Reuters reports: U.S. intelligence agencies obtained what they considered to be conclusive evidence after the November election that Russia provided hacked material from the Democratic National Committee to WikiLeaks through a third party, three U.S. officials said on Wednesday.
U.S. officials had concluded months earlier that Russian intelligence agencies had directed the hacking, but had been less certain that they could prove Russia also had controlled the release of information damaging to Democratic presidential candidate Hillary Clinton.
The timing of the additional intelligence is important because U.S. President Barack Obama has faced criticism from his own party over why it took his administration months to respond to the cyber attack. U.S. Senate and House leaders, including prominent Republicans, have also called for an inquiry.
At the same time, President-elect Donald Trump has questioned the U.S. intelligence community’s conclusion that Russia tried to help his candidacy and hurt Clinton’s. Russia has denied the hacking allegations.
A U.S. intelligence report on the hacking was scheduled to be presented to Obama on Thursday and to Trump on Friday, though its contents were still under discussion on Wednesday, officials said. [Continue reading…]
Category Archives: hacking
The FBI never asked for access to hacked computer servers
BuzzFeed reports: The FBI did not examine the servers of the Democratic National Committee before issuing a report attributing the sweeping cyberintrusion to Russia-backed hackers, BuzzFeed News has learned.
Six months after the FBI first said it was investigating the hack of the Democratic National Committee’s computer network, the bureau has still not requested access to the hacked servers, a DNC spokesman said. No US government entity has run an independent forensic analysis on the system, one US intelligence official told BuzzFeed News.
“The DNC had several meetings with representatives of the FBI’s Cyber Division and its Washington (DC) Field Office, the Department of Justice’s National Security Division, and U.S. Attorney’s Offices, and it responded to a variety of requests for cooperation, but the FBI never requested access to the DNC’s computer servers [italics his],” Eric Walker, the DNC’s deputy communications director, told BuzzFeed News in an email.
The FBI has instead relied on computer forensics from a third-party tech security company, CrowdStrike, which first determined in May of last year that the DNC’s servers had been infiltrated by Russia-linked hackers, the U.S. intelligence official told BuzzFeed News.
“CrowdStrike is pretty good. There’s no reason to believe that anything that they have concluded is not accurate,” the intelligence official said, adding they were confident Russia was behind the widespread hacks.
The FBI declined to comment.
“Beginning at the time the intrusion was discovered by the DNC, the DNC cooperated fully with the FBI and its investigation, providing access to all of the information uncovered by CrowdStrike — without any limits,” said Walker, whose emails were stolen and subsequently distributed throughout the cyberattack.
It’s unclear why the FBI didn’t request access to the DNC servers, and whether it’s common practice when the bureau investigates the cyberattacks against private entities by state actors, like when the Sony Corporation was hacked by North Korea in 2014.
BuzzFeed News spoke to three cybersecurity companies who have worked on major breaches in the last 15 months, who said that it was “par for the course” for the FBI to do their own forensic research into the hacks. [Continue reading…]
What do intelligence agencies mean when they express a ‘high confidence level’ in an intelligence finding?
In an interview with former CIA Acting Director Michael Morell, Suzanne Kelly asks: With the understanding that sources and methods need to be kept secret in order for an intelligence organization to be able to effectively do its job, can you give a sense of how rigorous a source is vetted by an intelligence agency? It’s not like they are taking the first thing they hear and calling it intelligence, right? Can you give us an idea of how rigorously information is checked before it is presented to the President?
Morell: The analytic process itself is fact-based. It’s rigorous from the perspective of the analyst who is doing the work, and it is, as you know, reviewed by a large number of people, including other analysts in the agency in which you’re working, other analysts in other intelligence community agencies, as well as your superiors. In the case of a significant judgment like the one we’re talking about, it goes to the very top of the intelligence community. So I’m sure that (Director of National Intelligence) Jim Clapper, (CIA Director) John Brennan, and the other leaders of the Intelligence Community have paid very close attention and have looked very closely at the judgments and how they were arrived at and asked a lot of questions, sent people back to the drawing board to look at this or look at that, so that’s point number one.
