WikiLeaks: CIA impersonated Kaspersky Labs as cover for malware operations
WikiLeaks: CIA impersonated Kaspersky Labs as cover for malware operations
WikiLeaks, under its new Vault 8 series of released documents, has rolled out what it says is the source code to a previously noted CIA tool, called Hive, that is used to help hide espionage actions when the Agency implants malware.
Hive supposedly allows the CIA to covertly communicate with its software by making it hard or impossible to trace the malware back to the spy organisation by utilising a cover domain. Part of this, WikiLeaks said, is using fake digital certificates that impersonate other legitimate web groups, including Kaspersky Labs.
Kaspersky Labs CEO Eugene Kaspersky confirmed WikiLeaks statement.