Slashdot Mirror

← Back to Stories (view on slashdot.org)

Report: Russian Hackers Phished The DNC And Clinton Campaign Using Fake Gmail Forms (buzzfeed.com)

Posted by EditorDavid on from the I'm-feeling-lucky dept.

Citing a report from SecureWorks, BuzzFeed is reporting that Russian hackers "used emails disguised to look as Gmail security updates to hack into the computers of the Democratic National Committee and members of Hillary Clinton's top campaign staff": The emails were sent to 108 members of Democratic presidential nominee Hillary Clinton's campaign and 20 people clicked on them, at least four people clicking more than once, Secureworks' research found. The emails were sent to another 16 people from the DNC and four people clicked on them, the report said.

Researchers found the emails by tracing the malicious URLs set up by [state-sponsored hacking group] Fancy Bear using Bitly, a link shortening service... "We were monitoring bit.ly and saw the accounts being created in real time," said Phil Burdette, a senior security researcher at SecureWorks, explaining how they stumbled upon the the URLs set up by Fancy Bear.
The URL apparently resolved to accounts-google.com (rather than accounts.google.com), and Burdette says "They did a great job with capturing the look and feel of Google."

44 of 435 comments (clear)

  1. LOL by Dunbal · · Score: 5, Funny

    Using bit.ly. Oh the IRONY that the .ly TLD could somehow be involved in taking down Hillary Clinton.

    --
    Seven puppies were harmed during the making of this post.
  2. Clinton, Podesta, Putin and Trump by Nova+Express · · Score: 4, Insightful

    A few points on this alleged story:

    1. The Clinton campaign desperately trying to distract attention away from Hillary's fundamental dishonesty.
    2. Maybe the story is true, and the Clinton campaign hires people with the security acumen of a burned-out toaster.
    3. Buzzfeed? Really?
    4. Maybe they figure if they keep yelling "Trump is a Putin pawn!" enough we'll ignore the fact that Podesta is a registered lobbyist for Putin's bank.

    There's one candidate in this race who has a proven record of taking money for favors from Russian sources, and it isn't Trump.

    --
    Lawrence Person (lawrencepersonh@gmailh.com (remove all "h"s to mail)

    http://www.lawrenceperson.com/

    1. Re:Clinton, Podesta, Putin and Trump by Rei · · Score: 5, Informative

      So let me get this straight. Don't trust Buzzfeed. Instead, trust "Battle Swam Blog". Got it.

      Re, the "uranium deal" thing: false and false. Meanwhile, Trump chose as his campaign manager Paul Manafort, a consultant to Yanukovitch (including being earmarked for over $12m in payments from a slush fund uncovered after Yanukovitch fled), his foreign policy advisor (Carter Page) works (present tense) for Gazprom, one of Trump's sons talked about his father having to focus on loans from Russia when he couldn't get them from the US, and how heavily they rely on Russian investment, Trump Soho turned out in court to be a money laundering organization for Russian criminals (Trump followed up by hiring its principal partner into the Trump organization), Trump bragged during a meeting in Russia that “Almost all of the oligarchs were in the room” just to meet with him, numerous Trump businesses have been financed by Russian oligarchs, Trump has repeatedly called Putin a great leader, both in isolation (without comparison to other US leaders), and in comparison to not only Obama, but Bush as well; Trump advisors intervened in the Republican Party platform on precisely one issue, that being to weaken references to supporting Ukraine; Trump claims that Russian troops aren't in Ukraine, and has endorsed Russia's Syria policy. Not to mention thinks NATO is obsolete. Oh, and whole "we don't know who did the hack, maybe it was China, maybe it was a 400 pound guy in his bedroom" line? He had already been given an intelligence briefing where US officials explicitly told him it was Russia. And then there's his knack for getting ahold of Russian propaganda faster than anyone else, like when he walked into a rally waving around a report on Clinton that had only been published (and later retracted) by Sputnik International.