Point number two is, since the Iraq war, the Intelligence Community has put a huge amount of focus on stating their level of confidence in a judgment that they make. It turns out that the real mistake in the Iraq war was not the judgment that they came to, but the fact that if they had really thought about it, the analysts would have only said that they only had low confidence in that judgment that Saddam had weapons of mass destruction. That would have been a completely different message, right?
That was a mistake, so the lesson learned from Iraq was to really focus on your level of confidence in the judgment you’re making. ‘Not only do I think its going to rain tomorrow, but I have high confidence in that,’ or ‘It’s going to rain tomorrow but you guys have to know that I only have low confidence in that.’ That has become a big focus. What really caught my attention in the leaks that came out about the CIA’s judgment about what Putin was trying to achieve in his interference in the election is that the analysts applied ‘high confidence’ to that judgment. What that says to me, because we don’t attach high confidence levels to just any judgment, very few judgments actually have a high confidence level, so to get that, you have to have more than one source of data. I think we’re looking at multiple sources of data here, and you have to have something that is stronger than just a circumstantial case. I think you have to have some direct evidence, so I think we have some direct evidence.
The stuff that’s being talked about publicly, is all stuff that doesn’t really damage sources and methods, and that’s stuff that seems to be circumstantial, right? How do you know what Russian intentions are simply from the fact that they hacked the DNC, right? It’s the stuff that takes you directly to the top and directly to Putin’s intentions that probably have very sensitive sources and methods involved, and that’s why you’re not hearing anything about them.
So when the CIA says it has high confidence that they not only interfered in the election, but they did with the intent of helping Trump and hurting Clinton, I’d put very high stock in that for the two reasons we just talked about. [Continue reading…]
The U.S. doesn’t have a problem with Russia. It has a problem with Vladimir Putin
Garry Kasparov writes: When the entire U.S. intelligence community united to accuse Russia of tampering in the 2016 presidential election, it seemed redundant to later add that Vladimir Putin was directly involved. Nothing significant happens in Russia, and no action is taken by Russia, without the knowledge of the man who has held total power there for 17 years, first as president and later as unchallenged dictator. Having steadily eliminated every form of real political and social opposition in Russia, Putin turned his attacks on the foreign powers that could — should they decide to act — weaken his grip.
The United States, in other words, doesn’t have a problem with Russia — it has a problem with Putin.
And instead of deterrence, President Obama continues the policy of belated responses that has enabled Putin’s steady escalation of hostile acts. The sanctions against Russian intelligence assets that the White House announced last Thursday, while welcome, left me searching for a Russian equivalent for the proverb “closing the barn door after the horse is gone.”
With Putin’s background as a career KGB officer, he takes a particular interest in operations dealing with that organization’s specialties of disinformation and manipulation. The KGB is called the FSB these days, a makeover that made sense after the Soviet Union collapsed in 1991, but under Putin it is as aggressive as ever in its mission of infiltrating and destabilizing the West. More aggressive, in fact, because Putin is not constrained by national interests or global alliances the way the Soviet leadership was. There is no consideration of what is or is not good for Russia, or for Russians, only what is best for him and his close circle of oligarch elites. The 2012 U.S. adoption of the Magnitsky Act, targeting Russian officials tied to criminal repression, was answered by banning the adoption of Russian orphans by Americans. Western sanctions over Putin’s illegal annexation of Crimea were met by boycotting many foreign goods, harming Russian businesses and consumers — to the perverse point of physically destroying thousands of tons of smuggled food in a country where many millions are battling hunger and poverty. Putin’s strategy is to get Russians to blame the free world by further punishing Russians himself. This can be countered only by being for Russia, but against Putin. [Continue reading…]
Julian Assange’s non-denial denial on Russian interference in the U.S. election
On Saturday, Donald Trump said he knew “things that other people don’t know” about the hacking, and that the information would be revealed “on Tuesday or Wednesday.”
It’s widely believed that the “revelation” Trump was alluding to would come from Julian Assange in an interview the Wikileaks founder did with Sean Hannity that aired on Fox News last night.
