Attacks/Breaches
12/12/2016
03:40 PM
Connect Directly
Twitter
LinkedIn
Google+
RSS
E-Mail
50%
50%

CIA: Russian Hackers Aimed To Help Trump Win

Intelligence suggests Russia hacked the Republican National Committee but didn't leak its data, a sign experts say is indicative of broader plans to sway US election results.

The CIA is confident Russia's goal was to help Trump win the 2016 US Presidential election, the Washington Post reports.

US officials say intelligence agencies have determined which individuals, who have ties with the Russian government, provided WikiLeaks with hacked emails from the Democratic National Committee.

Officials say these individuals are known within the intelligence community and participants in a broader Russian-driven effort to boost Trump's campaign.

"It is the assessment of the intelligence community that Russia's goal here was to favor one candidate over the other, to help Trump get elected," reported a senior US official who was briefed on an intelligence presentation to US Senators. "That's the consensus view." 

The CIA presented its latest findings to lawmakers last week. Its conclusion is partially based on knowledge that Russians infiltrated the Republican National Committee but didn't leak its data, as it did following a series of attacks on the Democratic National Committee.

Experts are confident the Russians also hacked the RNC. However, Trump dismissed the discovery as "ridiculous" in a recent interview, and the RNC has consistently denied its networks were attacked.

If RNC systems were compromised and no information was released, it prompts some key questions about Russia's role in the election. Security experts have expressed concern for how Russia may be executing on objectives to influence US politics.

"Donald Trump was clearly the candidate in the Presidential race least problematic for Mr. Putin's aggressive foreign policy agenda," says John Herbst, director of the Dinu Patriciu Eurasia Center. "While it would be a stretch to say that Russian hacking gave Mr. Trump the election, it seems clear that it was designed to undermine Ms. Clinton and to enhance his chance of winning."

In the months leading up to Election Day, Russian nation-state hackers targeted the DNC and shared its documents via WikiLeaks, intelligence agencies confirmed. As campaigns came to a close, hackers reportedly associated with Russia targeted Hillary Clinton's campaign staffers with a series of phishing emails.

The DNC was able to catch bad actors with the help of security firm CrowdStrike, which implemented endpoint technology to monitor network activity.

"[We] were able to watch everything that the adversaries were doing while we were working on a full remediation plan to remove them from the network," explains CrowdStrike co-founder and CTO Dmitri Alperovitch.

President Obama has responded to the attacks on Democratic party websites with an order for US intelligence agencies to conduct a review of attacks related to the 2016 election. The goal is to understand what happened, take action, and share lessons learned with stakeholders.

It's a tall but important order, especially if foreign actors can exert this amount of control over a US election.

"US intelligence and law enforcement agencies have seen mounting evidence of an active Russian influence operation in the outcome of the 2016 US presidential election through cyber hacking and tampering," says Chenxi Wang, Ph.D., chief strategy officer at Twistlock.

Wang describes how this is "our new cyber reality" in which hacking and counter-hacking, whether for political or financial gain, is commonplace. This carries tremendous implications for a future of "digital weaponry" in which data may not be trusted.

"If we cannot trust the validity of electronic records (e.g., voting records), or if data is made to selectively favor one candidate vs. another, then it could very well threaten the foundation of our everyday lives," she explains. 

Wang, as well as government officials, says it's time for security officials to develop stronger defenses to address these risks.

"For years, foreign adversaries have directed cyberattacks at America's physical, economic, and military infrastructure, while stealing our intellectual property," reported the United States Senate Committee on Armed Services in a joint statement issued Dec. 11.

"Congress's national security committees have worked diligently to address the complex challenge of cybersecurity, but recent events show that more must be done," the Committee said.

Related Content:

Kelly Sheridan is Associate Editor at Dark Reading. She started her career in business tech journalism at Insurance & Technology and most recently reported for InformationWeek, where she covered Microsoft and business IT. Sheridan earned her BA at Villanova University. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Wallet
50%
50%
Wallet,
User Rank: Apprentice
12/15/2016 | 5:48:47 AM
Re: Resurrection of McCarthyism
Totally agree, This is the way how big politics is made when you've got a professional paranoic spy as a president of the country with nuclear weapon. I really can't understand why they are still not isolated like North Korea.
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 9:33:31 PM
Twenty Motion
awesome stuff
rayray2016
100%
0%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:01:30 PM
Diabetes Destroyer Reviewsx
I dont really beleive any hacker tried to help trump
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:01:26 PM
The Fat Diminisher Reviewsx
This is a very good read up
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:00:48 PM
Diabetes Destroyer Reviewsx
I dont really beleive any hacker tried to help trump
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 1:00:17 PM
The Fat Diminisher Reviewsx
This is a very good read up
rayray2016
50%
50%
rayray2016,
User Rank: Apprentice
12/13/2016 | 12:58:48 PM
nosmo_king
29%
71%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:44 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
nosmo_king
0%
100%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:40 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
nosmo_king
0%
100%
nosmo_king,
User Rank: Strategist
12/13/2016 | 11:43:39 AM
Re: Resurrection of McCarthyism
How charmingly naive of you.

Vlad Putin is the former head of the FSB and cyber spying is the FSBs bread and butter.

Trump is so stupid that when Putin called him "brilliant" he took it to mean smart, and the Russian word Putin used does not mean that at all, it means colouful. It is the same put down he uses to describe homosexuals.

Of course Putin wants a bloated, self-sefving ignoramus like Trump as president. Putin won't even have to say anything, trump will be so busy fighting an all-out trade war with China within 3 months that Russia will be able to do as it sees fit.

Fake news that.
Page 1 / 2   >   >>
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.