US Election-Related Services Targeted by Russian Military According to Stolen NSA Documents

An unnamed US company was attacked via spear-phishing method by Russian military intelligence, and the point of this attack seems to be the attempt to obtain sensitive info related to hardware and software used during the US elections. This statement was found in a top-secret report by the NSA, that got leaked some time ago, but got published by The Intercept this Monday.

According to the report, the Russian intelligence agency is also responsible for multiple phishing attacks against other government agencies. They allegedly even tried to block requests for remote voting ballots.

Not long after the publication of this document, the FBI has arrested Reality Leigh Winner, a 25-year-old contractor from Georgia. According to the US Department of Justice, Winner is currently charged with removing confidential data and sending it to the news outlet. The Intercept wasn’t mentioned in the Department of Justice’s statement, and the connection between Winner’s arrest and the publication of the article wasn’t confirmed. Still, there are several details that would support this theory, like the date of the document and the DOJ’s release of an affidavit.

The document that The Intercept has published has details about several operations from August and October of the last year. Coincidentally or not, these events took place just before the US presidential election that was on November 8. These discoveries are in direct contradiction with the Russian president’s claims that their government had nothing to do with recent hackings.

For all the hacks related to Russian hackers, Vladimir Putin blamed the ‘patriotic’ Russian civilians. He even went as far as to blame the US hackers for framing Russia. This document, however, tells a different story, and according to the report found within, the real culprit is the Russian military intelligence.

The document states that on August 24, the ‘GRU’ (Russia’s General Staff Main Intelligence Directorate) executed a spear-phishing campaign against the employees of the US company that was involved in making special systems for the upcoming elections.

The report states that the phishing campaign came from the “noreplyautomaticservice@gmail.com” address and that several fake alert emails were sent from it. After the employees opened the email, they found a link that was leading to the alleged Google login page. The page was, of course, a fake one, and everyone who entered their login credentials has had them stolen on that occasion.

The report even has a comment that expresses the doubt about the employee’s accounts being compromised. After that, the report claims that the data obtained during the attack was used for another attack. This one was in October, and the victims were US local government organizations.

The new email was created by the hackers: vr.elections@gmail.com. Around 122 phishing emails were sent from that address, and they pretended to offer services and products related to the election.

In reality, they had two Microsoft Word documents in them, and both were supposed to spawn a PowerShell immediately after opening. Basically, after opening the documents, malware would be activated. It would then download even more malware, and eventually, it would also install a piece of software that can be used for surveillance and for scanning the computer for ‘items of interest’.

They even tried to create email addresses that would be able to intercept requests for absentee ballots, which millions of Americans used for the election of 2016.

19 COMMENTS

  1. My programmer is trying to convince me to move to
    .net from PHP. I have always disliked the idea because of the expenses.
    But he’s tryiong none the less. I’ve been using Movable-type on various websites for about a year and am concerned about switching to
    another platform. I have heard good things about blogengine.net.
    Is there a way I can import all my wordpress content into it?
    Any kind of help would be greatly appreciated!

  2. Hi, yeah this paragraph is genuinely good and I have
    learned lot of things from it concerning blogging. thanks.

  3. El tratamiento para la disfunción eréctil suele incluir, aparte de la medicación, cambios en el estilo de vida como por ejemplo dejar de fumar y practicar ejercicio de forma regular.

  4. Wonderful article! That is the kind of information that are supposed to be shared across the internet.
    Shame on the search engines for not positioning this
    put up upper! Come on over and consult with my site . Thanks =)

  5. I know this if off topic but I’m looking into starting my own weblog
    and was curious what all is required to get setup? I’m assuming having a blog
    like yours would cost a pretty penny? I’m not very
    internet smart so I’m not 100% positive. Any suggestions or advice would be greatly appreciated.
    Thanks

  6. 157920 585620Immer etliche Firmen bentzen heutzutage Interimmanagement als innovatives und ergnzendes Gertschaft i. Spanne der Unternehmensfhrung. Denn hiermit wird Kenntnisstand leistungsfhig, bedarfsgerecht und schnell ins Unternehmen geholt. 918744

  7. By reducing the levels of DHT within the scalp, follicles are left less likely to suffer harm.

  8. I used to be recommended this website by means of my cousin. I am
    now not certain whether or not this put up is written via him as no one else know such unique
    about my problem. You’re wonderful! Thank you!

  9. What’s up to every one, because I am really keen of reading this website’s post to be updated regularly.
    It includes good information.

  10. Usually I don’t read post on blogs, however I wish to say that this write-up very forced me to try and do so!
    Your writing style has been amazed me. Thank you, very great post.

  11. This article will assist the internet viewers for setting up new webpage or even a weblog from start to end.

  12. Hey there just wanted to give you a quick heads up. The text in your
    post seem to be running off the screen in Internet explorer.
    I’m not sure if this is a formatting issue or something to do with web browser compatibility but I
    figured I’d post to let you know. The design look great though!

    Hope you get the issue resolved soon. Many thanks

  13. Hey I know this is off topic but I was wondering if you knew of any widgets I could add to my blog that automatically tweet my newest twitter updates.
    I’ve been looking for a plug-in like this for quite some time and was hoping maybe you would have some experience with something
    like this. Please let me know if you run into anything.
    I truly enjoy reading your blog and I look forward to your new updates.

  14. I’m not that much of a online reader to be honest but your sites really nice, keep it up!
    I’ll go ahead and bookmark your website to come back later.
    All the best

  15. I know this if off topic but I’m looking into
    starting my own weblog and was wondering what all is required to get set
    up? I’m assuming having a blog like yours would cost a pretty penny?

    I’m not very internet savvy so I’m not 100% sure.
    Any suggestions or advice would be greatly appreciated. Kudos

  16. Hi, always i used to check weblog posts here
    early in the morning, for the reason that i enjoy to find out more
    and more.

  17. 850322 422439You made some decent points there. I looked on the internet for that difficulty and located many people will go in addition to with the web website. 849924

  18. 858242 200570Empathetic for your monstrous inspect, in addition Im just seriously good as an alternative to Zune, and consequently optimism them, together with the very excellent critical reviews some other players have documented, will let you determine whether it does not take correct choice for you. 899896

LEAVE A REPLY

Please enter your comment!
Please enter your name here