweet now appears under the name of Obama's new senior advisor Brian Deese.

An anonymous reader quotes a report from Gizmodo: The former lead singer of Blink 182, Tom DeLonge, has publicly admitted to his obsession with UFOs -- but that still doesn't explain why he was sending two cryptic messages about alien spacecrafts to Hillary Clinton's campaign chairman John Podesta, as the Wall Street Journal reported earlier today. The former rockstar's UFO emails became public in the latest Wikleaks dump, published earlier this month. DeLonge, who is best known for his shitty guitar riffs and vocals in songs like "What's My Age Again," emailed Podesta at least twice from his personal account, urging him to meet in person so he could introduce Podesta to high-level officials (presumably with info about UFOs). Here's a small taste of one of the messages: "I would like to bring two very 'important' people out to meet you in DC. I think you will find them very interesting, as they were principal leadership relating to our sensitive topic. Both were in charge of most fragile divisions, as it relates to Classified Science and DOD topics. Other words, these are A-Level officials. Worth our time, and as well the investment to bring all the way out to you. I just need 2 hours from you." In another email, DeLonge said he's been working with someone named General McCasland, and explained some of the General's public comments. The email is rather strange, given that there's no specific request made or really any context at all for the message: "He mentioned he's a 'skeptic,' he's not.... He just has to say that out loud, but he is very, very aware -- as he was in charge of all of the stuff. When Roswell crashed, they shipped it to the laboratory at Wright Patterson Air Force Base. General McCasland was in charge of that exact laboratory up to a couple years ago." It's unclear if Podesta ever responded to the messages, but he has shown interest in UFOs in the past. When he stepped down from his role as a senior advisor to President Barack Obama, Podesta tweeted, "Finally, my biggest failure of 2014: Once again not securing the #disclosure of the UFO files. #thetruthisstilloutthere cc: @NYTimesDowd." The famous tweet now appears under the name of Obama's new senior advisor Brian Deese.

An anonymous Slashdot reader quotes the Independent: Wikileaks has dumped thousands of emails from Hillary Clinton campaign chair John Podesta, which includes apparent excerpts from Ms Clinton's paid, closed-door speeches to Wall Street executives after leaving her position as Secretary of State. In the excerpts, flagged in a 25 January email, Ms Clinton apparently suggested that Wall Street insiders were best qualified to regulate the banking industry and also included her apparent admission of the need for money from banking executives for political fundraising...

"Earlier today, the US government removed any reasonable doubt that the Kremlin has weaponized WikiLeaks to meddle in our election and benefit Donald Trump's candidacy," said Clinton campaign spokesperson Glen Caplin. "We are not going to confirm the authenticity of stolen documents released by Julian Assange who has made no secret of his desire to damage Hillary Clinton." Slashdot reader schwit1 quotes the Daily Mail's article about what's coming up next: WikiLeaks founder Julian Assange promised to release information on subjects including the U.S. election and Google [and] warned that the so called 'October Surprise' will expose Google. Assange did not reveal what type of information would be leaked about the tech giant, but his 2014 book could provide a clue. In it, he wrote: "(Eric) Schmidt's tenure as CEO saw Google integrate with the shadiest of U.S. power structures..."

Reader schwit1 writes: The state department's release of Hillary emails may be over, but that of Wikileaks is just starting. Moments ago, Julian Assange's whistleblower organization released over 19,000 emails and more than 8,000 attachments from the Democratic National Committee. This is part one of their new Hillary Leaks series, Wikileaks said in press release.:"Today, Friday 22 July 2016 at 10:30am EDT, WikiLeaks releases 19,252 emails and 8,034 attachments from the top of the US Democratic National Committee -- part one of our new Hillary Leaks series. The leaks come from the accounts of seven key figures in the DNC: Communications Director Luis Miranda (10770 emails), National Finance Director Jordon Kaplan (3797 emails), Finance Chief of Staff Scott Comer (3095 emails), Finance Director of Data & Strategic Initiatives Daniel Parrish (1472 emails), Finance Director Allen Zachary (1611 emails), Senior Advisor Andrew Wright (938 emails) and Northern California Finance Director Robert (Erik) Stowe (751 emails). The emails cover the period from January last year until 25 May this year."
The emails released Friday cover a period from January 2015 to May 2016. They purportedly come from the accounts of seven key DNC staffers: Andrew Wright, Jordon Kaplan, Scott Comer, Luis Miranda, Robert Stowe, Daniel Parrish and Allen Zachary.

