DHS/FBI Issues Joint Analysis Report: GRIZZLY STEPPE – Russian Malicious Cyber Activity (Read Report)

Posted: 1:32 pm PT
[twitter-follow screen_name=’Diplopundit’ ]


Related to the declaration of 35 Russian officials persona non grata for malicious cyber activity and harassment (see USG Declares 35 Russian Officials Persona Non Grata, Imposes New Sanctions), DHS and FBI also released a Joint Analysis Report (JAR) which provide details of the tools and infrastructure used by Russian intelligence services to compromise and exploit networks and infrastructure associated with the recent U.S. election, as well as a range of U.S. government, political and private sector entities. Below via us-cert.gov: from the JAR: GRIZZLY STEPPE – Russian Malicious Cyber Activity. Click on image below to read the full Joint Analysis Report from DHS/FBI: JAR_16-20296. Original document is posted here.

In spring 2016, APT28 compromised the same political party, again via targeted spearphishing. This time, the spearphishing email tricked recipients into changing their passwords through a fake webmail domain hosted on APT28 operational infrastructure. Using the harvested credentials, APT28 was able to gain access and steal content, likely leading to the exfiltration of information from multiple senior party members. The U.S. Government assesses that information was leaked to the press and publicly disclosed.  



4 responses

  1. What I find incredible is that such allegations of interference with elections, where no evidence is provided (the disclaimer is quite telling), are used to justify U.S. anti-Russian policies, which seem to have reach a level of hysteria reminiscent of the times of McCarthyism and the Cold War. Maybe these are Obama’s vindictive last moves as he leaves behind him a legacy of failed foreign policy. And to think that I had great hope in Obama when he was elected in 2008. He has proven to be a bigger warmonger than Bush even (with his sidekick Hillary). And has he helped African Americans in any way?!! I guess not … considering the events of recent years. There was much more solid evidence of Clinton and the Democratic Party elite deliberately and fraudulently sabotaging Bernie Sanders’ campaign. And was there evidence of Russian hacking where paper ballots were used? That would be quite an achievement … maybe Harry Potter helped there with his magic wand.

  2. This shows how one hacks. No proof who did it!  Wiki leaks said it was an insider that gave them the data.  Why have you become a tool of this corrupt administration?  Ed

    Sent from Yahoo Mail on Android

  3. Disclosure of Investigative Techniques and Capabilities is a violation of SEVERAL DHS Security Directives.

    Several Employees have been disciplined and or terminated for lessor violations regarding alleged disclosure incidents.

    Due to certain political agendas, the rules have now been null and void???

    The smell is overwhelming, and it’s not very appealing.