• Facebook’s evidence of Russian electoral meddling is only ‘the tip of the iceberg’

    “First of all, let’s step back and put the Russian involvement in 2016 in the overall context,” says Senator Mark Warner (D-Virginia), the ranking Democrat on the Senate Intelligence Committee. “It was approved at the highest level. It was coordinated in ways that were unprecedented. It included the things that have been much reported on, like hacking into both political parties and releasing information harmful to one candidate, Clinton, and helpful to Trump.” Warner adds: “I think our government and the platform companies were more than a little bit caught off guard. I don’t think anyone had seen anything of this scale before.”

  • DHS, FBI warn critical infrastructure firms of attacks by “Russia-linked” hackers

    DHS and the FBI on Friday have issued an alert that warning critical infrastructure companies of “advanced persistent threat (APT) actions targeting government entities and organizations in the energy, nuclear, water, aviation, and critical manufacturing sectors.” DHS said the hacking campaign, labeled Dragonfly, is a Kremlin-sponsored operation.

  • Jeff Sessions just confessed his negligence on Russia

    The headlines from Attorney General Jeff Session’s testimony before the Senate Judiciary Committee on Wednesday focused on his refusal to answer questions about his conversations with President Donald Trump and his declaration that he had not yet been interviewed by special counsel Robert Mueller. Lost in the back-and-forth, however, was a truly damning moment about Sessions’s tenure at the Justice Department thus far. The attorney general of the United States, though acknowledging and expressing confidence in the intelligence community’s assessment of foreign interference in the 2016 election and admitting that the government is not doing enough to guard against such activity in the future, could not identify a single step his department is taking or should take in that direction. This was a frank display of ignorant complacency in the face of a clear and demonstrated threat.

  • Foreign cyberattacks, disinformation “should never be downplayed or tolerated”: George W. Bush

    Former President George W. Bush said earlier today (Thursday) that the United States should not downplay Russia’s attempts to meddle in the U.S. election. Bush said that “the Russian government has made a project of turning Americans against each other. This effort is broad, systemic, and stealthy. It’s conducted a range of stealthy media platforms.” Bush’s remarks were a shot against President Donald Trump, who has dismissed the incontrovertible evidence of Russian interference in the 2016 presidential election as “a hoax” and “fake news.”

  • North Korea sent spear phishing emails to U.S. electric companies

    Cybersecurity firm FireEye says it can confirm that the company’s devices detected and stopped spear phishing emails sent on 22 September 2017 to U.S. electric companies by “known cyber threat actors likely affiliated with the North Korean government.” The activity was early-stage reconnaissance, and not necessarily indicative of an imminent, disruptive cyberattack that might take months to prepare if it went undetected (judging from past experiences with other cyber threat groups).

  • “Our task was to set Americans against their own government”: Russian troll-farm operative

    New information about the operation of a Russian “troll farm” and its role in Russia’s disinformation dissemination system, sheds new light on Russia’s broad effort to help Donald Trump win the 2016 presidential race. The fake stories and false news created and disseminated to millions of American voters by the operatives at the Internet Research Agency (IRA), in the words of an IRA operative, aimed to “rock the boat” on divisive issues like race relations, gun control, immigration, and LGBT rights. The IRA also used the internet to hire 100 American activists to hold 40 rallies in different U.S. cities. These activists did not know they were working for a Russian government agency, and the people who came to the rallies were unaware that they were taking part in Russian-organized and financed events.

  • Why are Russian media outlets hyping the Mueller investigation?

    Four major Russia investigations are underway in Washington, along with at least six related federal inquiries. Russia’s most popular media outlets compare the investigations to those of the McCarthy era, calling them “witch hunts” focused on a “phantom menace.” Amid all the emphasis of “Russophobia run wild,” however, Russian media coverage seems to have become more positive in regard to one issue: The Justice Department’s investigation led by Special Prosecutor Robert Mueller. While state-sponsored outlets continue to deny any possible collusion between the Trump campaign and the Kremlin, they’ve begun to applaud Mueller’s efforts to look into the past business deals of the U.S. president and his team. In affirming the U.S. investigation into Trump’s business practices, Kremlin strategists can co-opt the charges of Putin’s critics and direct them at Trump. They can argue that the U.S. is neither more virtuous than Russia nor more efficacious. And they can do so without having to acknowledge that a Mueller-style investigation into top-level government malfeasance would never be allowed in their own country today.

