Attacks/Breaches

12/12/2016
03:40 PM
Connect Directly
Twitter
LinkedIn
Google+
RSS
E-Mail
50%
50%

CIA: Russian Hackers Aimed To Help Trump Win

Intelligence suggests Russia hacked the Republican National Committee but didn't leak its data, a sign experts say is indicative of broader plans to sway US election results.

The CIA is confident Russia's goal was to help Trump win the 2016 US Presidential election, the Washington Post reports.

US officials say intelligence agencies have determined which individuals, who have ties with the Russian government, provided WikiLeaks with hacked emails from the Democratic National Committee.

Officials say these individuals are known within the intelligence community and participants in a broader Russian-driven effort to boost Trump's campaign.

"It is the assessment of the intelligence community that Russia's goal here was to favor one candidate over the other, to help Trump get elected," reported a senior US official who was briefed on an intelligence presentation to US Senators. "That's the consensus view." 

The CIA presented its latest findings to lawmakers last week. Its conclusion is partially based on knowledge that Russians infiltrated the Republican National Committee but didn't leak its data, as it did following a series of attacks on the Democratic National Committee.

Experts are confident the Russians also hacked the RNC. However, Trump dismissed the discovery as "ridiculous" in a recent interview, and the RNC has consistently denied its networks were attacked.

If RNC systems were compromised and no information was released, it prompts some key questions about Russia's role in the election. Security experts have expressed concern for how Russia may be executing on objectives to influence US politics.

"Donald Trump was clearly the candidate in the Presidential race least problematic for Mr. Putin's aggressive foreign policy agenda," says John Herbst, director of the Dinu Patriciu Eurasia Center. "While it would be a stretch to say that Russian hacking gave Mr. Trump the election, it seems clear that it was designed to undermine Ms. Clinton and to enhance his chance of winning."

In the months leading up to Election Day, Russian nation-state hackers targeted the DNC and shared its documents via WikiLeaks, intelligence agencies confirmed. As campaigns came to a close, hackers reportedly associated with Russia targeted Hillary Clinton's campaign staffers with a series of phishing emails.

The DNC was able to catch bad actors with the help of security firm CrowdStrike, which implemented endpoint technology to monitor network activity.

"[We] were able to watch everything that the adversaries were doing while we were working on a full remediation plan to remove them from the network," explains CrowdStrike co-founder and CTO Dmitri Alperovitch.

President Obama has responded to the attacks on Democratic party websites with an order for US intelligence agencies to conduct a review of attacks related to the 2016 election. The goal is to understand what happened, take action, and share lessons learned with stakeholders.

It's a tall but important order, especially if foreign actors can exert this amount of control over a US election.

"US intelligence and law enforcement agencies have seen mounting evidence of an active Russian influence operation in the outcome of the 2016 US presidential election through cyber hacking and tampering," says Chenxi Wang, Ph.D., chief strategy officer at Twistlock.

Wang describes how this is "our new cyber reality" in which hacking and counter-hacking, whether for political or financial gain, is commonplace. This carries tremendous implications for a future of "digital weaponry" in which data may not be trusted.

"If we cannot trust the validity of electronic records (e.g., voting records), or if data is made to selectively favor one candidate vs. another, then it could very well threaten the foundation of our everyday lives," she explains. 

Wang, as well as government officials, says it's time for security officials to develop stronger defenses to address these risks.

"For years, foreign adversaries have directed cyberattacks at America's physical, economic, and military infrastructure, while stealing our intellectual property," reported the United States Senate Committee on Armed Services in a joint statement issued Dec. 11.

"Congress's national security committees have worked diligently to address the complex challenge of cybersecurity, but recent events show that more must be done," the Committee said.

Related Content:

Kelly Sheridan is the Staff Editor at Dark Reading, where she focuses on cybersecurity news and analysis. She is a business technology journalist who previously reported for InformationWeek, where she covered Microsoft, and Insurance & Technology, where she covered financial ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Wallet
50%
50%
Wallet,
User Rank: Apprentice
12/15/2016 | 5:48:47 AM
Re: Resurrection of McCarthyism
Totally agree, This is the way how big politics is made when you've got a professional paranoic spy as a president of the country with nuclear weapon. I really can't understand why they are still not isolated like North Korea.
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 9:33:31 PM
Twenty Motion
awesome stuff
rayray2016
100%
0%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:01:30 PM
Diabetes Destroyer Reviewsx
I dont really beleive any hacker tried to help trump
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:01:26 PM
The Fat Diminisher Reviewsx
This is a very good read up
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:00:48 PM
Diabetes Destroyer Reviewsx
I dont really beleive any hacker tried to help trump
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:00:17 PM
The Fat Diminisher Reviewsx
This is a very good read up
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 12:58:48 PM
nosmo_king
29%
71%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:44 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
nosmo_king
0%
100%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:40 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
nosmo_king
0%
100%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:39 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
Page 1 / 2   >   >>
More Than Half of Users Reuse Passwords
Curtis Franklin Jr., Senior Editor at Dark Reading,  5/24/2018
Is Threat Intelligence Garbage?
Chris McDaniels, Chief Information Security Officer of Mosaic451,  5/23/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11505
PUBLISHED: 2018-05-26
The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.
CVE-2018-6409
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
CVE-2018-6410
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
CVE-2018-6411
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.
CVE-2018-11500
PUBLISHED: 2018-05-26
An issue was discovered in PublicCMS V4.0.20180210. There is a CSRF vulnerability in "admin/sysUser/save.do?callbackType=closeCurrent&navTabId=sysUser/list" that can add an admin account.