      For all your propaganda that's too bad even for Russian propaganda outlets to push, Trump has your back.

      --
      The internet is not a series of tubes. It's more like a net. Or a network of computers. Or an internet.
    2. Re:Clinton, Podesta, Putin and Trump by Anonymous Coward · · Score: 3, Interesting

      OH SHIT. Politifact calls it false. If a Democrat newspaper pretending to be an impartial fact checker says so, then you know it must be true.

      Remember Politifact labeling "If you like your doctor you can keep your doctor" the Lie of the Year? What they don't tell you is that they used to call it "true". Then they later changed it to "half true". Only after it became completely indefensible did they finally turn on it.

    3. Re:Clinton, Podesta, Putin and Trump by Black+Parrot · · Score: 3, Funny

      Respected Avatar or NPC,

      We notice that you are vigorously trying to overcorrect for your simulation's liberal bias. If you are unhappy in your simulation you can submit petition KB3035583 to request being moved to another simulation with a different bias.

      Sincerely,
      The Operators

      --
      Sheesh, evil *and* a jerk. -- Jade
    4. Re:Clinton, Podesta, Putin and Trump by khallow · · Score: 5, Informative
      Fortunately, someone remembered:

      Research led me far afield and I uncovered this gem from PolitiFact in its Pulitzer Prize-winning year of 2008. It rated as TRUE Obama's statement at the October 7, 2008, "If you've got a health care plan that you like, you can keep it."

      Five years later, only after Obama was safely elected and re-elected did PolitiFact name that claim the Lie of the Year of 2013 -- even though it dated back to 2008.

      Before and after. Same journalist wrote both and no apology for the earlier, "fact check" or the about face on the claim.

    5. Re:Clinton, Podesta, Putin and Trump by phantomfive · · Score: 5, Insightful

      The building was vandalized with the phrase "Nazi Republicans Leave Town or Else [twitter.com]". Who else do you think would have done it?

      It was done by an insane person, neither party has a monopoly on insanity (if you doubt it, look at the leading candidate of each party).

      --
      "First they came for the slanderers and i said nothing."
    6. Re:Clinton, Podesta, Putin and Trump by phantomfive · · Score: 5, Insightful

      Looks like it has a happy ending. Democrats raised money to help rebuild it.

      --
      "First they came for the slanderers and i said nothing."
    7. Re:Clinton, Podesta, Putin and Trump by Darinbob · · Score: 3, Insightful

      So clearly orchestrated by the DNC? Stupid partisans believe any old shit that's fed up to them.

    8. Re:Clinton, Podesta, Putin and Trump by Maxo-Texas · · Score: 5, Interesting

      Someone firebombed the GOP office.

      Was it even further right wing nutjobs?
      Was it a false flag operation as they are getting desperate about losing NC?
      Was it really really dumb left wingers?
      Was it democrats?

      Who knows. I hope they catch whoever did it.

      --
      She was like chocolate when she drank... semi-sweet at first and then increasingly bitter.
    9. Re:Clinton, Podesta, Putin and Trump by opus · · Score: 4, Insightful

      They're so invested in a two-party system, that they won't consider a 3rd party candidate, although both are more honest the the Democrat and Republican offerings. We deserve what we are getting, either way.

    10. Re:Clinton, Podesta, Putin and Trump by nomadic · · Score: 4, Informative

      "Note that the liberal media and Hillary are entirely ignoring the attack, probably because they know they bear some of the blame."

      That, sir, is a lie, and you are a liar.

      http://www.cnn.com/2016/10/16/...
      http://www.nytimes.com/2016/10...
      http://abcnews.go.com/US/north...
      http://www.cbsnews.com/news/po...

    11. Re:Clinton, Podesta, Putin and Trump by bloodhawk · · Score: 4, Informative

      lets see it is Trump, Who else might have a reason to hate him and perceive him as a Nazi
      Mexicans?
      Woman?
      blacks?
      Most of Europe?
      muslims?
      a quick count puts the potential non democrat suspects at several billion. Hillary may well be devil spawn but that doesn't somehow make trump any less insane a choice.