  • Unbreakable encrypted messages

    Researchers recently announced a landmark advancement: They used a satellite orbiting Earth to beam pairs of quantum-entangled photons to two Tibetan mountaintops more than 700 miles apart. This distance blew the previous record out of the water. The researchers say this is only the beginning for quantum communication.

  • Russia used Pokemon Go "to sow division” in run-up to 2016 presidential election

    CNN broke the news yesterday that Russian government hackers did not only use Facebook, Twitter, and Google platforms for a broad, systematic, and sophisticated disinformation campaign in the run-up to the 2016 election – they also used the popular video game Pokemon Go. The game was used to promote a Black Lives Matter-like message about police brutality, aiming to discourage African American voters from going to the polls, while creating a White backlash against those criticizing the police.

  • U.S. bans Russian anti-virus software after Israel warns about hacking

    The U.S. government recently prohibited federal agencies from using the products of the Russian cybersecurity firm Kaspersky Lab. Kaspersky’s anti-virus software is used by 400 million people globally – and the off-the-shelf software was installed on many U.S. government systems. Israeli intelligence officials warned their U.S. counterparts that Russian government hackers had morphed Kaspersky’s anti-virus software into a search engine for sensitive information. The classified data was then extracted back to Russian intelligence systems. Kaspersky’s denials notwithstanding, cyber experts say it is not technically possible that Kaspersky Lab’s officials were ignorant of the Russian government’s use of the company product.

  • Could we reverse a hacked presidential election?

    What would happen if we discover that Russians hacked into the results of the 2016 presidential election and tipped the outcome in favor of Donald Trump — literally changed the vote totals? “It is cold comfort that we have no evidence so far that Moscow actually manipulated vote tallies to change the election’s outcome,” the authors write. But what if it emerges that Russian operatives were successful on that front as well? Setting Trump aside, what if a foreign government succeeds in the future in electing an American president through active vote manipulation? The Constitution offers no clear way to remedy such a disaster.

  • U.S. voting machines can be easily, quickly hacked: DEFCON report

    DEFCON yesterday released its much-anticipated report, detailing findings from its first-ever “Voting Machine Hacking Village.” The Voting Village was held three months ago at DEFCON25 in Las Vegas. The report highlighted how every piece of equipment in the Village – which included voting machines and poll books still largely in use in current U.S. elections – was effectively breached in a matter of minutes by hackers. “What the report shows is that if relative rookies can hack a voting system so quickly, it is difficult to deny that a nefarious actor – like Russia – with unlimited time and resources, could not do much greater damage,” said Voting Village organizer and University of Chicago cybersecurity instructor, Jake Braun. “That threat becomes ever more poignant when you consider they could hack an entire line of voting machines, remotely and all at once via the supply chain.”

  • Russia already moving to the next cyber incursion in U.S.

    “From a technological point of view, this [hacking U.S. voting machines] is something that is clearly doable,” said Sherri Ramsay, the former director of the federal Central Security Service Threat Operations Center, which handles cyber threats for the military and the National Security Agency. “For us to turn a blind eye to this, I think that would be very irresponsible on our part.” Cybersecurity experts are increasingly concerned that Russia and others are already moving to the next incursion. “What really concerns me is having suffered these probing attacks last year, we may be in for an even more sophisticated, more potentially effective assault next time around—and oh, by the way, others were watching,” said Ambassador Doug Lute, a retired Army lieutenant general who served as the permanent representative to NATO from 2013 to 2017.

  • Kaspersky antivirus hack a wake-up call for business

    Russian state-sponsored hackers were able to steal National Security Agency (NSA) material on methods the NSA uses to conduct cyber espionage as well as how the agency helps defend critical U.S. government networks. An NSA contractor placed the material on his or her private computer – a violation of the agency’s security policy – and the private computer reportedly had anti-virus software belonging Moscow-based Kaspersky Lab installed. The software detected the unsecured classified material and alerted Russian intelligence to its presence. Michael Sulmeyer, the director of the Belfer Center’s Cyber Security Project at Harvard University, says geopolitics should guide some in the private sector to follow the U.S. government’s lead in removing Kaspersky’s software from their networks.

  • Microsoft investigating Russian government operatives’ purchase of campaign ads

    Microsoft is reviewing its accounts to determine whether Russian government operatives and trolls aligned with the Russian government purchased ads on Bing or other company products in the run-up to the 2016 U.S. presidential race. The company’s decision to conduct an internal investigation comes as Microsoft’s tech industry peers — Facebook, Google, and Twitter — are dealing with probes by the U.S. Congress into the extent to which Kremlin-backed agents spread disinformation on their platforms around Election Day.