Apple Devices Escape Mention in WikiLeaks' Latest 'Vault 7' CIA Hacking Documents

Discussion in 'Politics, Religion, Social Issues' started by MacRumors, Jun 16, 2017.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    Wikileaks yesterday published its latest round of allegedly leaked CIA documents, detailing aspects of the U.S. agency's "Cherry Blossom" firmware modification program, which uses modified versions of router firmware to turn networking devices into surveillance tools.

    The document is the latest in WikiLeaks' "Vault 7" series of publications on CIA hacking methods. Previous leaks have detailed the agency's targeting of iOS devices and Macs, while this manual relates specifically to network routers: Once installed, the Cherry Blossom program can be used to monitor internet traffic, crawl for passwords, and redirect the target user to a particular website.

    [​IMG]

    The manual also describes how CIA agents might install the modified firmware. "In typical operation, a wireless device of interest is implanted with Cherry Blossom firmware, either using the Claymore tool or via a supply chain operation." While documents have not been made public that detail the "Claymore" tool, the latter tactic refers to the practice of intercepting the target device somewhere between the factory and the end user.

    The document lists several network products as susceptible to its hacking protocol, including devices from Asus, Belkin, Buffalo, Dell, DLink, Linksys, Motorola, Netgear, Senao, and US Robotics. Apple's AirPort networking equipment does not appear on the list, however.

    The CIA has struggled to penetrate Apple's network router hardware in the past due to a combination of the company's robust encryption and its use of proprietary hardware. Previous Harpy Eagle documents published by Wikileaks show apparently unsuccessful efforts to "gain root access on an Apple Airport Extreme and Time Capsule via local and/or remote means to install a persistent rootkit into the flash storage of the devices".

    The Cherry Blossom document dates to 2012, so it's likely CIA methods have moved on in an effort to keep up to date with changing networking hardware. In a response the same day that the iOS device hacking efforts came out, Apple said that many of the vulnerabilities in that leak were already patched. Apple reportedly ceased development of its AirPort networking devices last year.

    Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

    Article Link: Apple Devices Escape Mention in WikiLeaks' Latest 'Vault 7' CIA Hacking Documents
     
  2. haruhiko macrumors 68040

    haruhiko

    Joined:
    Sep 29, 2009
    #2
    But Apple doesn't update them anymore and has ignored the whole mesh router development. :-(
     
  3. Solomani macrumors 68030

    Solomani

    Joined:
    Sep 25, 2012
    Location:
    Alberto, Canado
    #3
    Oh boy…. I'm vindicated in another thread where I opined that Apple abandoning its AirPort routers is a mistake.

    It's right here, post #34.
    https://forums.macrumors.com/thread...d-ios-app-update.2050788/page-2#post-24686814
     
  4. Sunny1990 macrumors 65816

    Sunny1990

    Joined:
    Feb 13, 2015
    #4
    Making it harder and harder for the private info to be tapped into. Gotta love Apple for this.
     
  5. Solomani macrumors 68030

    Solomani

    Joined:
    Sep 25, 2012
    Location:
    Alberto, Canado
    #5
    No. Like I posted above, there are credible reports that Apple is already dropping its (AirPort) router business. That means that in the future, all Apple servers and networks will have to rely on routers made by those other companies like Dell, Cisco, Belkin, Linksys, etc.
     
  6. mayuka macrumors 6502a

    mayuka

    Joined:
    Feb 15, 2009
    #6
    That's probably the reason why Apple decided to discontinue AirPort / AirCapsules...
     
  7. elvisimprsntr, Jun 16, 2017
    Last edited: Jun 16, 2017

    elvisimprsntr macrumors regular

    Joined:
    Jul 17, 2013
    Location:
    Florida
    #7
    Apple likely dropped their AirPort and TimeCapsule products because it's a low volume, low margin, commodity business, which is already served by third party companies. it dilutes their resources ($, engineering, manufacturing, and premium retail space) from their core capabilities and higher margin products.
     
  8. Col4bin macrumors 68000

    Col4bin

    Joined:
    Oct 2, 2011
    Location:
    El Segundo
    #8
    I've tried many other competing range extenders in the past and have generally found that Belkin, DLink and Linksys products are vastly inferior and don't play nice with my Macs. The only consistent success I've had beyond Apple is with Netgear; currently using a Nighthawk EX700 and it's been nothing short of amazing.
     
  9. Wayfarer macrumors 65816

    Wayfarer

    Joined:
    Jun 15, 2007
  10. orbital~debris macrumors 6502a

    orbital~debris

    Joined:
    Mar 3, 2004
    Location:
    England, UK, Europe
    #10
    Love how the rumour of Apple cancelling the AirPort product line persists despite any real evidence. :rolleyes:

    The products remain on sale, and are still supported and receiving firmware updates.

    If Apple are considering ceding the market for this type of product, hopefully their privacy-focussed stance will necessitate a decision otherwise (after all, they do like to have ownership of the 'total system' for customers, so it would be strange - and privacy-difficult - for them to leave networking alone).
     