During that interview, Hannity pressed Assange on the question of Russian involvement in the hacking:
Assange: There is one person in the world and I think it’s actually only one, who knows exactly what is going on with our publications and that’s me.
Hannity: Can you say to the American people, unequivocally, that you did not get this information about the DNC, John Podesta’s emails — can you tell the American people 1,000% you did not get it from Russia [Assange interjects “yes”] or anybody associated with Russia?
Assange: We can say, have said repeatedly over the last two months that our source is not the Russian government and it is not [a] state party.
Assange chooses his words very carefully and for him to provide an unequivocal denial of Russian involvement he had no need to rephrase Hannity’s question. He could have simply responded that his source neither is nor was associated with Russia.
It has always been reasonable to assume that Russia would provide Wikileaks with plausible deniability by using an intermediary who was not overtly a state party or having easily identifiable ties to the Russian government and yet Assange declined to say that his source is/was not associated with Russia. The source might not be a “state party” (however Assange defines that expression) and yet, even now, Assange has not ruled out a Russian association.
Some day Assange may find himself on trial and be pressed on questions about what he did or did not know about his sources. As categorical as he might want statements he makes now to sound, he also most likely wants to leave himself wiggle room so that in the future he can still claim, “I didn’t know.” His concern then (and now) being to avoid being accused of knowingly trying to subvert an election by serving as an agent of a foreign power.
As for his professed dedication to truth-telling, it’s noteworthy that in the course of the interview, Assange repeatedly distorts the hacking narrative provided by the U.S. government by saying the Russia has been accused of hacking voting machines — an accusation that on the few occasions it has been made has swiftly been denied by government officials. In this, as he has often done so in the past, Assange shows that prizes the value not only of information but also disinformation.
Trump alleges delay in his briefing on ‘so-called’ Russian hacking; U.S. official says there wasn’t one
The "Intelligence" briefing on so-called "Russian hacking" was delayed until Friday, perhaps more time needed to build a case. Very strange!
— Donald J. Trump (@realDonaldTrump) January 4, 2017
The Washington Post reports: A U.S. official disputed that there had been any delay in delivering the briefing that Trump requested on Russia, saying that high-level U.S. intelligence officials are scheduled to meet with the president-elect in New York on Friday.
The official said that Trump did receive a regular intelligence briefing on Tuesday, and raised the possibility of confusion on the part of his transition team or schedulers.
“It’s possible that his team has some scheduling disconnect” and that “whatever he received today didn’t meet his expectations,” the official said, speaking on the condition of anonymity to discuss sensitive intelligence matters. But, the official said, the fuller briefing on Russia’s alleged election hacking was never scheduled to occur Tuesday, and that plans for a fuller Friday briefing have been in place for several days.
The officials expected to take part in that session include Director of National Intelligence James R. Clapper, Jr., CIA Director John Brennan, FBI Director James Comey and the head of the National Security Agency, Adm. Mike Rogers. [Continue reading…]
The Wall Street Journal reports: In Mr. Trump’s Twitter post Tuesday evening, he used quotation marks in such a way that suggests he doesn’t accept the intelligence community’s conclusions.
“The ‘Intelligence’ briefing on so-called ‘Russian hacking’ was delayed until Friday, perhaps more time needed to build a case,” he wrote. “Very strange!”
Shortly after Mr. Trump issued his tweet, Sen. Mark Warner (D., Va.), the ranking Democrat on the Senate Intelligence Committee, responded on Twitter and said, “really wish we saw more [president-elect] respect for our intelligence professionals.” [Continue reading…]
Russian government hackers do not appear to have targeted Vermont utility, say people close to investigation
The Washington Post reports: As federal officials investigate suspicious Internet activity found last week on a Vermont utility computer, they are finding evidence that the incident is not linked to any Russian government effort to target or hack the utility, according to experts and officials close to the investigation.
An employee at Burlington Electric Department was checking his Yahoo email account Friday and triggered an alert indicating that his computer had connected to a suspicious IP address associated by authorities with the Russian hacking operation that infiltrated the Democratic Party. Officials told the company that traffic with this particular address is found elsewhere in the country and is not unique to Burlington Electric, suggesting the company wasn’t being targeted by the Russians. Indeed, officials say it is possible that the traffic is benign, since this particular IP address is not always connected to malicious activity.