    12. Re:Clinton, Podesta, Putin and Trump by meta-monkey · · Score: 4, Interesting

      Not Clinton, the DNC

      Doesn't Podesta work for Hillary, not the DNC? Were his emails stored with the DNC? I thought it was her campaign that was hacked/leaked also.

      Registered and disclosed. Do you see how it works now?

      No, I don't. What's different?

      Also, how does that make it okay? We've got leaked Podesta emails yelling "Take the money!!!!" from people linked to Russia, Saudi Arabia, Qatar, and other awful places, funneled through properly registered and disclosed agents. How does being bought by fucking Saudi Arabia and Qatar become okay just because it's legal? I care about the "being bought by Saudi Arabia and Qatar" part. Whether it was done by legal accounting legerdemain or sacks of cash in a DC parking garage at 3am is irrelevant.

      I would say we need to change the laws to make any money sourced from overseas illegal to be used in campaigning, but I don't think it would matter. Hillary breaks election and campaign finance laws with impunity and will never be prosecuted. We are in a post-legal state.

      --
      We don't have a state-run media we have a media-run state.
    13. Re:Clinton, Podesta, Putin and Trump by ooloorie · · Score: 3, Insightful

      Re, the "uranium deal" thing: false and false

      Politifact is saying that it hasn't been strictly proven that Clinton actually engaged in pay-for-play. There is no question that the Clinton foundation received the money while Clinton was SoS. I consider that deeply corrupt by itself. You're free to disagree.

      Factcheck gets hung up on the fact that Trump said that the State Department had "veto power", which technically only the president has. They acknowledge that State Department approval was required. The fact that approval was required makes the charge of corruption even stronger, because the State Department didn't merely let the deal through through inaction, the State Department actively had to consider the deal and come to a decision. The fact that Factcheck gets this so wrong tells you only one thing: Factcheck's judgments cannot be trusted at all.

      So let me get this straight. Don't trust Buzzfeed. Instead, trust "Battle Swam Blog". Got it.

      Personally, I don't trust anyone; I think for myself and check the facts. I suggest you start doing the same instead of rattling off a litany of talking points.

  3. Link shortening is a horrible, horrible idea by 93+Escort+Wagon · · Score: 5, Interesting

    Frankly I'm surprised we don't see this technique used more often.

    --
    #DeleteChrome
  4. Still Confused .... by pollarda · · Score: 5, Insightful

    I'm still not sure how this points to the Russians... How do we not know that it isn't some dude sitting on the beach in Tahiti and bouncing it off a server or VPN in Russia? How do we know it isn't the Chinese doing the same thing? How about a disgruntled Lithuanian? Most anybody can look like they are from anywhere. In fact, on virtually any TV show where hacking is involved, they always talk about it not being tranceable because it is "bouncing all over the world" so it isn't like the Evil Lithuanians / Chinese / Icelanders / Argentinians / etc. hackers can't figure out how to use a few VPNs or hacked machines to do their job.

    1. Re:Still Confused .... by Anonymous Coward · · Score: 5, Insightful

      Shut up and stop making sense. Everybody knows that Russians did it because Russians are bad and they like Trump, therefore Trump and Russians are in league with each other to destroy America. That's all the evidence we need!

      Sure, we laughed at Mitt Romney 4 years ago when he said Russia was our enemy, but then again we elected an inexperienced non-insider candidate then. Now we say that the country CAN'T have an inexperienced outsider candidate, because that's not what ours is. A Wall Street endorsed 1% candidate is what's best.

    2. Re:Still Confused .... by colin_faber · · Score: 5, Informative

      Actually, in this case SecureWorks admits in their analysis that it's an educated guess at best. Just like all of the rest of the thin as tissue paper "evidence" that has been presented so far.

