Slashdot Mirror

← Back to Stories (view on slashdot.org)

What We Know About the FBI's CIPAV Spyware

Posted by Zonk on from the i-always-feel-like-somebody's-watching-me dept.

StonyandCher writes "What is CIPAV? CIPAV stands for 'Computer and Internet Protocol Address Verifier'; a lengthy term for powerful spyware the Federal Bureau of Investigation can bring to bear on web-based crime. It was used last month in a case where someone was emailing bomb threats regularly to a Washington high school. An affidavit by an FBI agent revealed some of the workings of CIPAV. 'According to the court filing, this is [some of] what the CIPAV collects from the infected computer: IP address, Media Access Control address for the network card, List of open TCP and UDP ports, List of running programs ... Last visited URL. Once that initial inventory is conducted, the CIPAV slips into the background and silently monitors all outbound communication, logging every IP address to which the computer connects, and time and date stamping each.' In a Computerworld article, the author attempts to dissect CIPAV's purpose and raises a number of questions such as: What happens to the data the CIPAV collects? Does the CIPAV capture keystrokes? Can the CIPAV spread on its own to other computers, either purposefully or by accident? Does it erase itself after its job is done?"

19 of 207 comments (clear)

  1. address is 192.168.0.100 by maxwells_deamon · · Score: 3, Funny

    Just look for the guy with that address!

    It most do a trace route/phone home or somthing to actually get a useful address

    1. Re:address is 192.168.0.100 by ArcherB · · Score: 4, Funny

      Just look for the guy with that address!

      It most do a trace route/phone home or somthing to actually get a useful address

      As opposed to the guy at 127.0.0.1! I hacked into his machine once, but that bastard had some sort of active defense daemon running that wiped my drive at the same time I was trying to wipe his!

      Fortunately, I was able to see the porno pics of his wife before I was hit. Man! That bitch was FUGLY!

      --
      There is no "I disagree" mod for a reason. Flamebait, Troll, and Overrated are not substitutes.
  2. Nice acronym but... by Statecraftsman · · Score: 4, Funny

    can't we just continue calling this Vista?

  3. Re:does it... by HaeMaker · · Score: 4, Funny

    Let's find out...

    "Mr. Gman from Quantico, VA has sent you an eGreetingCard from Flowers By Irene! Just open this P.D.F. file to view..."

  4. Re:The real threat of "government spyware" by robogun · · Score: 2, Funny

    The AV could just take the middle ground with a generic description like "Suspicious Program: E-card Viewer", it is unlikely it will display as "W.32CIPAV j00 R SO FEDERALLY PWNED"

  5. What happens to the data collected? by WillAffleckUW · · Score: 3, Funny

    It's sold to commercial firms so they can advertise to you.

    Duh.

    --
    -- Tigger warning: This post may contain tiggers! --
  6. Re:The real threat of "government spyware" by orclevegam · · Score: 2, Funny

    it is unlikely it will display as "W.32CIPAV j00 R SO FEDERALLY PWNED"

    No, but that would be awsome. Maybe some of the open source antivirus kits out there (I know there's at least one) should use that as the name if they ever manage to get a signature of CIPAV.

    --
    Curiosity was framed, Ignorance killed the cat.
  7. Re:But how do they install it?!?! by Anonymous Coward · · Score: 2, Funny

    Do they get a warrant, sneak into your home in the dead of night, and install software on your computer?

    Yes.
  8. Hey, this is no fair. by Caspian · · Score: 3, Funny

    I demand a Mac OS X port! And a Linux port! The FBI is being unfair! ;)

    --
    With spending like this, exactly what are "conservatives" conserving?
  9. Let's check... by Jeff+Carr · · Score: 5, Funny

    $sudo apt-get remove cipav
    Reading package lists... Done
    Building dependency tree
    Reading state information... Done
    E: Couldn't find package cipav
    Whew, safe!

    --
    The television will not be revolutionized.
  10. Yes... millions of taxpayer dollars have been... by DaedalusLogic · · Score: 2, Funny

    Spent on a sophisticated solution for detecting your IP address, and the FBI has integrated THIS into CIPAV.

  11. Re:does it... by Anonymous Coward · · Score: 1, Funny

    yeah well I created my own OS from scratch, and roll all my own applications for it too. Next project will be to create a processor from scratch too.

  12. Re:The real threat of "government spyware" by Anonymous Coward · · Score: 1, Funny

    If they managed a remote install there will be a prompt on my screen about permitting an unknown application to connect to the internet.

  13. Re:Do they still get spam? by It+doesn't+come+easy · · Score: 3, Funny

    In the grand scheme of things, spam doesn't rate very high when compared to a bomb threat. Resource limitations dictate that the FBI concentrate on music downloading, bomb threats, and spam, in that order ;)...

    --
    The NSA: The only part of the US government that actually listens.
  14. Re:But how do they install it?!?! by BlueParrot · · Score: 2, Funny

    Do they get a warrant, sneak into your home in the dead of night, and install software on your computer?
    You still think they would need a warrant to do so? It is more like:
    try{
    getTarget().addUncostitutionalSpyware();
    }
    catch (SomebodyFoundOutException e){
    getTarget().accuse( new Excuse( Excuse.paedophile , Excuse.terrorist ));
    }
    finally{
    profit();
    }
  15. Re:Zombie or not, one specimen WILL be found. by ScrewMaster · · Score: 2, Funny

    I'm sure they've accounted for the possibilities you've raised (excellent points, by the way.) And, if you were to actually ask the FBI about those issues, I'm sure the conversation would go something like this:

    Brody: The CIPAV is a source of unspeakable power and it has to be researched!

    Eaton: And it will be, I assure you Dr. Brody, Dr. Jones. We have top men working on it right now.

    Jones: Who?

    Eaton: Top men.

    --
    The higher the technology, the sharper that two-edged sword.
  16. Re:does it... by GrumpySimon · · Score: 3, Funny

    That is, until version 2.0.


    oh no - it's going to have Ajax and a drop shadow!
    --
    henry -- the human evolution news relay
  17. This is Slashdot, people! by TheVelvetFlamebait · · Score: 2, Funny

    Since when did we ever let little things like evidence or common sense get in the way of a nice bit of conspiracy theorising?

    --
    You know, there is a difference between trolling and pointing out the flaws in your reasoning. Just saying.
  18. Re:does it... by jwo7777777 · · Score: 2, Funny

    You say that out of shear ignorance. Better than tensile or compressive ignorance.