A quick scan of the emails focus on Bernie Sanders and dealing with the fallout of many Democrats opposing Hillary Clinton and calling the system "rigged." Many of the emails exchanged between top DNC officials are simply the text of news articles concerning how establishment democrats can "deal" with the insurgent left-winger. Update: 07/22 17:41 GMT by M :Guccifer 2.0 has claimed responsibility for the leak.

An anonymous reader quotes a report from RT: Despite a massive cyberattack on its website, WikiLeaks has published the first batch of nearly 300,000 emails from the Turkish ruling AKP party's internal server and thousands of attached files in response to the Ankara government's widespread post-coup purges. Some 294,548 emails pertaining to Turkish president Recep Tayyip Erdogan's Justice and Development Party (AKP) were made public on Tuesday at 11:00pm Ankara time. WikiLeaks says that the release of almost 300,000 email bodies together with several thousand attached files, is just part one in the series and encompasses 762 mailboxes beginning with 'A' through to 'I.' All emails are attributed to "akparti.org.tr," the primary domain of the main political force in the country, and cover a period from 2010 up until July 6, 2016, just a week before the failed military coup. The NGO also revealed that one of the emails contained an Excel database of the cell phone numbers of AKP deputies. Prior to the release WikiLeaks suffered a "sustained attack" as it warned that Turkish government entities might try to interfere with the publication of the AKP material. The attacks are still continuing and users are experiencing difficulties in accessing the material. WikiLeaks reassured the public that they are "winning" the battle. A few hours after the release, WikiLeaks tweeted a screenshot showing the database to be blocked in Turkey, claiming that Ankara "ordered [the release] to be blocked nationwide." More than 200 people have died and over 1,400 injured from the attempted coup. Thousands of people have also been detained and/or lost their posts across the judiciary, military, interior ministry and civil service sectors. The Turkish president Erdogan is blaming the U.S.-based cleric Fethullah Gulen for orchestrating the attempted coup.

itwbennett writes: Since June, researchers have found and reported several dozen serious flaws in antivirus products from vendors such as Kaspersky Lab, ESET, Avast, AVG Technologies, Intel Security (formerly McAfee) and Malwarebytes. Many of those vulnerabilities would have allowed attackers to remotely execute malicious code on computers, to abuse the functionality of the antivirus products themselves, to gain higher privileges on compromised systems and even to defeat the anti-exploitation defenses of third-party applications. And evidence suggests that attacks against antivirus products are both possible and likely. Some researchers believe that such attacks have already occurred, even though antivirus vendors might not be aware of them because of the very small number of victims. Among the emails leaked last year from Italian surveillance firm Hacking Team there is a document with exploits offered for sale by an outfit called Vulnerabilities Brokerage International. The document lists various privilege escalation, information disclosure and detection bypassing exploits for multiple antivirus products, and also a remote code execution exploit for ESET NOD32 Antivirus with the status 'sold.'

Dangerous_Minds writes: Freezenet seems to be the first website to publish a full run-down of the final draft of the Intellectual Property chapter in the Trans-Pacific Partnership. The leak was published on Wikileaks earlier. The analysis seems to confirm what the EFF has said, saying that the chapter "confirms our worst fears about the agreement, and dashes the few hopes that we held out that its most onerous provisions wouldn't survive to the end of the negotiations." The analysis focuses mainly on copyright enforcement on the Internet and the impact the chapter would have on personal devices, VPN services, and ISPs. One noteworthy find by Freezenet is the inclusion of a "TPP Commission" which would decide when different countries are supposed to meet outside of the 10-year cycle, discussing "market circumstances" of "the development of new pharmaceutical products." What other roles the TPP Commission takes on is unclear given that it is not mentioned anywhere else in the chapter.