    3. Re: Still Confused .... by phantomfive · · Score: 4, Insightful

      I've never seen so many Americans rush to defend Russias[sic] honor

      People are talking about starting a war over this with Russia. The evidence better be clear and conclusive before something dumb like that happens.

      --
      "First they came for the slanderers and i said nothing."
    4. Re:Still Confused .... by cryptogranny · · Score: 5, Informative

      Hi, as a Russian I'd like to make a few points.

      > if not a majority, are still running broken Windows XP and even piratated Windows 3.1.

      This is simply not true. We (not me personaly because I'm a Linux user) pirate any modern staff (MS products, Adobe, etc) very fast, partly because a lot of cracking teams are from xUSSR.

      > Since these people do not use credit cards online, they do not care about security.

      Well, it's actually simpler to use cards in Russia then in U.S to make a transfer to your buddy. But I agree about lot's of infected machines.

      > Russia cannot produce a single PC, notebook, or even a smartphone.

      That's correct. Government can't but people is another story.

      > I would not believe that it has got supernatural powers to enter firewalled hardened US government servers.

      No supernatural powers of course, but Russia is known for IT outsourcing. A lot of Russians move to U.S. to work in companies like Microsoft, Amazon and so on. The world known debugging tool IDA pro (used for cracking) is also made by Russians.

    5. Re:Still Confused .... by Tesen · · Score: 3, Insightful

      Shut up and stop making sense. Everybody knows that Russians did it because Russians are bad and they like Trump, therefore Trump and Russians are in league with each other to destroy America. That's all the evidence we need!

      Sure, we laughed at Mitt Romney 4 years ago when he said Russia was our enemy, but then again we elected an inexperienced non-insider candidate then. Now we say that the country CAN'T have an inexperienced outsider candidate, because that's not what ours is. A Wall Street endorsed 1% candidate is what's best.

      Are you kidding me? Both are Wall Street endorsed, lol. Trump is connected to Wall Street as is Hillary. To think that Trump does not rub elbows with the same people as hillary is naive in the extreme. You do not get to both of their levels in our society with out this happening, do you actually think there are different entities interacting with politicians based on how they emerged? Nope. They are the same, one is cold and a liar (Hillary) and one is a sociopath and a lies more than the other (Trump) and is a sexual pervert, but both coordinate with Wall Street.

      As for the hacking, Russia has been on our top 2 threat list to our country for over a decade; in this day in age most countries are trying to hack others (even friends). Shit, our own CIA spied on our own Senate. This is not a false flag by the Clinton campaign in coordination with our government, this is Julian Assange coordinating with Russia (to what degree, who knows). In my opinion Julian is scared, he is running out of time since the current Ecuadorian president does not plan to run again (http://latino.foxnews.com/latino/politics/2013/05/23/ecuador-correa-wont-run-again-in-2017/) and that pretty much is his last friend. He hates Hillary and she hates him, so he is probably hoping that Trump will either ignore him, or pardon him.

      Again, this is my $0.02 but Hillary has supported President Obama's intention to bring Snowden and Assange to trial here in the US. And again my $0.02 a Trump presidency is a presidency built on arrogance and incompetence and that is easily exploitable by Putin, in addition, a Trump presidency means that congress and the administration will be at odds, again four years of getting nothing done, so that is great for Russia too.

      Putin plays the long game, we tend to play the short game here which is why we are fucked.

    6. Re: Still Confused .... by nehumanuscrede · · Score: 3, Informative

      Not to point out the obvious but, were I the NSA or other three letter agency and wanted to provide " proof " that the $pickabadguy were behind this, I would simply instruct the coders to " accidentally " leave behind bits of $language in the code for the world to find.

      To be fun, were I a Russian hacker, I would create another Stuxnet and leave a giant American Flag in ascii buried in the code somewhere just to prove that point.

    7. Re: Still Confused .... by Curunir_wolf · · Score: 3

      I've never seen so many Americans rush to defend Russias honor

      If more Americans had questioned the evidence that Iraq was stocked with WMDs and ready to use them, maybe we would have never gotten in that war. Let's question evidence that Russia is involved in espionage before we decide to go to war with them, okay?

