Slashdot Mirror

← Back to Stories (view on slashdot.org)

WikiLeaks Reveals Grasshopper, the CIA's Windows Hacking Tool (thenextweb.com)

Posted by BeauHD on from the daily-dose-of-paranoia dept.

An anonymous reader quotes a report from The Next Web: In case you haven't had your dose of paranoia fuel today, WikiLeaks released new information concerning a CIA malware program called "Grasshopper," that specifically targets Windows. The Grasshopper framework was (is?) allegedly used by the CIA to make custom malware payloads. According to the user guide: "Grasshopper is a software tool used to build custom installers for target computers running Microsoft Windows operating systems." Grasshopper is designed to detect the OS and protection on any Windows computer on which it's deployed, and it can escape detection by anti-malware software. If that was enough for you to put your computer in stasis, brace yourself for a doozy: Grasshopper reinstalls itself every 22 hours, even if you have Windows Update disabled. As if this wasn't alarming enough, the Grasshopper user guide even states upfront that Grasshopper uses bits from a toolkit taken from Russian organized crime.

3 of 87 comments (clear)

  1. "einstalls itself every 22 hours" by Anonymous Coward · · Score: 2, Funny

    Just like Windows updates whether you want them or not.

  2. Re:Windows Update by bill_mcgonigle · · Score: 4, Funny

    Nope, it got reinstalled from the EFI rootkit.

    --
    My God, it's Full of Source!
    OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  3. You might be a developer if... by grilled-cheese · · Score: 3, Funny

    Your first though is that you're jealous of how good their documentation is.