An anonymous reader writes: Wikileaks has released the finalized Intellectual Property text of the Trans-Pacific Partnership (TPP), which international negotiators agreed upon a few days ago. Unfortunately, it contains many of the consumer-hostile provisions that so many organizations spoke out against beforehand. This includes the extension of the copyright term to life plus 70 years, and a ban on the circumvention of DRM. The EFF says, "If you dig deeper, you'll notice that all of the provisions that recognize the rights of the public are non-binding, whereas almost everything that benefits rightsholders is binding. That paragraph on the public domain, for example, used to be much stronger in the first leaked draft, with specific obligations to identify, preserve and promote access to public domain material. All of that has now been lost in favor of a feeble, feel-good platitude that imposes no concrete obligations on the TPP parties whatsoever." The EFF walks us through all the other awful provisions as well — it's quite a lengthy analysis.

schwit1 writes with some Wikileaks-enabled news at Forbes about the Trade in Services Agreement, a treaty currently under negotiation between the U.S., the European Union and nearly two dozen other parties. Wikileaks' release of 17 documents from the negotiating countries puts some bad light on some of the provisions being considered: From the Forbes report: Under the draft provisions of the latest trade deal to be leaked by Wikileaks, countries could be barred from trying to control where their citizens' personal data is held or whether it's accessible from outside the country. ... These negotiating texts are supposed to remain secret for five years after TISA is finalized and brought into force. Like TTIP and TPP, TISA could be sped through Congress using Trade Promotion Authority (TPA), also known as fast-track authority, which has been passed by the US Senate and may be taken up in the House this month. Under TPA, Congress is barred from making amendments to the trade deals, and most simply give yes-or-no approval.

blottsie writes WikiLeaks has released an updated version of the Trans-Pacific Partnership (TPP) chapter on intellectual property. The new version of the texts, dated May 2014, show that little improvement has been made to sections critics say would hurt free speech online. Further, some of the TPP's stipulations could have dire consequences for healthcare in developing nations. The Daily Dot reports: "Nearly all of the changes proposed by the U.S. advantage corporate entities by expanding monopolies on knowledge goods, such as drug patents, and impose restrictive copyright policies worldwide. If it came into force, TPP would even allow pharmaceutical companies to sue the U.S. whenever changes to regulatory standards or judicial decisions affected their profits. Professor Brook K. Baker of Northeastern U. School of Law [said] that the latest version of the TPP will do nothing less than lengthen, broaden, and strengthen patent monopolies on vital medications."

schwit1 (797399) writes "The text of a 19-page, international trade agreement being drafted in secret was published by WikiLeaks as the transparency group's editor commemorated his two-year anniversary confined to the Ecuadorian Embassy in London. Fifty countries around the globe have already signed on to the Trade in Service Agreement, or TISA, including the United States, Australia and the European Union. Despite vast international ties, however, details about the deal have been negotiated behind closed-doors and largely ignored by the press. In a statement published by the group alongside the leaked draft this week, WikiLeaks said "proponents of TISA aim to further deregulate global financial services markets," and have participated in "a significant anti-transparency maneuver" by working secretly on a deal that covers more than 68 percent of world trade in services, according to the Swiss National Center for Competence in Research.

On Monday, The Intercept reported that the NSA is recording the content of every cell phone call in the Bahamas. At the time of publication, The Intercept said there was another country in which the NSA was doing this, but declined to name it because of "specific, credible concerns that doing so could lead to increased violence." Now, reader Advocatus Diaboli points out that WikiLeaks has spilled the beans: the country being fully monitored by the NSA is Afghanistan. Julian Assange wrote, "Such censorship strips a nation of its right to self-determination on a matter which affects its whole population. An ongoing crime of mass espionage is being committed against the victim state and its population. By denying an entire population the knowledge of its own victimization, this act of censorship denies each individual in that country the opportunity to seek an effective remedy, whether in international courts, or elsewhere. Pre-notification to the perpetrating authorities also permits the erasure of evidence which could be used in a successful criminal prosecution, civil claim, or other investigations. ... We do not believe it is the place of media to 'aid and abet' a state in escaping detection and prosecution for a serious crime against a population. Consequently WikiLeaks cannot be complicit in the censorship of victim state X. The country in question is Afghanistan."

sproketboy writes "WikiLeaks releases the secret negotiated draft text for the entire TPP (Trans-Pacific Partnership) Intellectual Property Rights Chapter." The Syndney Morning Herald took a look at the leaked documents, from their article: "An expert in intellectual property law, Matthew Rimmer, said the draft was 'very prescriptive' and strongly reflected U.S. trade objectives and multinational corporate interests 'with little focus on the rights and interests of consumers, let alone broader community interests.'"

