'Grizzly Steppe': How Russia hacked the US election—intel report | Inquirer Technology

‘Grizzly Steppe’: How Russia hacked the US election—intel report

/ 11:39 AM December 30, 2016

People walk past the Consulate-General of Russia in San Francisco, California on December 29, 2016. President Barack Obama unleashed a barrage of retaliatory measures against Moscow for meddling in the US election, imposing sanctions on two intelligence agencies, expelling 35 agents and shuttering two Russian compounds inside the United States in New York and Maryland. The US government said the latter facility, a summer house a short drive from the US capital, is now used "for intelligence-related purposes."  / AFP PHOTO / Josh Edelson

People walk past the Consulate-General of Russia in San Francisco, California on December 29, 2016.
President Barack Obama unleashed a barrage of retaliatory measures against Moscow for meddling in the US election, imposing sanctions on two intelligence agencies, expelling 35 agents and shuttering two Russian compounds inside the United States in New York and Maryland. The US government said the latter facility, a summer house a short drive from the US capital, is now used “for intelligence-related purposes.”
AFP

WASHINGTON, United States — Russian intelligence agencies over the last two years blanketed Democratic Party targets with malicious emails and have likely continued such efforts after November’s elections, a US federal law enforcement report showed Thursday.

The report’s release coincided with an array of measures unveiled by Washington as retribution for what American officials have described as Moscow’s malicious efforts to tip the vote in favor of President-elect Donald Trump by stealing embarrassing information from Democratic Party operations and senior party members before releasing it to the news media.

Article continues after this advertisement

READ: Obama retaliates against Russia for election hacking

FEATURED STORIES

The report, produced jointly by the Federal Bureau of Investigation and Department of Homeland Security, traces the routes allegedly taken by hackers to infiltrate party operations, using targeted campaigns of “spearphishing,” or fraudulent emails designed to cause the recipients to reveal passwords and other information, and then stealing large volumes of email.

US officials refer to the Russian hacking efforts collectively as “Grizzly Steppe,” it said.

Article continues after this advertisement

The report corroborated or matched much of what had already been revealed by news media, which pointed to broad-based hacking by outfits such as APT 28 for “advanced persistent threat” tied to the Russian military intelligence body known as GRU, and APT 29, which may be associated with the FSB, or Russian federal security service.

Article continues after this advertisement

“This activity by Russian intelligence services is part of a decade-long campaign of cyber-enabled operations directed at the US government and its citizens,” DHS and FBI said in a joint statement with the Office of the Director of National Intelligence, which oversees the sprawling US intelligence community.

Article continues after this advertisement

READ: Russia vows ‘reprisals’ over US sanctions

US intelligence officials in October formally accused Russia of responsibility for the hacking but have since reportedly been at pains to provide evidence without compromising their own intelligence collection.

Article continues after this advertisement

The report contained technical specifications and IP addresses that the authors said network administrators could use to identify malicious activity as well as a set of recommendations for hardening networks against attack.

According to the report, in mid-2015 APT 29 used legitimate internet domains from US educational institutions and other organizations to host malware and send spearphishing emails to more than 1,000 accounts, including some belonging to US officials, successfully stealing email in bulk from several accounts.

In the spring of 2016, APT 28 also attacked, tricking victims into changing their emails on a fake website hosted by APT 28.

The New York Times reported this month that APT 28 stole emails belonging to John Podesta, then the chairman of Democrat Hillary Clinton’s presidential campaign, and also penetrated computers used by the Democratic National Committee as well as the campaigning arm of Democrats in the House of Representatives.

“The US government assesses that information was leaked to the press and publicly disclosed,” Thursday’s report said.

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

“Actors likely associated with (Russian intelligence services) are continuing to engage in spearphishing campaigns, including one launched as recently as November 2016, just days after the US election.” CBB

TOPICS: Donald Trump, Grizzly Steppe, hacking, Russia, technology, US, US Elections
TAGS: Donald Trump, Grizzly Steppe, hacking, Russia, technology, US, US Elections

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

© Copyright 1997-2024 INQUIRER.net | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies. Learn more here.