Category Archives: Cyber War

Dubai Police Arrest White House Hackers

Posted on by

Dubai Police Arrest Hackers Who Targeted White House Staff

Image result for ajman dubai map

DUBAI, UAE — 

Dubai police have arrested foreign hackers who targeted five senior White House officials in a blackmail email scam, state-owned media reported on Monday.

The Arabic-language Al Bayan newspaper and the television channel Dubai One reported the arrests, while Dubai police did not answer repeated calls for comment. The arrests come as the United Arab Emirates, which hosts some 4,000 U.S. troops fighting the Islamic State group, remains a crucial regional ally.

Al Bayan quoted Maj. Saud al-Khalidi of Dubai police as saying an “African gang” broke into the emails of the five senior officials and “got highly confidential information.” He said the U.S. asked Dubai police for assistance.

Al-Khalidi was quoted as saying that investigators tracked down the gang to an apartment in the emirate of Ajman and arrested three suspects. Those arrested are between 24 and 26 years of age and had a list of “5 million bank accounts,” as well as hacking software and millions of dollars in assets, he said.

The major said the three people had entered the UAE on visitor visas a few years ago.

The reports did not identify the White House officials targeted. Al-Khalidi reportedly said those suspects would be handed over to the United States for possible criminal trials.

The U.S. Embassy in Abu Dhabi did not respond to requests for comment. *** “Police reportedly faced resistance from the hackers but they were effectively subdued and arrested,” Dubai One reported in its nightly newscast. “Police say this was not their first operation, although it was their first offense here in the UAE. The hackers allegedly made it a business to sell information they managed to extract, moving from one country to another after every cyberattack.” The details mirrored those of a July 2015 Ajman raid previously announced by the UAE’s Interior Ministry in which three Nigerians were arrested. However, in that raid, officials only said they had “received information from the security authorities in the U.S. state of California,” never mentioning any connection to the White House.

The reports Monday did not identify the White House officials targeted. Al-Khalidi reportedly said those suspects would be handed over to the United States for possible criminal trials.

Meanwhile, last month, the Trump sons were in Dubai closing a business deal.

DUBAI, United Arab Emirates — Two of U.S. President Donald Trump’s sons ceremonially opened a Trump-branded golf club in Dubai today, meeting privately with Emirati elites as questions remain about how separated their father is from the empire bearing his name.

Eric and Donald Trump Jr., who now lead the Trump Organization, watched as fireworks lit the sky over the Trump International Golf Club in Dubai, on the outskirts of the city-state home to the world’s tallest building and other architectural marvels.

Image result for trump sons in dubai

The course’s opening comes after Donald Trump tried for years to enter the Arab market as a real estate mogul who later earned millions licensing his name to projects. The course’s opening now, as well as long-standing plans to open a second Trump-branded course in Dubai, could raise security and ethical issues for America’s 45th president going forward.

Though bars at the club eventually will serve alcohol, only soft drinks were dispensed at the windy gala today.

Billionaire Hussain Sajwani’s DAMAC Properties partnered with the Trump Organization to build the golf course at the heart of a development of villas and apartment blocks called DAMAC Hills. Among them are some 100 Trump-branded villas selling from 5 million dirhams ($1.3 million) to over 15 million dirhams ($4 million).

A string octet played classical music on the edge of the course designed by American golf architect Gil Hanse.

A pro shop inside the clubhouse sold Trump International Golf Club baseball caps for 150 dirhams ($40) and Trump-branded golf balls for ($5.50). Absent were the red “Make America Great Again” caps made famous by Trump’s campaign.

Both sons gave brief remarks at the opening, neither touching on their father’s new job. Donald Jr. instead applauded Dubai’s hereditary ruler, Sheikh Mohammed bin Rashid Al Maktoum.

“It’s truly awe inspiring,” he said. “In Dubai, if you can envision it, you can build it.”

Earlier today, Eric and Donald Jr. attended a private luncheon at Sajwani’s mansion on Dubai’s man-made Palm Jumeirah archipelago, speaking underneath an ornamental clock whose face spelled “SAJWANI VILLA.”

“It’s rare in the world where you can be such great friends with a partner and that’s what we have right here,” Eric Trump said. “Hussain, he is an amazing person and DAMAC is an amazing company.”

The two Trump brothers met with the over 80 people gathered at the event, attendee Niraj Masand told The Associated Press.

They were “expressing their gratitude to Mr. Sajwani, who is the chairman of DAMAC, and sort of expressing their happiness to meet with all the partners,” said Masand, a director of the real estate firm Banke International.