Nyder sends this quote from TorrentFreak: "Swedish payment service provider Payson received an email stating that VPN services are no longer allowed to accept Visa and MasterCard payments due to a recent policy change. ... The new policy went into effect on Monday, leaving customers with a two-day window to find a solution. While the email remains vague about why this drastic decision was taken, in a telephone call Payson confirmed that it was complying with an urgent requirement from Visa and MasterCard to stop accepting payments for VPN services. 'It means that U.S. companies are forcing non-American companies not to allow people to protest their privacy and be anonymous, and thus the NSA can spy even more.'" Oddly, this comes alongside news that MasterCard has backed down on its financial blockade against WikiLeaks.

vikingpower writes "The official Russian Press agency Interfax has the scoop: Edward Snowden asks for political asylum in Russia (Google Translate). Russia Today, however, denies the news. Is this part of a clever disinformation move by Snowden, who reportedly is still in the Moscow airport Sheremetyevo 2?" The Washington Post is also reporting Snowden did apply for asylum in Russia. Snowden released a statement last night through Wikileaks, quoting: "For decades the United States of America has been one of the strongest defenders of the human right to seek asylum. Sadly, this right, laid out and voted for by the U.S. in Article 14 of the Universal Declaration of Human Rights, is now being rejected by the current government of my country. The Obama administration has now adopted the strategy of using citizenship as a weapon. Although I am convicted of nothing, it has unilaterally revoked my passport, leaving me a stateless person. Without any judicial order, the administration now seeks to stop me exercising a basic right. A right that belongs to everybody. The right to seek asylum."

vikingpower writes "The official Russian Press agency Interfax has the scoop: Edward Snowden asks for political asylum in Russia (Google Translate). Russia Today, however, denies the news. Is this part of a clever disinformation move by Snowden, who reportedly is still in the Moscow airport Sheremetyevo 2?" The Washington Post is also reporting Snowden did apply for asylum in Russia. Snowden released a statement last night through Wikileaks, quoting: "For decades the United States of America has been one of the strongest defenders of the human right to seek asylum. Sadly, this right, laid out and voted for by the U.S. in Article 14 of the Universal Declaration of Human Rights, is now being rejected by the current government of my country. The Obama administration has now adopted the strategy of using citizenship as a weapon. Although I am convicted of nothing, it has unilaterally revoked my passport, leaving me a stateless person. Without any judicial order, the administration now seeks to stop me exercising a basic right. A right that belongs to everybody. The right to seek asylum."

Pirate Bay Founder Gottfrid Svartholm Warg is to be tried starting tomorrow in Sweden, after his indictment last month for computer hacking and fraud. Wikileaks has released several documents related to his detention and the associated charges. From the summary of this material: "This material includes inter alia the interrogations with GSW and his co-accused, internal correspondence from the Swedish Foreign Minister and the Swedish embassy in Cambodia, damage assessment reports by the companies and the authorities concerned, and correspondence between GSW and Kristina Svartholm and the Swedish prison authorities. The material is formally public, but the Swedish prosecution authority has refused to provide the documents in digital format. Photocopying this volume of paper costs around £350." Notable is the refusal of Warg's request to obtain a graphing calculator while in prison.

New submitter milkasing writes "The Verge reports, 'Google chairman Eric Schmidt and WikiLeaks founder Julian Assange secretly met in 2011 and held a lengthy interview, according to a transcript published on the whistleblowing site. The leak is surprisingly timely — Schmidt was apparently conducting research with Jared Cohen for the pair's book The New Digital Age, which is set to be released on Tuesday. Assange was under house arrest in England at the time the five-hour conversation took place. The conversation is a fascinating look into the minds of the two men, both of whom have had immeasurable impact on issues surrounding technology over recent years."

