WikiLeaks has published a new batch of documents belonging to the Vault 7 leak, the last archive includes the documentation related to a tool dubbed Brutal Kangaroo used by the CIA for Microsoft Windows that targets air-gapped networks. The tool suite is composed of the following components: Drifting Deadline is the thumbdrive infection tool; Shattered Assurance is a server tool that handles automated infection of thumbdrives; Broken Promise is a postprocessor system used to analyze collected information. Shadow is the primary persistence mechanism (a stage 2 tool that is distributed across a closed network and acts as a covert command-and-control network)”]
Source: https://securityaffairs.co/wordpress/60322/hacking/brutal-kangaroo-cia.html