      --
      "Somebody has to do something. It's just incredibly pathetic it has to be us."
      --- Jerry Garcia
  5. Re:A little perspective by drinkypoo · · Score: 4, Insightful

    What I get from that map is that, despite a clear majority of states voting for Trump, their model still for some reason "predicts" a Clinton win. Almost as if the election has been rigged. Somehow.

    Every election is rigged by design, because of the electoral college system. If you're just now figuring out that the elections are rigged, you slept through civics and should probably refrain from contributing to political conversations.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  6. What are PROBABLY Russians by argStyopa · · Score: 4, Insightful

    From the article:
    "researchers assess with moderate confidence that the group is operating from the Russian Federation and is gathering intelligence on behalf of the Russian government"

    I know it fits the playbook to simply call them "Russian Hackers" but hey, maybe...journalism instead?

    --
    -Styopa
    1. Re:What are PROBABLY Russians by quantaman · · Score: 3, Informative

      From the article:
      "researchers assess with moderate confidence that the group is operating from the Russian Federation and is gathering intelligence on behalf of the Russian government"

      I know it fits the playbook to simply call them "Russian Hackers" but hey, maybe...journalism instead?

      Did you read the rest of the article, and the buzzfeed article as well?

      First the group has been going after Russia's enemies for years, including Georgia, Ukraine, Poland, and Germany. This suggests the group is very pro-Russian.

      Second the group has used multiple zero-day exploits in its attacks, which strongly suggests a state actor. Not only because getting zero-day exploits is really hard, but zero day exploits are also very valuable, and the described hacks only really had significant value to the Russian government.

      I'm not sure why SecureWorks is hedging so much, but the hacks being orchestrated by the Russian government seems extremely likely.

      --
      I stole this Sig
  7. Re: Trumps America by Anonymous Coward · · Score: 3, Interesting

    It is certainly best for Clintons campaign ito fix blame on "the Russians". It would be better for Trumps campaign if he could blame China. Ergo if the Russians actually did it they would have false flagged China. That is if Russia cares.

  8. Re:A little perspective by PopeRatzo · · Score: 5, Insightful

    Every election is rigged by design, because of the electoral college system. If you're just now figuring out that the elections are rigged, you slept through civics and should probably refrain from contributing to political conversations.

    The Founding Fathers created the electoral college system specifically to prevent populist perverts like Trump becoming president.

    If anyone has a beef with the electoral college, take it up with the Founding Fathers.

    --
    You are welcome on my lawn.
  9. Re:A little perspective by Peter+Desnoyers · · Score: 3, Funny

    What I get from that map is that, despite a clear majority of states voting for Trump, their model still for some reason "predicts" a Clinton win. Almost as if the election has been rigged. Somehow.

    The astute reader will notice that 22 states on that map are colored red or pink. I'll leave you to draw your own conclusions.

  10. Re:Education by arth1 · · Score: 4, Interesting

    Education and training is always the weakest link.

    No, human trust is the weakest link.
    I doubt that you can convert a single human being from "trust by default" to "distrust by default" through education. And training can only help with specific and narrow threats, and once attackers change their tactics, those who trust by default are just as vulnerable again.

    It's a mindset, not knowledge. If you don't have healthy paranoia, you're always going to be prey.

  11. Another reason to use 2 facter auth by Kythe · · Score: 3, Interesting

    As long as they were using Gmail in the first place, enabling 2 factor authentication, with the second factor being a U2F key like an inexpensive Yubikey, would have gone a ling ways towards preventing this,

    --

    Kythe
    1. Re:Another reason to use 2 facter auth by Zontar+The+Mindless · · Score: 3, Interesting

      It has one. It's called "Preview". How much did you pay for that 4-digit account, anyway?

