The deeper story behind CIA's attempt to 'impersonate' Russian cybersecurity company using hacking tool Hive

In 9 November 2017, WikiLeaks published the source code and development logs to Hive, a major component of the CIA infrastructure to control its malware.

According to WikiLeaks, Hive uses the uncommon Optional Client Authentication so that the user browsing the website is not required to authenticate - it is optional. But implants talking to Hive do authenticate themselves and can therefore be detected by the Blot server. Traffic from implants is sent to an implant operator management gateway called Honeycomb (see graphic above) while all other traffic go to a cover server that delivers the insuspicious content for all other users.

Digital certificates for the authentication of implants are generated by the CIA impersonating existing entities. The three examples included in the source code build a fake certificate for the anti-virus company Kaspersky Laboratory, Moscow pretending to be signed by Thawte Premium Server CA, Cape Town. In this way, if the target organization looks at the network traffic coming out of its network, it is likely to misattribute the CIA exfiltration of data to uninvolved entities whose identities have been impersonated.

This CIA cybertool could be proven very useful for accusing foreign agencies and organizations for hacking US facilities and processes, but beyond that, there is a deeper reason for which CIA has targeted the specific Russian company and it is related to the first discovered malware that spies on and subverts industrial systems.

Former British intelligence officer and Whistleblower, Annie Machon, reveals why CIA has targeted Kaspersky Lab:

Obviously, the CIA will be interested in a very successful Russian-based company that offers protection on the Internet. But it goes back a bit further because, it was 2010 the very first proven cyberwarfare weapon was deployed. And this was against the Iranian domestic civilian nuclear development capability. And this was at the time when the Americans were drumming up the war against Iran.

There was an attack made against their civilian nuclear capability, and in this case, this virus, which was called Stuxnet, was deployed against the centrifuges that enriched the Uranium. Nobody knew where it came from. It seemed to be very weaponized, a state level. And it was actually Kaspersky that unveiled who had developed it. It was the Americans and the Israeli intelligence agencies. So, Kaspersky has been very much in the cross-chairs of both the American and the Israeli intelligence agencies.

From Wikipedia, Stuxnet is a malicious computer worm, first uncovered in 2010 by Kaspersky Labs, the antivirus company. Thought to have been in development since at least 2005, stuxnet targets SCADA systems and was responsible for causing substantial damage to Iran's nuclear program. Although neither country has admitted responsibility, since 2012 the worm is frequently described as a jointly built American/Israeli cyberweapon.

Stuxnet, discovered by Sergey Ulasen, initially spread via Microsoft Windows, and targeted Siemens industrial control systems. While it is not the first time that hackers have targeted industrial systems, nor the first publicly known intentional act of cyberwarfare to be implemented, it is the first discovered malware that spies on and subverts industrial systems, and the first to include a programmable logic controller (PLC) rootkit.

Comments

F-35s & AI Chips: How MBS Outplayed Washington & Beijing

GVS Deep Dive Saudi Arabia just secured two of the most powerful assets in modern geopolitics: the U.S. F-35 stealth fighter and tens of thousands of Nvidia’s most advanced AI chips. Washington hoped this would pull Riyadh firmly back into the American orbit. But the outcome is something neither side fully expected: Mohammad bin Salman outplayed both Washington and Beijing — and used the great-power rivalry to his advantage.

Greece, Palestine & Zionism: FPTV Reports from Athens

Free Palestine TV Laith Marouf & Rabih Ghannam travel to Athens, Greece, and take a walking tour with local activists Evan Katsounis and Maria Kosmidi, to discover the rich history of anti-Zionist and anti-Fascist actions in the city, as well as the current Zionist incursion into the property sector and the counter actions directed at the presence of these War Criminals on the streets of the city.

Trump RUINED: Israel First Lies & Economic Freefall Just ENDED MAGA

Danny Haiphong Tucker Carlson isn't the only journalist breaking with Trump. In this video, Patrick Henningsen goes scorched earth on Trump's massive betrayal of what he promised his "MAGA" base and blows the lid off how his massive lies serve as a cover up for a much bigger structural problem in America's 'Israel First' political system, what Tucker and major voices in elite MAGA won't tell you.

Capitalism & Genocide - Yanis Varoufakis Speech at the Gaza Tribunal, 23rd October 2025, Istanbul

Yanis Varoufakis On 23rd October, Yanis Varoufakis testified in front of the Jury of Conscience in the context of the Gaza Tribunal. His speech focused on the economic forces underpinning the genocide of the Palestinian people. In particular, he spoke on the manner in which capitalist dynamics have historically fuelled the white settler colonial project and, more recently, how the accumulation of a new form of capital - which he calls cloud capital - has accelerated, deepened and amplified the economic forces powering and propelling the machinery of genocide.