An anonymous reader writes to note the latest large-scale document release from WikiLeaks: "The cables are all from the time period of 1973 to 1976. Without droning about too many numbers that can be found in the press release, about 200,000 of the cables relate directly to former U.S. Secretary of State Henry Kissinger. These cables include significant revelations about U.S. involvements with fascist dictatorships, particularly in Latin America, under Franco's Spain (including about the Spanish royal family) and in Greece under the regime of the Colonels. The documents also contain hourly diplomatic reporting on the 1973 war between Israel, Egypt and Syria (the 'Yom Kippur war'). While several of these documents have been used by U.S. academic researchers in the past, the Kissinger Cables provides unparalleled access to journalists and the general public. 'The illegal we do immediately; the unconstitutional takes a little longer.' — Henry A. Kissinger, U.S. Secretary of State, March 10, 1975."

An anonymous reader writes to note the latest large-scale document release from WikiLeaks: "The cables are all from the time period of 1973 to 1976. Without droning about too many numbers that can be found in the press release, about 200,000 of the cables relate directly to former U.S. Secretary of State Henry Kissinger. These cables include significant revelations about U.S. involvements with fascist dictatorships, particularly in Latin America, under Franco's Spain (including about the Spanish royal family) and in Greece under the regime of the Colonels. The documents also contain hourly diplomatic reporting on the 1973 war between Israel, Egypt and Syria (the 'Yom Kippur war'). While several of these documents have been used by U.S. academic researchers in the past, the Kissinger Cables provides unparalleled access to journalists and the general public. 'The illegal we do immediately; the unconstitutional takes a little longer.' — Henry A. Kissinger, U.S. Secretary of State, March 10, 1975."

Hugh Pickens writes "Defense Tech reports that several F-16 engines weighing 3,700 pounds each have been stolen from a base in a central part of the country. Israeli officials played down the loss, saying the engines were old or retired and likely stolen for scrap. U.S. security and aviation experts contacted were not so dismissive of the missing engines and said that some countries would see value in having them and taking them apart. 'They're still more modern than anything in the Iranian air force inventory, and they would even be helpful to China in their jet engine development,' says Richard Aboulafia, noting that modern technology engine design remains 'a black art' and that competitors would love the opportunity to study them. This is not the first time jet engines have gone missing. In June 2011, Israel reported the loss of eight F-15 and F-16 fighter engines from a base at Tel Nof near Jerusalem when investigators found the engines had been taken away on large trucks, prompting speculation that the thieves had help from inside the base. In 2009, two F-5 engines were stolen from an airbase in Malaysia, tracked to Argentina and ultimately located in Uruguay."

New submitter mordur writes "An Icelandic District Court has ordered the payment processing company Valitor to immediately reopen the merchant account (Icelandic original) of DataCell and start processing credit card payments for the Wikileaks organization. Noncompliance on behalf of Valitor will result in daily fines of ISK 800.000 (approx. USD 60.000). Under pressure from the USA based international credit card companies, Valitor stopped all service to DataCell, and thus to Wikileaks, just hours after having started processing payment in July 2011. The court found that Valitor had failed to prove that the processing of payments for Wikileaks was contrary to the business policies of the international credit card companies, nor had the company proved that DataCell was in breach of the service agreement between the companies by serving Wikileaks."

owenferguson writes "WikiLeaks has begun leaking a cache of over 5 million internal emails from the the Texas-headquartered 'global intelligence' company Stratfor. The emails date from between July 2004 and late December 2011. They reveal the inner workings of a company that fronts as an intelligence publisher, but provides confidential intelligence services to large corporations, such as Bhopal's Dow Chemical Co., Lockheed Martin, Northrop Grumman, Raytheon and government agencies, including the U.S. Department of Homeland Security, the U.S. Marines and the U.S. Defense Intelligence Agency. The associated news release can be found on pastebin."