      --
      Il n'y a pas de Planet B.
  12. Re:A little perspective by Zontar+The+Mindless · · Score: 3, Informative

    What I get from that map is that, despite a clear majority of states voting for Trump, their model still for some reason "predicts" a Clinton win.

    You're either not American or you slept through civics class in high school.

    The number of states doesn't matter. The populations of those states (and thus the number of electoral votes each one has) are negligible compared to those in the Clinton column. In fact, the only populous state that's likely to go for Trump is Texas.

    --
    Il n'y a pas de Planet B.
  13. Re:A little perspective by drinkypoo · · Score: 3, Insightful

    The Founding Fathers created the electoral college system specifically to prevent populist perverts like Trump becoming president.

    The EC has disagreed with the popular vote only four times in history and one of those was a Bush presidency. Tell me again how great it is.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  14. Re:A little perspective by harperska · · Score: 4, Funny

    Yes, but the map clearly shows the majority of the land area of the country is colored red. And everybody knows that the only fair way to conduct an election is for each square mile of the country's landmass to get exactly one vote.

  15. Re:incorrect by Anonymous Coward · · Score: 3, Funny

    Without gullible staff members there would be no democratic party leadership.

  16. Re:Education by Zontar+The+Mindless · · Score: 4, Interesting

    Paranoia is never "healthy". *Awareness*, however, is always a damned good idea.

    --
    Il n'y a pas de Planet B.
  17. Re:A little more perspective by Zontar+The+Mindless · · Score: 3, Informative

    Even if Hillary *is* a lesbian, what of it?

    This is supposed to make up for the fact that no man who actually cared about his daughter would leave her alone with Trump?

    More false equivalence from the RWNJ lobby.

    --
    Il n'y a pas de Planet B.
  18. Americans should cringe by NewtonsLaw · · Score: 4, Insightful

    I hope all Americans realize that the rest of the world is dumbfounded that Clinton and Trump are supposedly the best candidates for the presidency of your great nation.

    Surely not.

    You are all lost!

  19. Re:A little perspective by houghi · · Score: 5, Insightful

    Hiding behind what people did 200+ years ago means that you are either unable, but more likely unwilling to solve anything.
    So no, do NOT take it up with the founding fathers. Go out there and solve the shit that is going on yourselves.I live in a country that is younger than the US and has gone through more changes on a political level.
    Stop blaming others for the mess you are in.

    --
    Don't fight for your country, if your country does not fight for you.
  20. Re: Trumps America by nomadic · · Score: 3, Funny

    "There are at least a dozen current or former members of the domestic intelligence community who have died of "natural causes" or "accident" in the past three months."

    You mean of a community made up of what is probably -- when you add together CIA, NSA, military intelligence and contractors -- tens of thousands of people, many of them old, "at least a dozen" have died in the past three months?

  21. Re:A little perspective by squiggleslash · · Score: 3, Insightful

    The Founding Fathers created the electoral college system specifically to prevent populist perverts like Trump becoming president.

    No they didn't. The idea was to ensure that the interests of the Federal government lined up with those of the member states. The separation of powers and rule of law is what's supposed to prevent Trump from being a problem.

    When Trump and Clinton were neck and neck two or three weeks ago (gosh, has it been that long? But Arancia Mussolini's definitely definitely going to lose, right?), 538 was showing that they were also neck and neck in the electoral college.

    The constitution does nothing to punish populism as long as that populism is sufficiently broad based, attractive to all of the country, not just some regions.

    --
    You are not alone. This is not normal. None of this is normal.
  22. Re:LIARS by XXongo · · Score: 3, Informative

    Seriously? You listed CNN, NY Times,GO, and CBS News as sources of evidence?

    No. He listed CNN, NY Times,GO, and CBS News as "liberal media" that did cover the story, showing that the statement "the liberal media and Hillary are entirely ignoring the attack" is false.

    They are proven to be owned and or controlled by rich and powerful friends of Clinton.

    In which case, his post shows that the original post was completely and totally false, doesn't it?