A different take on Russian Hacks- a look at the 13 page report discussed in Congress Thursday Jan 5th 2017

Posted by $ Olduglycarl 7 years, 2 months ago to News
49 comments | Share | Best of... | Flag

I always thought it strange that a "government source" would bother with a little piss ant (Podessa) at the DNC on minor atrocities by global kakistocractic standards.
Not exactly the leg up kind of info a foreign government would be looking for.


This is a new investigation into the supposed Russian Hack...a review of the 13 page report given and discussed in Congress Thursday.
The League of Power.


"Tech Journal Casts Doubt on Dems' Russian Hacking Claims"

"Democratic Party claims about Russian hacking interfering in the election of 2016 continue to make the news. A recent article in the respected computer journal Ars Technica discussed supposed attempts on the part of the Russian government to interfere with the election. The article claims that the evidence the government provided in a Joint Analysis Report (JAR) filed by the FBI and the Department of Homeland Security (DHS) is inconclusive and technically inaccurate."

"The report's 13 pages offer no smoking guns and mostly rehash statements put out by private-sector companies with no further evidence provided to back them up. In fact, the report doesn't specifically mention the Democratic National Committee (DNC) or the Democratic Party at all."

"While a number of such companies have claimed the Russian government was responsible, people close to the leaks say they were the product of "lone wolf" attacks; individual security professionals say there's no way to verify the true origins of the hacking".

"The report teases readers with contentions that it reveals secret "tradecraft and techniques" used by Russian hackers, but analysts say these techniques are generic and used by all state-sponsored computer hacking groups."

"This ultimately seems like a very rushed report put together by multiple teams working different data sets and motivations," stated Robert Lee, the founder and CEO of security firm Dragos. "It's my opinion and speculation that there were some really good government analysts and operators contributing to this data, and then, report reviews, leadership approval processes and sanitation processes stripped out most of the value and left behind a very confusing report trying to cover too much while saying too little.""

""Lee noted that the report confused the names of known hacker groups APT28 and APT29, which sometimes go by the names Sofacy, Sednit, Sandworm, CozyBear and others, with the names of malware codes such as Havex and BlackEnergy. It even misused the name of a hacker capability called Powershell Backdoor. These incorrect references lead many security professionals to believe the report was not prepared by experts and may have been rushed to publication."

"In fact, the report's poor technical grasp, if anything, proves President-Elect Donald Trump's assertions that the intelligence community's capabilities may be lacking, to the extent that any of their expertise was actually used compiling the report."

"According to Rob Graham, the CEO of Errata Security, one of the "indicators of compromise" (IOCs) listed in the report was "PAS TOOL WEB KIT," which is a utility used by hundreds and perhaps even thousands of hackers in Ukraine and Russia, most of whom have no affiliation whatsoever with the government of either of those countries."

"IOCs are what security experts use to know if a network has been broken into by outside groups or systems. "In other words, these rules can be a reflection of the fact that the [U.S.] government has excellent information for attribution," Graham said. "Or, it could be a reflection that [it's] got only weak bits and pieces. It's impossible for us outsiders to tell.""

"Jeffrey Carr, an industry security consultant, said that he doubts the attacks that affected the DNC originated from Russian hackers because they used the same malware that affected Germany's Bundestag parliament and the French television network TV5Monde."

"While researchers at security firm Crowdstrike believe this is a clue that points to Russia because other actors wouldn't have the combined resources and motivation to attack all these targets, Carr pointed out that the source code for the malware was independently obtainable from an antivirus software provider called ESET."

""If ESET [can have] it, so can others," Carr wrote. "It's both foolish and baseless to claim, as CrowdStrike does, that X-Agent is used solely by the Russian government when the source code is there for anyone to find and use at will.""

"The doubts expressed by Carr, Graham and Lee show that when the government takes its proprietary research and subsequently makes it public for the world at large to see, large gaps of knowledge are often displayed. In fact, it's arguable that the so-called "experts" that the government employs for its defensive cyber warfare capabilities — depending on which agency is being discussed — may be anything but expert. The report's vagueness and lack of specificity leave it sounding more like a brief catalog of innuendo than an indictment."

"This isn't the first time the government has shown itself to possibly employ novices when it comes to detecting hacking. The attack on Sony Pictures Entertainment by North Korea in 2014 also revealed an aggregation of incompetency and ineptitude that led to incorrect conclusions, finger-pointing and embarrassment for a number of U.S. government agencies."

"At that time, it was also the FBI that made the original accusation against North Korea. But many security experts said that the evidence pointing to the Hermit Kingdom was circumstantial. Security consultant Lucas Zichkowsky declared, "State-sponsored attackers don't create cool names for themselves like 'Guardians of Peace' and promote their activity to the public." Writer Kim Zetter at Wired magazine termed the American government's evidence "flimsy.""