Ties between the Trumps and Sajwani remain strong. One of the Trump Organization’s subsidiaries received from $1 million to $5 million from DAMAC for running the golf club, according to a U.S. Federal Election Committee report submitted in May.

Sajwani and his family also attended a New Year’s Eve celebration at Trump’s Mar-a-Lago club in Florida, where Trump referred to them as “the most beautiful people from Dubai.”

Trump days later told journalists that DAMAC had offered the Trump Organization $2 billion in deals after his election, something DAMAC also confirmed.

“I must say, working with the Trump family and the Trump Organization was and continues to be a pleasure,” said Sajwani, who made some of his fortune supplying U.S. forces during the 1991 Gulf War that expelled Iraqi forces from Kuwait. Over the past decade, his companies have been awarded at least $1 million in contracting work, according to U.S. government records reviewed by the AP.

The Trump Organization has said it won’t make new foreign deals while its namesake is president. A previously planned Trump-branded golf course designed by Tiger Woods is still being built by DAMAC further down the road.

However, Kuwait and Bahrain both have scheduled events at a Trump-branded hotel in Washington. Experts also have raised concerns that existing Trump business abroad could run afoul of the so-called “emoluments clause” of the U.S. constitution.

That clause bars public officials from accepting gifts or payments from foreign governments and companies controlled by them without the consent of Congress. Already, a liberal-funded watchdog group has filed a lawsuit citing the clause.

Trump’s sons attended the Dubai events as private businessmen, but still traveled with a Secret Service detail as they are immediate family to the president. Guests went through a metal detector and had their bags X-rayed before attending the gala, though Dubai police kept a low profile.

Experts already have warned the Trump brand abroad now faces a global terror risk . However, the United Arab Emirates, a staunch U.S. ally in the war against the Islamic State group and host to some 5,000 American military personnel, remains a peaceful corner of the Middle East.

Gulf Arab leaders largely have been positive so far about Trump, hoping to see a harder line from America on Iran following the nuclear deal with world powers negotiated in part by the Obama administration.

The UAE’s foreign minister even backed Trump’s travel ban on seven Muslim-majority nations earlier this month, which didn’t include the UAE or neighboring Saudi Arabia.

The Dubai golf course marks Trump’s first successful venture in the Arab world. But it has raised questions about how the Trump Organization’s many international business interests will affect Trump’s administration.

Meanwhile, trips abroad by Trump’s two sons are expected to continue. Before Trump’s inauguration, his son Eric visited the Trump Tower Punta del Este in Uruguay to check on the tower’s progress and personally greet buyers. A Trump hotel in Vancouver, British Columbia, is also expected to soon host Trump’s sons.

From Space, China’s Cyber-Warriors, PLA

Posted on by

Image result for pla china cyber  PLA Unit 61398  Operation Shady Rat

Primer: Xi Jinping to visit president Trump, hum…..will this be a topic?

China’s external strategies in cyberspace – as distinct from its internal social control policies – can be divided into two parts: the first, before late 2015; the second, after that point. The most notable transition, from the U.S. perspective, has been the agreement to foreswear commercial cyberespionage.

Less well noted, but of comparable importance, has been the formation of its Strategic Support Force, which has combined the cyber warriors of the Chinese People’s Liberation Army (PLA), its electronic warriors, and a large chunk of those conducting intelligence, surveillance, and reconnaissance, notably from space.

 FreeBeacon

China Pivots its Hackers from Industrial Spies to Cyber Warriors

Levi Maxey:

China continues to deploy military equipment to contested islands in the South China Sea, raising concerns among regional players and U.S. forces stationed in the Pacific.

A Chinese government strategy document published last month by China’s state-owned news agency Xinhua signals that Beijing is building up its military cyber capabilities. It says that China will “expedite the development of a cyber force and enhance capabilities… to prevent major cyber crisis, safeguard cyberspace security and maintain national security and social stability.”

To be sure, the Chinese document acknowledges that its activities in cyberspace could aggravate tensions with the U.S. and other major powers. It says that “the tendency of militarization and deterrence buildup in cyberspace is not conducive to international security and mutual trust” – seemingly a direct response to the April 2015 Pentagon strategy report strongly emphasizing that the U.S. must build up its offensive capabilities to deter adversaries from engaging in malicious activity in cyberspace.