  11. Solomani macrumors 68030

    Solomani

    Joined:
    Sep 25, 2012
    Location:
    Alberto, Canado
    #11
    The Google-Facebook router is best!


    Just kidding. :p
     
  12. Avieshek, Jun 16, 2017
    Last edited: Jun 16, 2017

    Avieshek macrumors 6502

    Avieshek

    Joined:
    Dec 7, 2013
    Location:
    India
    #12
    Used TP-LINK? Currently using, fantastic.

    Used Belkin & D-Link. It's a pain, D-Link specifically sucked. I feel & share your mention with Mac compatibility.
     
  13. b0nd18t macrumors 6502

    b0nd18t

    Joined:
    Apr 9, 2012
    #13
    This made me LOL.
     
  14. elvisimprsntr, Jun 16, 2017
    Last edited: Jun 16, 2017

    elvisimprsntr macrumors regular

    Joined:
    Jul 17, 2013
    Location:
    Florida
    #14
    Roll your own commercial grade firewall with http://www.pfsense.org on HW from http://protectli.com and open source firmware (DD-WRT, openWRT, etc.) on a WLAN router of your choice. I set up pfSense earlier this year to add dual WAN for LTE failover and couldn’t be more please with the features, performance, and reliability. I’ve been using http://www.dd-wrt.com router firmware for 12+ years.
     
  15. MistrSynistr macrumors 6502a

    Joined:
    May 15, 2014
    #15
    I love my Apple Router. I have never had an issue with it and have had it since 2013 I believe. Great product.
     
  16. GrumpyMom macrumors 601

    GrumpyMom

    Joined:
    Sep 11, 2014
    Location:
    Rinoriducruin
    #16
    Why is the government doing this? I guess I want to know: is it still okay for me to say in front of Echo Dot or write in my emails that President Trump looks like he's wearing an orange ferret on his head? Or am I living in Communist China now?
     
  17. webbuzz macrumors 65816

    webbuzz

    Joined:
    Jul 24, 2010
    #17
    Did I make it before the conspiracy nuts mentioning Israeli Intelligence?
     
  18. Glassed Silver macrumors 68000

    Glassed Silver

    Joined:
    Mar 10, 2007
    Location:
    Kassel, Germany
    #18
    The funny truth is that many of the things the US warned its population about during the Cold War whilst reminding people that the superior West is free and ripe of opportunities are now - or have been for a very long time - part of their own toolkit and that of many other nations who are "friends" of the US, the West or simply try to strike good trade deals with us.

    If you like liberty and privacy the times are rough.

    Glassed Silver:ios
     
  19. webbuzz macrumors 65816

    webbuzz

    Joined:
    Jul 24, 2010
    #19
    Been happening for decades. I can say with 100% certainty, that a telecommunications manufacturer, was asked to provide a means for law enforcement to enable the microphone on several products.

    The manufacturer told them to pound sand.
     
  20. gnipgnop macrumors 6502

    Joined:
    Feb 18, 2009
    #20
    Wikileaks...always focused on the United States exclusively. Gee, wonder why??
     
  21. miknos macrumors 6502a

    miknos

    Joined:
    Mar 14, 2008
    #21
    Google should be in the list. They upload MAC addresses to Google servers for "product improvement". God knows what else.
     
  22. mrkramer macrumors 603

    mrkramer

    Joined:
    Jul 11, 2006
    Location:
    Somewhere
    #22
    Because they don't want to embarrass their founders in Russia.
     
  23. macs4nw macrumors 68040

    macs4nw

    #23
    ..... and unfortunately the future is even bleaker :( :eek:
     
  24. Robert.Walter macrumors 65816

    Joined:
    Jul 10, 2012
    #24
    Hardly a commodity product when you have several USP's, i.e. Security, simplicity, design and Apple halo.

    Even if a trivial contributor to overall profit, if it can earn 30% profit, it should earn its place in the portfolio.

    If one has all Apple gear, what's the benefit of class leading security in an iPhone or Mac if you are comprimised at your modem-network gateway?

    I sure hope Apple has an Airport surprise up its sleeve in September, or like with the Mac Pro Apple reconsiders it's decision and reverses itself in the interest of its customers.
     
  25. lec0rsaire macrumors regular

    Joined:
    Feb 23, 2017
    #25
    I will not let go of my 5th gen TC until the day it dies. Rock solid reliability and protection. I simply don't trust the majority of commercial routers especially with stock firmware. While you can never full trust any company, Apple's products are the only ones I trust right now. They have shown an interest in consumer and now enterprise privacy. I hope Apple continues to support it with firmware upgrades as long as it remains viable for them to do so. It works so well with all of my Apple hardware, the ease of wireless backups and I've had zero downtime. Sure it's expensive for what it is especially in 2017 and it has its limitations but it is a fantastic router. I really hope Apple reconsiders things and releases a 6th gen once ad is fully supported.
     

Share This Page