"To be fair, the government may be shy in many cases to reveal its sources and its methods of detection in such cases. Also, it's possible that more in-depth technical evidence that's classified may be being presented to Congress while not being revealed to the public."

"But based on the data provided in the JAR report, there's nothing that could definitively be used to make the case the Obama administration is attempting to claim; most computer security specialists could shoot holes in the government's allegations ten feet wide. In fact some of the evidence points to origins of lone wolfs or activists from other country's governments (i.e. North Korea or China or one of the Baltic state government agencies)."

"Therefore, the argument that the Obama administration and the Democrats are clinging to is unsound; it doesn't pass the smell test."

"So rather than a fact, what they've presented thus far is a theory. Of course, if the government does take retaliatory action, it wouldn't be the first time that it acted based on theories rather than facts, but with a Republican majority in both houses of Congress and a Republican president about to take office, it's doubtful this report and its accusations will go much further, barring additional evidence being proffered."

Regards,

Mark Patricks


Add Comment

FORMATTING HELP

All Comments Hide marked as read Mark all as read

  • Posted by $ Stormi 7 years, 2 months ago
    I don't trust any of our security agencies, especially seeing them testify as to the supposed Russian hack. They have long been in the Obama pocket, clear back to when they failed to deny him a security clearance - with all the lies and intrigue in his background! I think the DNC hack cme from within, from someone who hated what they did to Bernie. One of their people mysteriously died, if you recall.
    I really am suspicious that Obama rushed to judgement in expelling the Russians, before the report was complete, or maybe in anticipation of what he planned for it to say. We shoudl have been kicked out of mulitple Europena and Israel embassys, based on his boots on the gorund attempt to influence their elections, as well as that of Canada.Obama is such a childish hypocrite. Putin likely was right, Hillary is crazy, or at least brain damagged, so he was wise to instruct his citizens to take precautions for an attack.Why did Obama take no actions over supposed hacking by China? The e-mails where Hillary's camp affirned shared goals with the CFR to produce socially unaware citizens would not have been of interest to Russia, but should have mattered to parents, as it is code for dumbing down the kids.
    Reply | Mark as read | Best of... | Permalink  
    • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
    • Posted by Seer 7 years, 2 months ago
      Ovomit didn't just "rush to judgement"--he concocted the whole scheme of Russian involvement. His retaliation (no evidence required, remember) was on more of a personal level. If he thought there was actual foreign state involvement, he could have done what a mature leader would do: Summon the ambassador. But he acted childishly, believing the American people would believe anything he said. Now look at the mess America is in. And it looks like Congress is putting the final nail in the coffin with their new investigation.
      Reply | Mark as read | Parent | Best of... | Permalink  
    • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
    • Posted by Seer 7 years, 2 months ago
      I don't think Putin actually said she was brain damaged. What he said, in response to her comment that he didn't have a soul, was that he thought all it took to be a leader was a brain. Something like that.

      You have to watch out for him. He can be very subtle. Waaaay over the Witch's head.
      Reply | Mark as read | Parent | Best of... | Permalink  
      • Posted by $ Stormi 7 years, 2 months ago
        No, he did not say she was brain damaged, government e-mails among several generals did, as did the Middles Eastern press and Israeli press, as it connects to a plane crash when she was secretly in Iran. He did imply during a news conference she was stupid , and more directly that she was weak. He is now considering releasing many intercepted e-mails which came from her unsecured server. As to politicians of any country, I have to agree with TV's "Dr. House, "Everybody lies"!
        Reply | Mark as read | Parent | Best of... | Permalink  
        • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
        • Posted by Seer 7 years, 2 months ago
          What was the exact quote from Putin?

          Tillerson, now testifying in front of Congress, is showing lack of knowledge of foreign affairs, particularly as regards the Donbas and Crimea. He may be talking down to the imbecilic members of Congress. In any event, this tells you why America will not be taking a leadership role in the world in the future. America is showing weakness, not resolve. Just as Congress has for the last 8 years.
          Reply | Mark as read | Parent | Best of... | Permalink  
      • Posted by $ 7 years, 2 months ago
        Putin may be a tyrant but it is the witch that has no soul...that much is clear.
        Reply | Mark as read | Parent | Best of... | Permalink  
        • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
        • Posted by Seer 7 years, 2 months ago
          I agree with you about the soulless witch. But Putin is no tyrant. Why do you think that?
          Reply | Mark as read | Parent | Best of... | Permalink  
          • Posted by Dobrien 7 years, 2 months ago
            Putin is a looter he doesn't respect personal property.The owner developer of the ski resort where the Olympics were held a few years back was forced to sell out to Putin for Putin's price. He will jail his opponents or worse. He and his family have amassed a fortune and have never produced. He would not care if anyone loses their life protecting his self interests. Wake up.
            Reply | Mark as read | Parent | Best of... | Permalink  
            • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
            • Posted by Seer 7 years, 2 months ago
              Your interpretation of events in Russia is perverted. You seem to believe what others want you to believe. Did I not say I know Putin?
              Reply | Mark as read | Parent | Best of... | Permalink  
            • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
            • Posted by Seer 7 years, 2 months ago
              Where do you get your information, Doby?

