CIA documents published by WikiLeaks Thursday reveal hacks used by the agency against Apple cellphones and computers.
“These documents explain the techniques used by CIA to gain ‘persistence’ on Apple Mac devices, including Macs and iPhones and demonstrate their use of EFI/UEFI and firmware malware,” a WikiLeaks press release says.
By targeting the firmware, CIA hackers can remain in control of an infected device even if the target wipes the data and re-installs the operating system.
One such tool, known as “Sonic Screwdriver,” is, according to the CIA, a “mechanism for executing code on peripheral devices while a Mac laptop or desktop is booting…”
By providing a target with a compromised peripheral device such as an Apple Thunderbolt-to-Ethernet adapter, which stores “Sonic Screwdriver” in its firmware, the CIA can gain persistence “even when a firmware password is enabled” on the target computer.
A 2008 document discussing an attack on iPhones, called “NightSkies,” reveals a malicious implant that would be physically installed on a new device. One method of deploying the hack could potentially involve intercepting an iPhone before it reaches a target.
“The tool operates in the background providing upload, download and execution capability on the device,” the document states. “NS is installed via physical access to the device and will wait for user activity before beaconing.”
Another document entitled “DarkSeaSkies” from the following year also revealed NightSkies limitations, specifically its lack of “stealth and persistence capabilities.”
The “Dark Matter” release follows WikiLeaks’ initial “Year Zero” dump which included attacks on other high-profile gadgets. The “Weeping Angel” exploit designed for older model Samsung TVs, which required physical access to a device with outdated firmware, allowed conversations to be recorded through the TV’s microphone.
Although the CIA has not commented on “Dark Matter,” the agency, breaking with normal protocol, released a statement following WikiLeaks’ first release.
“The American public should be deeply troubled by any Wikileaks disclosure designed to damage the intelligence community’s ability to protect America against terrorists and other adversaries,” a spokesperson said. “Such disclosures not only jeopardize U.S. personnel and operations but also equip our adversaries with tools and information to do us harm.”