An anonymous reader writes "Julian Assange has announced he will host a talk show: 'Through this series I will explore the possibilities for our future in conversations with those who are shaping it,' Assange said in his announcement late Monday. 'Are we heading towards utopia or dystopia, and how we can set our paths? This is an exciting opportunity to discuss the vision of my guests in a new style of show that examines their philosophies and struggles in a deeper and clearer way than has been done before.'"

jfruhlinger writes "Most Slashdotters — even those living in democratic countries — would probably be unsurprised to know that their governments are spying on them. But most people are not aware of how complicit security vendors, who publicly work to protect the public from such electronic eavesdropping, are complicit in such monitoring. All this and more is revealed in the latest Wikieaks document dump, the Spy Files."

lee1 writes "Wikileaks has had to cease publishing classified files due to what the organization calls a 'blockade by US-based finance companies' that, according to Wikileaks founder Julian Assange has 'destroyed 95% of our revenue.' Assange also opined that 'A handful of US finance companies cannot be allowed to decide how the whole world votes with its pocket.' According to Assange the group was taking 'pre-litigation action' against the financial blockade in Iceland, Denmark, the UK, Brussels, the United States, and Australia. They have also filed an anti-trust complaint with the European Commission."

An anonymous reader writes "WikiLeaks complaining of a leak is hard to get one's head around. That it's suing The Guardian — its great ally — is even harder. That The Guardian did such a ridiculous thing to warrant litigation in the first place almost defies belief." Update: 09/01 04:59 GMT by S : Changed the first link to point to the statement on WikiLeaks' website. The Guardian has denied the allegations, saying, "Our book about WikiLeaks was published last February. It contained a password, but no details of the location of the files, and we were told it was a temporary password which would expire and be deleted in a matter of hours."

daria42 writes "A US diplomatic cable published by Wikileaks has revealed much of the previously hidden background behind the BitTorrent court case currently playing out in Australia's High Court, including the Motion Picture Association of America's prime mover role and US Embassy fears the trial could become portrayed as 'giant American bullies versus little Aussie battlers.'' Oops. Looks like there's a little bit of egg on the movie studios' faces!"

Albanach writes "WikiLeaks spokesman Julian Assange has been quoted by the Associated Press as stating 'the organization is preparing to release the remaining secret Afghan war documents.' According to Assange, they are halfway through processing the remaining 15,000 files as they 'comb through' the files to ensure lives are not placed at risk."

A number of readers submitted word on the massive WikiLeaks release of Afghanistan war documents. "The data is provided in CSV and SQL formats, sorted by months, and also was rendered into KML mapping data." WikiLeaks provided the documents in advance to the New York Times, Der Spiegel, and the UK's Guardian — the latter also has up a video tutorial on how to read the logs. From the Times: "A six-year archive of classified military documents... offers an unvarnished, ground-level picture of the war in Afghanistan that is in many respects more grim than the official portrayal. The secret documents... are a daily diary of an American-led force often starved for resources and attention as it struggled against an insurgency that grew larger, better coordinated and more deadly each year. The New York Times, the British newspaper The Guardian, and the German magazine Der Spiegel were given access to the voluminous records several weeks ago on the condition that they not report on the material before Sunday. The documents — some 92,000 reports spanning parts of two administrations from January 2004 through December 2009 — illustrate in mosaic detail why, after the United States has spent almost $300 billion on the war in Afghanistan, the Taliban are stronger than at any time since 2001."

An anonymous reader writes "This document is a classified (SECRET/NOFORN), 32-page US counterintelligence investigation into WikiLeaks (PDF). 'The possibility that current employees or moles within DoD or elsewhere in the US government are providing sensitive or classified information to Wikileaks.org cannot be ruled out.' It concocts a plan to fatally marginalize the organization. Since WikiLeaks uses 'trust as a center of gravity by protecting the anonymity and identity of the insiders, leakers or whistleblowers,' the report recommends 'The identification, exposure, termination of employment, criminal prosecution, legal action against current or former insiders, leakers, or whistleblowers could potentially damage or destroy this center of gravity and deter others considering similar actions from using the Wikileaks.org Web site.' [As two years have passed since the date of the report, with no WikiLeaks' source exposed, it appears that this plan was ineffective.] As an odd justification for the plan, the report claims that 'Several foreign countries including China, Israel, North Korea, Russia, Vietnam, and Zimbabwe have denounced or blocked access to the Wikileaks.org website.' The report provides further justification by enumerating embarrassing stories broken by WikiLeaks — US equipment expenditure in Iraq, probable US violations of the Chemical Warfare Convention Treaty in Iraq, the battle over the Iraqi town of Fallujah and human rights violations at Guantanamo Bay."