Given China’s past espionage in cyberspace, its move from economic theft towards militarization in the virtual domain represents a pivot that Washington could regard as threatening. While issues of trade and North Korea are likely to consume much of the discussion during this week’s summit between Chinese President Xi Jinping and President Donald Trump, the growth of cyberspace as a battlefield domain could also be a point of focus. What is China’s history in cyberspace in relation to the United States, and what has led to this change in policy?

Chinese leaders perceive cyberspace as a means of advancing economic growth, preserving the Chinese Communist Party, and maintaining stability and national security. Adam Segal, director of the digital and cyberspace policy program at the Council on Foreign Relations, argues that Chinese state-sponsored hackers seek to steal foreign technology via cyber espionage, weaken domestic opposition to the regime, and offset U.S. conventional military supremacy.

Despite some instances of political and counter-intelligence collection – such as the 2015 breach of the U.S. Office of Personnel Management and the alleged hacking into the 2008 presidential campaigns of former President Barack Obama and Sen. John McCain (R-Az) – Chinese cyber espionage has focused largely on the theft of intellectual property, trade secrets, and other sensitive commercial information. Its chief aim has been to boost Chinese economic competitiveness.

In 2010, Gen. Keith Alexander, then U.S. Cyber Commander and director of the National Security Agency, said that, “our intellectual property here is about $5 trillion. Of that, approximately $300 billion is stolen over the networks per year.” He called this theft “the greatest transfer of wealth in history.” By 2013, U.S. officials had begun publically decrying China’s economic espionage, only to be faced with denial from Beijing. In 2014, the Department of Justice obtained indictments against five members of the Chinese People’s Liberation Army (PLA), charging them with using computer network operations to commit commercial espionage.

Not long after, the U.S. threated China with sanctions and potential cancellation of a planned summit in September 2015 between President Xi and then-President Obama. Negotiators were quickly dispatched and the event went forward. During the summit both countries announced an accord, commonly referred to as the Xi Agreement, in which they agreed that “neither country’s government will conduct or knowingly support cyber-enabled theft of intellectual property, including trade secrets or other confidential business information, with the intent of providing competitive advantages to companies or commercial sectors.”

The Xi Agreement was shocking in that China implicitly acknowledged having conducted economic espionage in the past and agreed to stop doing it. Many observers were skeptical that the Chinese would abide by the pact, but a report by Mandiant, now a branch of the American cyber security firm FireEye, found a notable decline in Chinese hackers targeting U.S. companies – which suggests that the Chinese were taking the accord seriously.

However, according to Chris Porter, manager of FireEye’s Horizons team, “while appearing as a significant diplomatic victory for the Obama administration, in reality China simply agreed to stop doing operations that it didn’t want to continue anyway.” He notes that Chinese hackers were often moonlighting as for-hire-hackers, sometimes even targeting Chinese companies. At the time, President Xi was in the midst of a robust anti-corruption campaign while also centralizing power, including in cyberspace, under his control.

Porter argues that “Chinese leaders are heeding a lesson about the limitations of cyber espionage that stems from the fall of the Soviet Union: you cannot steal your way to innovation.” China hopes eventually to become a world leader in cutting-edge research, he says, so it “wants to live in a world where patents are respected and its own claims are viewed as legitimate and untainted by accusations of intellectual property theft.”

Martin Libicki, the Keyser Chair of cybersecurity studies at the U.S. Naval Academy, says that ultimately, “A combination of declining returns and increasing risks on the one hand and the prospects of U.S. sanctions on the other led Chinese President Xi Jinping to agree to end Chinese commercial cyber espionage against first the United States, then the United Kingdom, and finally the other G-20 nations.” Chinese hackers are still conducting some business-focused espionage and recently have intensified their targeting of Russian officials and institutions. But they seem focused on gleaning intelligence on military capabilities and on government officials who interact with business executives.

Furthermore, the Chinese People’s Liberation Army (PLA) elevated cyber operations under the Strategic Support Force in December 2015, placing the virtual domain on par with other branches of the military. “The best guess,” Libicki says, “is that Chinese cyber warfare will be focused on supporting conventional military operations as opposed to assuming an independent role in strategic warfare, as U.S. Cyber Command seems to be doing, or to bolster information operations, as Russia seems to be doing.”

The U.S. may use its cyber capabilities for “left-of-launch” missile defense against North Korea – meaning, sabotaging planned missile launches before they happen – and to disrupt ISIS communications.

By contrast, China is consumed by fears of a massive U.S. military intervention in Asia. Beijing is building up its anti-access and area-denial (A2/AD) military strategy in the South China Sea by adding cyber and electronic warfare capabilities meshed into what is referred to as “Integrated Network-Electronic Warfare.” A report published by the NATO Cooperative Cyber Defence Centre of Excellence in Tallinn maintains that PLA units responsible for electronic warfare are taking on the role of running computer network operations as well.