The investigation by officials began Friday, when the Vermont utility reported its alert to federal authorities, some of whom told The Washington Post that code associated with the Russian hackers had been discovered within the system of an unnamed Vermont utility. On Friday evening, The Post published its report, and Burlington Electric released a statement identifying itself as the utility in question and saying the firm had “detected the malware” in a single laptop. The company said in its statement that the laptop was not connected to its grid systems.
The Post initially reported incorrectly that the country’s electric grid had been penetrated through a Vermont utility. After Burlington Electric released its statement saying that the potentially compromised laptop had not been connected to the grid, The Post immediately corrected its article and later added an editor’s note explaining the change. [Continue reading…]
Nothing happened. It happens all the time
It’s a strange line of argument but surprisingly commonplace: to first vigorously deny something has happened, but to then say that if it did happen it’s perfectly normal.
When it comes to the issue of Russian interference in American democracy — an issue that should be of real concern to every American citizen — the deniers are mostly in the same position as people who deny climate change.
Assuming a stance of assiduous skepticism they plead that insufficient evidence has been presented to prove the case. As often applies to climate deniers, this professed skepticism seems intended to obscure the fact that the skeptic has a deep investment in one side of the argument.
At the conclusion of his latest diatribe against the mainstream media, Glenn Greenwald writes:
Since it is so often distorted, permit me once again to underscore my own view on the broader Russia issue: Of course it is possible that Russia is responsible for these hacks, as this is perfectly consistent with (and far more mild than) what both Russia and the U.S. have done repeatedly for decades.
But given the stakes involved, along with the incentives for error and/or deceit, no rational person should be willing to embrace these accusations as Truth unless and until convincing evidence has been publicly presented for review, which most certainly has not yet happened.
“[W]hat both Russia and the U.S. have done repeatedly for decades” has a vagueness worthy of Donald Trump, but Greenwald’s drift is clear: if the DNC hackings were carried out by Russia, it’s par for the course — nothing unusual, so let’s just move on.
Yet he concedes there are “stakes involved.” Indeed there are, not only because interference by a foreign power played a role in Donald Trump becoming the next U.S. president, but because this puts Greenwald and his close associate and Moscow resident, Edward Snowden, in a very awkward position. Increasingly they look less like independent dissidents speaking truth to power, and more like de facto sympathizers with a hostile power.
During the Bush era, critics of the war in Iraq and of the neoconservative agenda broadly accepted the view that America’s destructive involvement in the Middle East could ultimately be reduced to a single issue: control of the global oil supply.
Strangely, many of those same critics while now witnessing the power of oil flexing its muscles more strongly than ever seen before, would rather focus their attention on the perennial bugaboos of Washington, the mainstream media, the intelligence agencies, and American power.
The DNC was hacked, Wikileaks fed the media with a steady stream of unstartling emails, Trump wildly distorted their contents, and now the most Russia-friendly president ever is about to take office, leading an administration loaded with individuals tied to the oil industry.
Russia, the world’s number-one oil producer, eagerly awaits improved relations with the U.S. not only in the form of sanctions relief but also as Washington predictably tries to slam the brakes on the transition to renewable energy.
Vladimir Putin, who nowadays sees himself as the most powerful man in the world, has reason to be smiling with glee, while the hacking skeptics apparently think he’s merely the beneficiary of a string of good luck and that broadly speaking this is all just business as usual.
You’ve got to be kidding!
The oil industry, Washington, and Moscow will soon be marching in lockstep, while Greenwald directs his audience to the occasional piece of sloppy journalism.
Those who once warned about their dangers are now themselves wielding the weapons of mass distraction.
The GRU: Putin’s no-longer-so-secret weapon
Michael Weiss writes: It says something about the ingrained rivalry between the various fiefdoms of Russian espionage that the founder of Soviet military intelligence, Leon Trotsky, had an ice-ax driven into his head in Mexico by an agent of Stalin’s foreign intelligence service.
