CIA hacking air-gapped networks?

US CIA-Crime-shop

US Central Intelligence Agency – Brutal Kangaroo


A newly released dump of intel by WikiLeaks details how the CIA developed a way to hack an air-gapped network using a USB and some creative malware. Technically speaking, this is not in anyway new information. It has always been known that one could hack an air-gapped network using a USB so as to either:

  1. Steal intel on the USB or;
  2. Download some type of malware so as to infect the network promoting the network to send out the requested data should the malware detect any open internet connection.

How does it work you ask?

The software consists of four specific applications:

Shattered Assurance

Drifting Deadline



And Finally my personal favorite, Brutal Kangaroo.

Shattered Assurance is the server-side of the code that forms the basis of the attack system and infects the USB drives that are plugged into an infected computer with the Drifting Deadline malware.

Once an infected thumb drive is plugged into a target computer that is set up to autorun its contents and is using Windows 7 as an operating system and running .Net 4.5, Drifting Deadline deploys Shadow malware onto the system.

Shadow is a much older piece of code that has both client and server versions and it is highly configurable for specific targets.

The operator can set it up to collect system data of up to 10% of the system’s memory, watermark all data it collects, and store it on an encrypted partition on the infected computer’s hard drive.

Once the infection has been achieved, Shadow will look for other connected systems and infect those too. It can be set up to put the pilfered data onto any new thumb drives that are installed in the system, or send it as a burst if it detects an open internet connection.

The final app in Brutal Kangaroo was once called Broken Promise, which is a tool used to examine the stolen data easily and quickly. Taken together, the Brutal Kangaroo suite could be very useful for defeating air-gapped machines and is certainly more feasible than more esoteric methods.

Or one can just get a job working for the NSA and walk out the door with data and intel. Take your pick right?

At any rate, this should not come as a huge surprise to anyone, you would expect the CIA an intelligence agency to have this sort of tool what does however surprise me is the vivid detail that WikiLeaks released about how the malware works, the data dump details just how each app works together in order to gain the needed or wanted access to intel.

I am all for transparency when it comes to our Governments, but at what point do we begin to question the amount of intel released to the public?

Some of the documentation released in the latest WikiLeaks dump could cause problems later down the road because it fell into the wrong hands and if someone modified one or all of the app’s capabilities making it a worldwide problem like for instance with WannaCry?

Sometimes in our effort to keep our Government’s honest, we manage to create more of a problem than we do good. Anything having to do with Cyber-Security, Cyber-Warefare, Malware and the like, being detailed and released to the world under the guise of keeping our Government’s in check, is simply not accomplishing those efforts.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter



U.S. National Security Agency Shuts down Honda Factory


NSA – WannaCry/Wcry ransome worm

Well folks in the gift that just keeps on giving, the NSA has managed to shut down a Honda Factory after they found the WannaCry/Wcry ransome worm in its networks.


Not that the NSA directly shut the factory down, it was however indirect because WannaCry/Wcry was derived after all at and by the NSA.

According to a report released today by Reuters, the automaker had to shut down its Sayama plant northwest of Tokyo on Monday after finding that WCry had affected networks across Japan, North America, Europe, China, and other regions.


Forget Russian hacking, look at all the damage the NSA has managed to cause. Which we would not have known about had it not been for the Shadow Brokers, who obtained the code for this beauty and released it to the public back in April.

WannaCry/Wcry is basically a weaponized exploit developed, used, by the NSA. It was also in shocking news, stolen from the NSA.

Honda officials for some odd reason did  explain how or why engineers found WCry in their networks 37 days after the kill switch was activated although, it is highly possible that engineers had mistakenly blocked access to the kill-switch domain.

That kill switch by the way was created by sheer luck. A security researcher who had been playing around and acting out of curiosity just so happened to register a mysterious domain name contained in the WCry code that subsequently acted as a global kill switch which immediately halted the self-replicating attack.