Varoufakis: IT technologies will overthrow Capitalism

globinfo freexchange The former Greek Minister of Finance, Yanis Varoufakis, ended his recent speech on the Future of Capitalism, at the New School, New York, with some interesting remarks. As he said: The world we live in, is increasingly rudderless, in a constant slow burning recession, while at the very same time, the increasing concentration in the IT sector is creating the new technologies that will do that which the Left has failed to do: overthrow Capitalism. It is really very simple. The moment machines pass the Turing test properly, and you pick up the phone and you do not know whether the person you are talking to is a human being or a machine ˙ the moment we are going to have 3D printers operating as public utilities - you can send any blueprint to it and it can print from one pin to a motorcycle, or to a car - the moment that this happens, we have not just a process of Schumpeterian creative destruction, but we have a process where economies of sc...

Trump BLEW IT: Israel, Candace Owens & Epstein BURY MAGA (But Not How You Think)

Danny Haiphong Trump has bent the knee to Israel for the last time. Patrick Henningsen exposes his horrid record and all the elements that has led to his rapidly coming collapse.

Racing Extinction

suggested by failedevolution.blogspot 18th Thessaloniki Documentary Festival Scientists predict that humanity’s footprint on the planet may cause the loss of 50% of all species by the end of the century. They believe we have entered the sixth major extinction in Earth’s history, following the fifth great extinction which took out the dinosaurs. Our era is called the Anthropocene, or “Age of Man,” because evidence shows that humanity has sparked a cataclysmic change of the world’s natural environment and animal life. Yet, we are the only ones who can stop the change we have created. The Oceanic Preservation Society (OPS), the group behind the Academy Award-winning film The Cove, is back with a new groundbreaking documentary. Joined by new innovators, this highly charged, impassioned collective of activists brings a voice to the thousands of species teetering on the very edge of life. The director has crafted an ambitious mission to clearly and artfu...

Maduro's opening to China

“ Chinese President Xi Jinping on Wednesday said he hopes Venezuela will use bilateral financing mechanisms and channel more funds to the areas of energy, mining, agriculture and industry while meeting with Venezuelan President Nicolas Maduro.” “ Financing mechanisms between the two countries total more than 50 billion U.S. dollars, according to Venezuelan experts. Financing mechanisms, including the China-Venezuela Fund, have provided financial support for some 256 projects. China and Venezuela upgraded their relationship to a comprehensive strategic partnership during Xi's visit to Venezuela in 2014, opening a new chapter in bilateral ties.” “ During their meeting, Xi called on the two sides to push bilateral ties to a higher-level. China supports Venezuela's efforts in restructuring its economy and establishing a manufacturing economic model, he said. Xi suggested the two countries push forward cooperation in the fields of oil exploration, infrastru...

Neoliberal establishment will attempt to take control of the evangelical electoral army using its most powerful asset for such an operation: Joe Biden

globinfo freexchange Here is another strong indication about the theory we support, according to which Trump, Brexit and other far-right governments in power, are primarily the product of a merciless civil war of the big capital. Politico 's article subtitle tells you almost everything you need to know: The president’s supporters worry Biden can grab a larger slice of a critical voting bloc — when Trump can least afford departures from his base. Let's take a look at some interesting parts [most important highlighted]: It was June 10, 2008. Presumptive Democratic presidential nominee Barack Obama had gathered with dozens of evangelical leaders — many of them fixtures of the religious right — at the urging of campaign aides. If he could offer genuine glimpses of his own abiding faith, they insisted he could chisel away at the conservative Christian voting bloc. The strategy worked. Obama’s campaign stops at churches, sermon-like speeches and hi...

Mossad ‘in contact from very beginning’ with killers of Italian PM, reporter reveals

A roving reporter who covered Italy’s top politicians explains to The Grayzone how his country was reduced to a joint US-Israeli “aircraft carrier,” and raises troubling questions about an Israeli role in the killing of Prime Minister Aldo Moro. by Kit Klarenberg and Wyatt Reed Part 7 - Mossad continues Italian ops amid Gaza genocide Today, there is little trace of any pro-Arab tendencies in mainstream Italian politics. According to Salerno, the US and Israel no longer have any need to “destabilize Italy” as the country is economically “weak.” Rome’s government now is for all intents and purposes “a continuation, even an extension, of the old fascist regime,” he says, adding, “there are people in the government that have statues of Mussolini in their houses.” Prime Minister Giorgia Meloni has made clear she harbors little sympathy for the Palestinians, and little intention of recognizing a Palestinian state – even after it was revealed in November 2024 the Mossad ha...

the unbalanced evolution of homo sapiens

Search This Blog