Ever since, in the long dark history of Soviet and Russian spookery the military’s Main Intelligence Directorate, or GRU, has been overshadowed by a succession of more powerful, famous and infamous organizations known by a succession of acronyms, most famously as the KGB and, since the collapse of the Soviet Union, the FSB and SVR.
But on Thursday the GRU suddenly emerged from the shadows when the waning Obama administration imposed sanctions on the four top-ranking GRU officers for their roles hacking the private email correspondence of the Democratic National Committee and Hillary Clinton’s campaign chief John Podesta. The entire spy agency, along with the FSB, was also sanctioned institutionally.
The Glavnoye razvedyvatel’noye upravleniye, as it is formally known, was founded in 1920, assuming the mantle of its prior incarnation, the Registration Directorate for Coordination of Efforts of All Army Intelligence Agencies, after the Red Army’s fiasco invasion of Poland that year. Its first director, Yan Berzin, was appointed by Felix Dzerzhinsky, the inaugural head of Lenin’s Cheka. Yet somehow, unlike the KGB, the GRU managed to endure the rocky transition from communism to democracy to authoritarian kleptocracy with its acronym intact. [Continue reading…]
Trump: ‘I know a lot about hacking’
The New York Times reports: President-elect Donald J. Trump, expressing lingering skepticism about intelligence assessments of Russian interference in the election, said on Saturday evening that he knew “things that other people don’t know” about the hacking, and that the information would be revealed “on Tuesday or Wednesday.”
Speaking to a handful of reporters outside his Palm Beach, Fla., club, Mar-a-Lago, Mr. Trump cast his declarations of doubt as an effort to seek the truth.
“I just want them to be sure because it’s a pretty serious charge,” Mr. Trump said of the intelligence agencies. “If you look at the weapons of mass destruction, that was a disaster, and they were wrong,” he added, referring to intelligence cited by the George W. Bush administration to support its march to war in 2003. “So I want them to be sure,” the president-elect said. “I think it’s unfair if they don’t know.”
He added: “And I know a lot about hacking. And hacking is a very hard thing to prove. So it could be somebody else. And I also know things that other people don’t know, and so they cannot be sure of the situation.”
When asked what he knew that others did not, Mr. Trump demurred, saying only, “You’ll find out on Tuesday or Wednesday.” [Continue reading…]
Evidence of Russian malware found on U.S. electrical company laptop
The Verge reports: A utilities company in Vermont has detected evidence of Russian malware, according to a report this evening from The Washington Post, which cited anonymous US officials. The code is said to be connected to a Russian hacking outfit the US government has named Grizzly Steppe.
According to the company, later revealed to be the Burlington Electric Department, the code linked to Grizzly Steppe was found on just one laptop, and the laptop wasn’t connected to the electrical grid — allaying earlier fears that Russia had hacked into the nation’s electrical grid. Owned by the city of Burlington, the utility firm confirmed the breach in a post on its Facebook page.
“The grid is not in danger,” Vermont Public Service Commissioner Christopher Recchia told the Burlington Free Press. “The utility flagged it, saw it, notified appropriate parties and isolated that one laptop with that malware on it.” [Continue reading…]
Putin says he won’t deport U.S. diplomats as he looks to cultivate relations with Trump
The Washington Post reports: In a rare break from the diplomatic tradition of reciprocal punishment, Russian President Vladimir Putin said Friday he would not deport U.S. diplomats in a tit-for-tat response to U.S. hacking sanctions, as Russia looks to cultivate relations with the incoming administration of President-elect Donald Trump.
“We won’t create problems for American diplomats,” Putin said in a statement released by his press service Friday afternoon, adding that Russia retained the right to punish U.S. diplomats in the future. He said he would “plan further steps for restoring the Russian-American relationship based on the policies enacted by the administration of President Donald Trump.”