I’m more than sure someone is developing ways around that sort of kill switch, I mean if you are in the business of stealing data, and shutting the internet down, power grids, hospitals and the like, you wouldn’t want to be stopped, so advertising the fact that some guy was able to create a kill switch by accident, only entices new developers to create ways around any type of kill switch.

At any rate, here’s to the NSA for not managing to keep it’s top secret weaponized exploits from falling into the the wrong hands or rather from falling out of it’s very own front door.

Does the NSA even know about all the of intel has left it’s facility or will we have to wait on someone like Shadow Brokers to inform us, the hard way…again?

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter









James Comey – Political Asylum in Russia


Vladimir Putin – James Comey – Donald Trump


“Putin Trolls Democrats, U.S. Media: Offers Comey Asylum” | LifeZette

“Master Troll Vladimir Putin Offers Comey Political Asylum” – NYMag

“Putin brutally trolls Trump, offers James Comey political asylum” – Techly

“Vladimir Putin Trolls James Comey Over ‘Strange’ Memo Leak “| HuffPost

Just to name a few of the headlines recently, my question is, just reading the headlines who exactly is Vladimir trolling, Trump or James? Maybe both perhaps?


Rumors are running that Vladimir Putin has ever so graciously offered political asylum to former FBI director James Comey, rumors that some media outlets have dramatically reported as unconfirmed sarcasm or  joking, while leaving the subtle hint that they just don’t know if Vladimir was serious or not.

The truth is, Vladimir made an offhand statement which was rather cheeky if you will, about if former director James Comey needed political asylum he would get it from mother Russia.

Of course he was not serious, he is growing weary of the accusations that Russia meddled in the 2016 Presidential Elections.

What’s more is that James is a good old American Irish Catholic, he is pretty proud of himself and the country which he has served. He is not leaving anytime soon and if he were, I doubt he’d head to Russia.

Putin also likened James Comey’s memo leaking to that of James Snowden’s whistleblowing.

“It looks weird when the chief of a security agency records his conversation with the commander-in-chief and then hands it over to media via his friend,” Putin said.”What’s the difference then between the FBI director and Mr Snowden?”

“In that case, he’s more of a rights campaigner defending a certain position than the security agency chief,” the Russian President continued. “It makes him not a security service director, but a civil activist advocating a certain belief.

“By the way, if he faces any kind of prosecution in this regard, we will provide political asylum in Russia for him as well. He should be aware of that.

Putin has also said of the allegations “They (the United States) meddle in all other countries affairs, what did they expect?”

Either way, he made a couple of pretty clear points.

James leaked information in an effort to be sure that a special counsel would be put into place so as to investigate allegations of Trump/Russian ties prior to the 2016 Presidential Election.

James got exactly what he intended out of the deal or rather leak.

And that other point?

To be completely honest as well, the point is simple, fake news, misleading information, guiding a public in one direction or another when it comes to electing a leader?  Well our very own Government, the United States Government has been doing that to foreign states for decades if not longer.

So I hate to say it, but I am with Putin on this one, what does our Government expect?


It is a tit for a tat right?

Putin-Trolls-Donald-Trump-Crime- Shop

That is of course unless Trump and/or his goon crew had any part of helping any foreign state meddle in the 2016 Presidential elections.

If that were the case then that opens up an entirely new jar of worms.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter


Chicago – Shot and killed, 286, shot and wounded 1335


Chicago – where it pays to either shoot or become a corrupt cop

I was reading an article over the weekend about the city of Chicago facing another lawsuit surrounding a police officer who is accused of framing 51 individuals.


What’s more is that the citizens of Chicago have been complaining about police corruption, abuse and of having been set up by the very men and women in uniform who have sworn to protect and serve them, for years.

The problem is that no one was listening until near the end of the Obama administration and by that time, the damage had already been done.

Jose Montanez, served 23 years for a murder that he did not commit.

He filed a federal civil rights lawsuit against former Det. Reynaldo Guevara, the city of Chicago, several other officers and prosecutors.