              If what you said, is true, perhaps there is, even in Russia, the concept of "eminent" domain. Why would you think it is only Putin's decision to do so? You have a perverted sense of what is going on in Russia today, or what has been going on in Russia for the past 25 years. Get jiggy with it.

              By the by, Colorado, as far as I know, has been the only site nominated for the Winter Olympics, where the people voted against hosting it. In the 1970's.
              Reply | Mark as read | Parent | Best of... | Permalink  
              • Posted by Dobrien 7 years, 2 months ago
                Google Putin's net worth.
                Reply | Mark as read | Parent | Best of... | Permalink  
                • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
                • Posted by Seer 7 years, 2 months ago
                  I would pay Putin any amount, simply because he kept the Russian Federation from slipping back into Communism, in the late '90's.

                  His true "net worth" is priceless.
                  Reply | Mark as read | Parent | Best of... | Permalink  
                • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
                • Posted by Seer 7 years, 2 months ago
                  How does his "net worth" compare to the Clinton's or Reid's or Pelosi's? Or Trump's, for that matter?

                  Can you tell me that?
                  Reply | Mark as read | Parent | Best of... | Permalink  
                  • Posted by $ 7 years, 2 months ago
                    Seems that his net worth compares directly to the likes of clinton, reid and pelosi...usurped!, not earned.
                    You picked a bad example.
                    Reply | Mark as read | Parent | Best of... | Permalink  
                    • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
                    • Posted by Seer 7 years, 2 months ago
                      I just posted that I couldn't pay him enough for what he did in the '90's, and since, to keep the Russian Federation from slipping back into communism. Putin's net worth is priceless. You know, don't you, that the Communist Party of the Russian Federation, under the headship of Gennady Zyuganov, former Soviet Minister of Propaganda, still has adherents in the RF. And if I remember correctly the KPRF has 42 seats out of 450 in the State Duma, second to Putin's United Russia party. It's membership decreased in the last election, which took place in 2016.

                      Did you know that the KPSU (Communist Party of the Soviet Union) was outlawed after the collapse of the USSR, but that that decision was overturned?

                      Tell me this, whose info on his net worth do you believe? And because you want to believe that Putin is a thug and corrupt. The old YOUR daddy is more corrupt than MY daddy infantile refrain.

                      But yes, those were bad examples. None of those examples, except Trump, I cited, has done anything for America, compared to what Putin has done for Russia. If you want to talk productive, (you mentioned how Trump acquired his wealth) it is nothing to what Putin has done for the Russian Federation.

                      Neither Putin nor I will allow Russia, nor the Russian people, to become communist again. Everyone once in a while I send emails to Comrade Zyuganov reminding him of that. It's about time for a new one. Watch out, Comrade.

                      Can you understand why so-called news stories of Putin's net worth (or any other condemnation of him) is meaningless to me? And who are you to determine their truth value?
                      Reply | Mark as read | Parent | Best of... | Permalink  
  • Posted by DrZarkov99 7 years, 2 months ago
    Use of identity masking tools, like Virtual Private Networks (VPNs) make backtracing a hacker's trail difficult, especially after the fact. VPN systems dump your signal into a collective IP address with others, so identifying an individual computer is hard to sort out. Use of peer bittorrent browsers, like Tor, make it even more difficult, since the trace (when active) makes the hacker's signal appear to bounce from location to location around the globe, and that's if you can catch them in the act. Trying to sort out a trace after the fact is nearly impossible unless you've planted a worm in the target device ahead of time.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by $ Thoritsu 7 years, 2 months ago
    Just like Hate Crime and AGW. Assumptions of motive and correlation not consequence. Swaying public opinion without fact.

    Orwell saw it coming.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by term2 7 years, 2 months ago
    I dont listen to anything our government says. Too many hidden agendas. Clapper in particular is a known liar even in front of congress. Time for that swamp to be drained.

    Our intelligence system told us there are WMDs in Iraq, and despite unbelievable searches, NONE were found.