The surprising decision came just hours after the Russian Foreign Ministry suggested that Putin expel 35 U.S. diplomats and close two properties used by the U.S. Embassy in Moscow as part of a growing diplomatic slugfest over Russia’s interference in the 2016 U.S. presidential election.The measures were suggested one day after President Obama announced he would expel 35 Russian diplomats from the United States and order the closure of Russian-owned facilities on Maryland’s Eastern Shore and on Long Island in New York believed to have been used for intelligence purposes. [Continue reading…]
How Donald Trump served as a willing accomplice in the Russian email hacking operation
David Frum writes: The content of the Russian-hacked emails was actually remarkably unexplosive. Probably the biggest news was that Hillary Clinton had expressed herself in favor of a hemispheric common market in speeches to Wall Street executives. Otherwise, we learned from them that some people at the Democratic National Committee favored a lifelong Democrat for their party’s nomination over a socialist interloper who had joined the party for his own convenience. We learned that many Democrats, including Chelsea Clinton, disapproved of the ethical shortcomings of some of the people in Bill Clinton’s inner circle. We learned that Hillary Clinton acknowledged differences between her “public and private” positions on some issues. None of this even remotely corroborated Donald Trump’s wild characterizations of the Russian-hacked, Wikileaks-published material.
These Wikileaks emails confirm what those of us here today have known all along: Hillary Clinton is the vessel for a corrupt global establishment that is raiding our country and surrendering our sovereignty. This criminal government cartel doesn’t recognize borders, but believes in global governance, unlimited immigration, and rule by corporations.
Or:
The more emails WikiLeaks releases, the more lines between the Clinton Foundation, the secretary of state’s office and the Clintons’ personal finances—they all get blurred … I mean, at what point—at what point do we say it? Hillary Clinton is the most corrupt person ever to seek the office of the presidency.
Without Trump’s own willingness to make false claims and misuse Russian-provided information, the Wikileaks material would have deflated of its own boringness. The Russian-hacked material did damage because, and only because, Russia found a willing accomplice in the person of Donald J. Trump. [Continue reading…]
In the age of Trump nobody knows exactly what is going on
The New York Times reports: President-elect Donald J. Trump edged away on Thursday from his dismissive stance on American assessments of Russian hacking, saying he would meet with intelligence officials next week “to be updated on the facts” after the Obama administration announced sanctions against Moscow.
In a brief written statement, Mr. Trump’s first response to President Obama’s sweeping action against Russia, the president-elect reiterated his call for “our country to move on to bigger and better things.” But he said that, “in the interest of our country and its great people,” he would get the briefing “nevertheless.”
The statement to some extent echoed his remarks late Wednesday, when he was asked at his Mar-a-Lago estate about Mr. Obama’s plan to take action against Russia. In otherwise opaque comments, Mr. Trump appeared to concede the need to make computers more secure.
“I think we ought to get on with our lives,” he said. “I think that computers have complicated lives very greatly. The whole age of computer has made it where nobody knows exactly what is going on. We have speed, we have a lot of other things, but I’m not sure we have the kind, the security we need.” [Continue reading…]
How to create a distraction: Give short vague answers to questions while standing alongside a flag-waving Don King.
The FBI/DHS report on Russian malicious cyber activity
The FBI/DHS reports: This Joint Analysis Report (JAR) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This document provides technical details regarding the tools and infrastructure used by the Russian civilian and military intelligence Services (RIS) to compromise and exploit networks and endpoints associated with the U.S. election, as well as a range of U.S. Government, political, and private sector entities. The U.S. Government is referring to this malicious cyber activity by RIS as GRIZZLY STEPPE.
Previous JARs have not attributed malicious cyber activity to specific countries or threat actors. However, public attribution of these activities to RIS is supported by technical indicators from the U.S. Intelligence Community, DHS, FBI, the private sector, and other entities. This determination expands upon the Joint Statement released October 7, 2016, from the Department of Homeland Security and the Director of National Intelligence on Election Security.
