Wikileaks yesterday published its latest round of allegedly leaked CIA documents, detailing aspects of the U.S. agency's "Cherry Blossom" firmware modification program, which uses modified versions of router firmware to turn networking devices into surveillance tools.

The document is the latest in WikiLeaks' "Vault 7" series of publications on CIA hacking methods. Previous leaks have detailed the agency's targeting of iOS devices and Macs, while this manual relates specifically to network routers: Once installed, the Cherry Blossom program can be used to monitor internet traffic, crawl for passwords, and redirect the target user to a particular website.

wikileaks cia
The manual also describes how CIA agents might install the modified firmware. "In typical operation, a wireless device of interest is implanted with Cherry Blossom firmware, either using the Claymore tool or via a supply chain operation." While documents have not been made public that detail the "Claymore" tool, the latter tactic refers to the practice of intercepting the target device somewhere between the factory and the end user.

The document lists several network products as susceptible to its hacking protocol, including devices from Asus, Belkin, Buffalo, Dell, DLink, Linksys, Motorola, Netgear, Senao, and US Robotics. Apple's AirPort networking equipment does not appear on the list, however.

The CIA has struggled to penetrate Apple's network router hardware in the past due to a combination of the company's robust encryption and its use of proprietary hardware. Previous Harpy Eagle documents published by Wikileaks show apparently unsuccessful efforts to "gain root access on an Apple Airport Extreme and Time Capsule via local and/or remote means to install a persistent rootkit into the flash storage of the devices".

The Cherry Blossom document dates to 2012, so it's likely CIA methods have moved on in an effort to keep up to date with changing networking hardware. In a response the same day that the iOS device hacking efforts came out, Apple said that many of the vulnerabilities in that leak were already patched. Apple reportedly ceased development of its AirPort networking devices last year.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Tags: Apple Security, CIA, WikiLeaks

Top Rated Comments

Sunny1990 Avatar
Sunny1990
93 months ago
Making it harder and harder for the private info to be tapped into. Gotta love Apple for this.
Score: 10 Votes (Like | Disagree)
Glassed Silver Avatar
Glassed Silver
93 months ago
Why is the government doing this? I guess I want to know: is it still okay for me to say in front of Echo Dot or write in my emails that President Trump looks like he's wearing an orange ferret on his head? Or am I living in Communist China now?
The funny truth is that many of the things the US warned its population about during the Cold War whilst reminding people that the superior West is free and ripe of opportunities are now - or have been for a very long time - part of their own toolkit and that of many other nations who are "friends" of the US, the West or simply try to strike good trade deals with us.

If you like liberty and privacy the times are rough.

Glassed Silver:ios
Score: 8 Votes (Like | Disagree)
haruhiko Avatar
haruhiko
93 months ago
But Apple doesn't update them anymore and has ignored the whole mesh router development. :-(
Score: 5 Votes (Like | Disagree)
Solomani Avatar
Solomani
93 months ago
Making it harder and harder for the private info to be tapped into. Gotta love Apple for this.
No. Like I posted above, there are credible reports that Apple is already dropping its (AirPort) router business. That means that in the future, all Apple servers and networks will have to rely on routers made by those other companies like Dell, Cisco, Belkin, Linksys, etc.
Score: 5 Votes (Like | Disagree)
Solomani Avatar
Solomani
93 months ago
So what's the best router for privacy?
The Google-Facebook router is best!


Just kidding. :p
Score: 4 Votes (Like | Disagree)
Solomani Avatar
Solomani
93 months ago
The CIA has struggled to penetrate Apple's network router hardware in the past due to a combination of the company's robust encryption and its use of proprietary hardware.
Oh boy…. I'm vindicated in another thread where I opined that Apple abandoning its AirPort routers is a mistake.

It's right here, post #34.
https://forums.macrumors.com/threads/eero-reveals-2nd-gen-router-wi-fi-extending-beacon-internet-security-service-and-ios-app-update.2050788/page-2#post-24686814
Score: 4 Votes (Like | Disagree)
Read All Comments

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Rumored to Use Same Rear Chassis as iPhone 16

Friday July 19, 2024 7:16 am PDT by
Apple will adopt the same rear chassis manufacturing process for the iPhone SE 4 that it is using for the upcoming standard iPhone 16, claims a new rumor coming out of China. According to the Weibo-based leaker "Fixed Focus Digital," the backplate manufacturing process for the iPhone SE 4 is "exactly the same" as the standard model in Apple's upcoming iPhone 16 lineup, which is expected to...
Read Full Article139 comments
iPhone 17 Plus Feature

iPhone 17 Lineup Specs Detail Display Upgrade and New High-End Model

Monday July 22, 2024 4:33 am PDT by
Key details about the overall specifications of the iPhone 17 lineup have been shared by the leaker known as "Ice Universe," clarifying several important aspects of next year's devices. Reports in recent months have converged in agreement that Apple will discontinue the "Plus" iPhone model in 2025 while introducing an all-new iPhone 17 "Slim" model as an even more high-end option sitting...
Read Full Article149 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Just Two Months Away: Everything We Know

Monday July 15, 2024 4:44 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article129 comments
Apple TV Plus Feature 2 Magenta and Blue

Apple TV+ Curbs Costs After Expensive Projects Fail to Capture Viewers

Monday July 22, 2024 5:11 am PDT by
Apple is scaling back its Hollywood spending after investing over $20 billion in original programming with limited success, Bloomberg reports. This shift comes after the streaming service, which launched in 2019, struggled to capture a significant share of the market, accounting for only 0.2% of TV viewership in the U.S., compared to Netflix's 8%. Despite heavy investment, critical acclaim,...
Read Full Article322 comments
bsod

Microsoft Blames European Commission for Major Worldwide Outage

Monday July 22, 2024 11:55 am PDT by
Last Friday, a major CrowdStrike outage impacted PCs running Microsoft Windows, causing worldwide issues affecting airlines, retailers, banks, hospitals, rail networks, and more. Computers were stuck in continuous recovery loops, rendering them unusable. The failure was caused by an update to the CrowdStrike Falcon antivirus software that auto-installed on Windows 10 PCs, but Mac and Linux...
Read Full Article367 comments