According to Jose, Det. Reynaldo Guevara and his partner, one Ernest Halvorsen, gave information about a 1993 murder of a factory worker to a jailhouse informant, who then made statements implicating Jose and two other men in the crime.

Jose also alleges that the then Prosecutors Matthew Coghlan and John Dillon knew the informant’s testimony was false but, didn’t really care, all they wanted was a conviction which is what any prosecutor wants. Enough sometimes to look the other way when investigators have oh, set someone up.

Jose is one of 51 individuals  who have lined up accusing detective Guevara of framing them for murders from the 1980s through the 2000s in the predominantly Latino neighborhood of Chicago’s Humboldt Park.

In looking at the number of shootings in Chicago, I had to sit back and wonder how does a city clean up the drug related shootings and sheer volume of violence when the city itself simply cannot employ police who are actually I don’t know, upstanding?

Like the uniform and oath says they should be?

We’ve all seen the stories about corrupt Chicago police who were taxing drug dealers back in 16 right, so this setting up individuals for murder is not really a huge surprise.

Another issue that society faces is that our younger generations have a much different way of both processing information and thinking altogether.

So cleaning up Chicago of it’s crime and corrupt police simply cannot be accomplished as easily using old techniques. We must now think things through and include plans beyond just a plan A.


In any case in looking at this years shooting across the fine city of Chicago the break down, year to date is:

286 individuals shot and killed

1335 individuals have been shot and wounded

1621 individuals have been shot in Chicago so far this year

And Chicago has seen 305 homicides so far this year

How do you stop the violence when the very police tasked with stopping it are just as corrupt?

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter









Hass Avocado – the new Black Market Product


$300,000 Avocado Theft – Ventura, California

In a rather bizarre theft case, three men in Ventura, CA were arrested for stealing $300,000 worth of avocado, and no they were not stealing to make a huge batch of guac.

Avocado oddly enough can be purchased on the black market these days.


As it turns out Carlos Chavez, 28, Rahim Leblanc, 30 and Joseph Valenzuela, 38 who were arrested on Wednesday were stealing the avocado to make a little extra cash.

Apparently in California avocado is a pretty big product according to Sgt John Franchi who is with the Ventura county Sheriff’s Department.   

Sometime in late May, sheriff’s detectives decided to launch an investigation into allegations the men were receiving cash for the stolen avocados, said Sgt Franchi.

Odd right? Not so much, here’s why the trio decided rather than sell drugs to make money off of avocado. Which I guess sell just as well as any street drug.

Typically, a box of avocados which are grown in California, Mexico, New Zealand and Chile sells for $50, and in this case, the men were selling a box for $20 to $30 which is far below market value.

They of course had a little help from the employer they were working for unbeknownst, to the employer naturally. As it turns out they had been working at Mission Produce in Oxnard, roughly 60 miles outside of Los Angeles.

According to the latest and greatest by the Hass Avocado Board, the average sales price for an avocado was 89 cents each in January of this year and by March 19, the latest week of data reported, it had risen to $1.25 each, while avocados at Whole Foods in New York now sell for $2.50 each.

And by those numbers, one has to wonder it’s difficult to tell, who the real thieves really are?

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter









Amber  Alert- Thornton CO

Amber-Alert, Colorado-crime-shop.jpg

Amber Altert-Called off.

While we all received the Amber Alert hours, several hours after it should have been issued Thornton, PD, we all knew the worst already happened.  

It is a simple mathematical process.

I for instance have kids who come from a home of divorce, they tend to stick together through rough times including a thing like a rain storm. My Kids have stuck together through rain, blizzards, mountain lions and bears.

Do the math, Thornton PD, something about the steph-brothers story is not right. Kids going to the store, separated by a rain storm? Forgive me here but, Colorado does not in anyway shape or form see “rain storms” like in the south. 

My kids who came from a broken home, they always stuck together through the roughest of times.

Personally, I’d call in APD but it looks like Thornton wants an easy way out on this one.

The story told to the media is a farce.

Cristal M Clark

IOS users can find The Crime Shop on Apple News

@thecrimeshop on twitter