This activity by RIS is part of an ongoing campaign of cyber-enabled operations directed at the U.S. government and its citizens. These cyber operations have included spearphishing campaigns targeting government organizations, critical infrastructure entities, think tanks, universities, political organizations, and corporations leading to the theft of information. In foreign countries, RIS actors conducted damaging and/or disruptive cyber-attacks, including attacks on critical infrastructure networks. In some cases, RIS actors masqueraded as third parties, hiding behind false online personas designed to cause the victim to misattribute the source of the attack. This JAR provides technical indicators related to many of these operations, recommended mitigations, suggested actions to take in response to the indicators provided, and information on how to report such incidents to the U.S. Government. [Continue reading…]
Obama targets Putin’s spies over DNC hack
Michael Weiss reports: In the last news conference of his administration two weeks ago U.S. President Barack Obama said that he warned Russian President Vladimir Putin to refrain from any further hacking of the U.S. election. In Obama’s words, he told Putin to “cut it out” during a tense tête-à-tête at a summit in China just weeks before the national vote that saw a prominent Putin-flatterer win the White House. Obama intimated that the hacking was also done with Putin’s express permission, if not indeed ordered by him personally. The goal of the digital tradecraft, the CIA and the FBI now agree, was to further the election of Donald Trump.
Whether the former KGB spy accused by the British government of “probably” approving the murderous irradiation of a Russian dissident at a central London hotel was impressed by “cut it out” remains unclear. But intensified sanctions may be a very different matter. And the stage is now set in the United States for a potential showdown between the Republican controlled Congress and the new Putin-apologist Republican president.
On Thursday, Obama announced that by executive order he has sanctioned nine entities and individuals over the Russian government’s alleged cyber-espionage against the Democratic Party in general and Hillary Clinton’s presidential campaign in particular. He has also given 35 unnamed Russian intelligence operatives 72 hours to leave the United States, and has ordered restricted access to two Russian-government-run compounds, one in Long Island, the other in Maryland.
The Obama administration sanctioned both Russia’s domestic and military intelligence services, the FSB and GRU, respectively, on Thursday. The U.S. also targeted four top-ranking officials of the latter organization, including its current chief, Igor Valentinovich Korobov, and three of his subordinates — Sergey Aleksandrovich Gizunov, Igor Olegovich Kostyukov, and Vladimir Stepanovich Alekseyev. None of these men is known to be a frequent or even occasional traveler to the United States, however, and so the punishment is largely symbolic. [Continue reading…]
Obama administration is close to announcing measures to punish Russia for election interference
The Washington Post reports: The Obama administration is close to announcing a series of measures to punish Russia for its interference in the 2016 presidential election, including economic sanctions and diplomatic censure, according to U.S. officials.
The administration is finalizing the details, which also are expected to include covert action that will probably involve cyber-operations, the officials said. An announcement on the public elements of the response could come as early as this week.
The sanctions portion of the package culminates weeks of debate in the White House on how to revise a 2015 executive order that was meant to give the president authority to respond to cyberattacks from overseas but that did not cover efforts to influence the electoral system.
The Obama administration rolled the executive order out to great fanfare as a way to punish and deter foreign hackers who harm U.S. economic or national security.
The threat to use it last year helped wring a pledge out of China’s president that his country would cease hacking U.S. companies’ secrets to benefit Chinese firms. [Continue reading…]
Cybersecurity firm finds evidence that Russian military unit was behind DNC hack
The Washington Post reports: A cybersecurity firm has uncovered strong proof of the tie between the group that hacked the Democratic National Committee and Russia’s military intelligence arm — the primary agency behind the Kremlin’s interference in the 2016 election.
The firm CrowdStrike linked malware used in the DNC intrusion to malware used to hack and track an Android phone app used by the Ukrainian army in its battle against pro-Russia separatists in eastern Ukraine from late 2014 through 2016.
While CrowdStrike, which was hired by the DNC to investigate the intrusions and whose findings are described in a new report, had always suspected that one of the two hacker groups that struck the DNC was the GRU, Russia’s military intelligence agency, it had only medium confidence.
Now, said CrowdStrike co-founder Dmitri Alperovitch, “we have high confidence” it was a unit of the GRU. CrowdStrike had dubbed that unit “Fancy Bear.”
The FBI, which has been investigating Russia’s hacks of political, government, academic and other organizations for several years, privately has concluded the same. But the bureau has not publicly drawn the link to the GRU. [Continue reading…]