-
SBI MD Encourages MFIs to Enhance Data Privacy, Cyber Security8 November 2023 -
Google, Apple Representatives to Meet Parliamentary Panel to Discuss Cyber Security30 June 2023
-
Kaspersky Appoints Jaydeep Singh as Head for India Operations7 June 2023
-
Hackers Begin Selling Data Centre Logins for World's Largest Corporations Including Microsoft and Apple21 February 2023
-
TikTok Banned From Government Devices in Two US States Over Security Concerns; Huawei, Tencent Also Barred13 January 2023
- Home
- Internet
- Internet News
- Russian Military Unit Was Behind DNC Hack, Says CrowdStrike
Russian Military Unit Was Behind DNC Hack, Says CrowdStrike
By Ellen Nakashima, The Washington Post | Updated: 22 December 2016 17:03 IST
Advertisement
A cyber-security firm has uncovered strong proof of the tie between the group that hacked the Democratic National Committee and Russia's military intelligence arm - the primary agency behind the Kremlin's interference in the 2016 election.
The firm CrowdStrike linked malware used in the DNC intrusion to malware used to hack and track an Android phone app used by the Ukrainian army in its battle against pro-Russia separatists in eastern Ukraine from late 2014 through 2016.
While CrowdStrike, which was hired by the DNC to investigate the intrusions and whose findings are described in a new report, had always suspected that one of the two hacker groups that struck the DNC was the GRU, Russia's military intelligence agency, it had only medium confidence.
Now, said CrowdStrike co-founder Dmitri Alperovitch, "we have high confidence" it was a unit of the GRU. CrowdStrike had dubbed that unit "Fancy Bear."
The FBI, which has been investigating Russia's hacks of political, government, academic and other organizations for several years, privately has concluded the same. But the bureau has not publicly drawn the link to the GRU.
(Also see: Russian Hackers Reportedly Hit Pentagon Email System in 2015)
CrowdStrike's fingering of the GRU helps to deepen the public's understanding of how different arms of the Russian government are carrying out malicious and deeply troubling cyber acts in the United States. The director of national intelligence and the homeland security secretary in October publicly blamed the Russian government for interfering in the US election, including through hacks of political organizations and targeting of state election systems.
After the election, the CIA and other intelligence agencies concluded that one of Russia's aims was to help President-elect Donald Trump win the election through a campaign of "active measures" or influence operations that included the hacking and dumping of emails onto public websites.
(Also see: Obama Orders Review of 2016 Election Cyber-Attacks)
The GRU, evidently, was key to this operation.
"The GRU is used for both tactical intelligence collection in the battlefield in support of Russian military operations and also strategic active measures or psychological warfare overseas," said Alperovitch, who is an expert on Russia and a senior fellow at the Atlantic Council. "The fact that they would be tracking and helping the Russian military kill Ukrainian army personnel in eastern Ukraine and also intervening in the US election is quite chilling."
CrowdStrike found that a variant of the Fancy Bear malware that was used to penetrate the DNC's network in April 2016 was also used to hack an Android app developed by the Ukrainian army to help artillery troops more efficiently train their antiquated howitzers on targets.
The Ukrainian army's D-30 towed howitzers, which date to the Soviet era, typically take a number of minutes to position based on hand-drawn targeting data. With the Android app, positioning takes 15 seconds, CrowdStrike found.
The Fancy Bear crew evidently hacked the app, allowing the GRU to use the phone's GPS coordinates to track the Ukrainian troops' position. In that way, the Russian military could then target the Ukrainian army with artillery and other weaponry.
Ukrainian brigades operating in eastern Ukraine were on the front lines of the conflict with Russian-backed separatist forces during the early stages of the conflict in late 2014, CrowdStrike noted. By late 2014, Russian forces in the region numbered about 10,000. The Android app was useful in helping the Russian troops locate Ukrainian artillery positions.
According to the International Institute for Strategic Studies, Ukrainian artillery forces lost more than 50 percent of their weapons in the two years of conflict and more than 80 percent of their D-30 howitzers, the highest percentage of loss of any artillery piece in their arsenal, the report stated.
The app was not available in the Android app store and was distributed only through the social media page of its developer, who is a Ukrainian artillery officer, Yaroslav Sherstuk, according to CrowdStrike. It could be activated only after the developer was contacted and a code was sent to the individual downloading the application.
The other group that hacked the DNC also works for Russian intelligence, CrowdStrike reported earlier this year. But the firm is not sure if it is the more internally focused FSB, or the foreign intelligence arm, the SVR. Both grew out of the KGB.
That group, which CrowdStrike has called Cozy Bear, has not apparently been deployed in the influence operation, Alperovitch said. Rather, it is focused on traditional espionage. It is the group that is believed to have hacked unclassified networks of the State Department, White House and the Joint Chiefs of Staff.
© 2016 The Washington Post
Comments
For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.
Further reading:
Cyber Security, CrowdStrike, Hacking, Malware, DNC, Cyber Attack, US Election, Russia, Internet
Related Stories
Advertisement
Follow Us
-
03:30
How OPPO's LinkBoost Improves Network Connectivity -
02:59
Gadgets360 With Technical Guruji: Ask TG [April 13, 2024] -
02:24
Gadgets360 With Technical Guruji: Tech Tip [April 13, 2024] -
02:00
Gadgets360 With Technical Guruji: Did You Know [April 13, 2024] -
05:05
Gadgets360 With Technical Guruji: Samsung Launches Bespoke AI-Powered Home Appliances
Advertisement
Popular on Gadgets
- Galaxy S24 Series
- MWC 2024
- Apple Vision Pro
- Oneplus 12
- iPhone 14
- Apple iPhone 15
- OnePlus Nord CE 3 Lite 5G
- iPhone 13
- Xiaomi 14 Pro
- Oppo Find N3
- Tecno Spark Go (2023)
- Realme V30
- Best Phones Under 25000
- Samsung Galaxy S24 Series
- Cryptocurrency
- iQoo 12
- Samsung Galaxy S24 Ultra
- Giottus
- Samsung Galaxy Z Flip 5
- Apple 'Scary Fast'
- Housefull 5
- GoPro Hero 12 Black Review
- Invincible Season 2
- JioGlass
- HD Ready TV
- Laptop Under 50000
- Smartwatch Under 10000
- Latest Mobile Phones
- Compare Phones
Latest Gadgets
- Motorola Edge 50 Fusion
- Oppo A1i
- Oppo A1s
- Motorola Edge 50 Ultra
- Leica Leitz Phone 3
- Moto G64 5G
- Moto G04s
- iQOO Z9 Turbo
- Asus ZenBook Duo 2024 (UX8406)
- Dell Inspiron 14 Plus
- Realme Pad 2 Wi-Fi
- Redmi Pad Pro
- Cult Shock X
- Fire-Boltt Oracle
- Samsung Samsung Neo QLED 8K Smart TV QN800D
- Samsung Neo QLED 4K Smart TV (QN90D)
- Sony PlayStation 5 Slim Digital Edition
- Sony PlayStation 5 Slim
- Onida 1.5 Ton 3 Star Inverter Split AC (IR183TSN)
- Haier 1.5 Ton 3 Star Window AC (HWU18TF-EW3BE-FS)
- About Us
- Sitemaps
- Feedback
- Archives
- Contact Us
- RSS
- Advertise
- Career
- Privacy Policy
- Ethics
- Editorial Policy
- Terms & Conditions
- Complaint Redressal
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