    I take in whatever facts I can get and make my own mind up. In this case---

    All countries, including ours, spy on each other to the extent then CAN and use the information to benefit themselves any way they can. Even Obama tried to stop BREXIT and get the israeli prime minister outsted. The USA lives in a glass house.

    When it comes to Wikileaks, they are whistleblowers primarily and take the info given to them and expose it without naming the sources. Assange hates Hillary and Obama for essentially conspiring to imprison him for 5 years and no doubt relished the idea of causing her trouble.

    As to whistleblowers in general, I like them. We need them to tell us what the bad guys are doing behind our backs. Snowden, Manning, and Assange should be pardoned and allowed to be free.

    When it comes to Putin wanting to influence the election, I can believe he hated Hillary and had no respect for Obama, but I think he didnt particularly want Trump (would be a stronger advocate for uSA) , but he just wanted to weaken the expected Hillary presidency to let Russia be stronger in the world. I think he didnt consider Trump would wind up being the winner of the election.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by Temlakos 7 years, 2 months ago
    This much I do remember: Vladimir Putin, shortly before the election, canceled a trip to France, held civil-defense drills involving fifty million people, and boasted of a network of tunnels and deep basements that could shelter the entire population of Moscow. He gave me every indication of fearing a full-blown nuclear strike against his country. In short, he thought Hillary was crazy--dangerously crazy, in a manner befitting a James Bond villain(ness).

    On the other hand, that the Democrats would accuse the Russians, means only that "it takes one to know one"--or to think one knows one. Obama pulled that stunt on Bibi Netanyahu of Israel three and a half years ago. It failed, but it explains why Hillary would try to make us think that.

    Ironic, though. The American government embraced communism, long after the Russian government abandoned it.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by $ MikeMarotta 7 years, 2 months ago
    Here is a link to the actual 13-page public report from the Department of Homeland Security, the National Cybersecurity and Communications Integration Center, and the FBI.
    https://www.us-cert.gov/sites/default...

    Here is the original October 21, 2016, finding by DHS and the Office of the Director of National Intelligence on Election Security
    https://www.dhs.gov/news/2016/10/07/j...

    The report cited above by OldUglyCarl is just some guy's blog. http://www.leagueofpower.com/
    It might be OK all in all, but this "tech journal" is not the same as Ars Technica or SlashDot or Krebs on Security. The Register (UK) http://www.theregister.co.uk/ is very much an overview of tech topics with a tabloid presentation.

    Put League of Power in your browser and you will find them listed on scam reports.

    Just one point in context is this second-source paragraph frrom the "report" cited above.
    "According to Rob Graham, the CEO of Errata Security, one of the "indicators of compromise" (IOCs) listed in the report was "PAS TOOL WEB KIT," which is a utility used by hundreds and perhaps even thousands of hackers in Ukraine and Russia, most of whom have no affiliation whatsoever with the government of either of those countries."

    Errata Security is the work of Robert David Graham of Portland, Oregon, who has almost nothing on LinkedIn.
    https://www.linkedin.com/in/robert-da...

    (BTW, this is me - https://www.linkedin.com/in/mike7maro... )
    Reply | Mark as read | Best of... | Permalink  
    • Posted by $ 7 years, 2 months ago
      League of power has been 80% correct by my estimation in the past...that's probably why the left has jumped on the Scam alert stuff.
      But, I thought this brief was condensed enough for a quick read giving us something to chew on.

      Thanks for the added links for those that have the time to get into it further.
      No doubt Russia, china and the rest of the world is hacking everyone else and hackers hacking other hackers too...but I still doubt that Russia would be interested in piss ant idiots...the wikki story on that front seems more plausible.
      Many of these creatures are just as bad as the rest of the worlds Kakistocracy's.
      Reply | Mark as read | Parent | Best of... | Permalink  
  • Comment hidden by post owner or admin, or due to low comment or member score. View Comment
  • Posted by Seer 7 years, 2 months ago
    Here's the news from RT. Just now:

    http://www.rt.com/usa/373263-dni-rt-i...

    I only get my news from RT. It is the only legitimate news source, in the world, probably. It is government subsidized, like NPR, but there is a reason for that, just not the one you think.

    I posted many RT articles on One Political Plaza during the last 15 months. You can see them there. Some under my user name CarolSeer, then under KiraSeer, beginning in August. Do you suppose there is a direct correlation with my posts and the DNI's reference to paid RT trolls?

    I also like to see the comments on RT posted by people from all over the world so as to get insight to what they are thinking and feeling. There are many Americans who post on RT also, including myself.
    Reply | Mark as read | Best of... | Permalink  

FORMATTING HELP

  • Comment hidden. Undo