China’s “strategy consists of neutralizing the logistics and communications infrastructure that permits U.S. forces to operate so far from home,” Libicki says, and is “pursuing the ability to corrupt U.S. information systems – notably, those for military logistics – and disrupt the information links associated with command and control.”

Such network and electronic attacks could target the U.S. military or regional allies’ early warning radar systems and could cause blind spots in U.S. command and control systems. The PLA could use these blind spots to deploy sorties or launch ballistic missile strikes. It could deliver these capabilities early in hostilities, integrated with technologies that could sabotage U.S. weapons systems, or even U.S. critical infrastructure, so that U.S. forces could not respond in a timely way.

To accomplish effective cyber attacks on U.S. command, control and communications platforms, or any advanced systems, the PLA would have to conduct cyber reconnaissance ahead of time. China has already begun to probe some potential targets, including elements of the U.S. power grid and review the designs of weapons systems such as the F-35 combat aircraft, the Patriot missile defense system, and U.S. Navy littoral combat ships.

“Because China, like other nations, has had far less practice at cyber warfare than cyber espionage, it is harder to anticipate its intentions and plans,” says Libicki. China’s efforts to augment kinetic assaults with cyber and electronic warfare could escalate a conflict by setting up a scenario in which adversaries might view espionage as a step toward war.

 

2nd in Charge at FBI McCabe Under Investigation

Posted on by

Should we be demanding document and evidence preservation? Sure, but as along as there is a pile on, put it out there, eh?

Image result for andrew mccabe

Senate committee targets FBI No. 2 in Trump dossier probe

Sen. Charles Grassley, chairman of the Senate Judiciary Committee, has sent a letter to FBI Director James Comey demanding the story behind the FBI’s reported plan to pay the author of a lurid and unsubstantiated dossier on candidate Donald Trump. In particular, Grassley appears to be zeroing in on the FBI’s deputy director, Andrew McCabe, indicating Senate investigators want to learn more about McCabe’s role in a key aspect of the Trump-Russia affair.

Grassley began his investigation after the Washington Post reported on February 28 that the FBI, “a few weeks before the election,” agreed to pay former British spy Christopher Steele to investigate Trump. Prior to that, supporters of the Hillary Clinton presidential campaign had paid Steele to gather intelligence on Clinton’s Republican rival. In the end, the FBI did not pay Steele, the Post reported, after the dossier “became the subject of news stories, congressional inquiries and presidential denials.” It is not clear whether Steele worked under agreement with the FBI for any period of time before the payment deal fell through.

“The idea that the FBI and associates of the Clinton campaign would pay Mr. Steele to investigate the Republican nominee for president in the run-up to the election raises further questions about the FBI’s independence from politics, as well as the Obama administration’s use of law enforcement and intelligence agencies for political ends,” Grassley wrote in a letter to Comey dated March 28.

Grassley demanded the FBI turn over all its records relating to Steele and the dossier, in addition to “all FBI policies, procedures, and guidelines applicable when the FBI seeks to fund an investigator associated with a political opposition research firm connected to a political candidate, or with any outside entity.”

Image result for andrew mccabe CNBC

But the most noteworthy thing about Grassley’s letter is its focus on McCabe. Grassley noted that McCabe is already under investigation by the FBI‘s inspector general for playing a top role in the Hillary Clinton email investigation even though McCabe’s wife accepted nearly $700,000 in political donations arranged by a close Clinton friend, Virginia Gov. Terry McAuliffe, for her run for state senate in Virginia.

“While Mr. McCabe recused himself from public corruption cases in Virginia…he failed to recuse himself from the Clinton email investigation,” Grassley wrote, “despite the appearance of a conflict created by his wife’s campaign accepting $700,000 from a close Clinton associate during the investigation.”

Now, Grassley wrote, there could be a problem with McCabe’s participation in the Trump-Russia probe. If McCabe had a conflict being too close to Clinton, how could he then investigate Trump? A key passage from Grassley’s letter:

Mr. McCabe’s appearance of a partisan conflict of interest relating to Clinton associates only magnifies the importance of those questions. That is particularly true if Mr. McCabe was involved in approving or establishing the FBI‘s reported arrangement with Mr. Steele, or if Mr. McCabe vouched for or otherwise relied on the politically-funded dossier in the course of the investigation. Simply put, the American people should know if the FBI’s second-in-command relied on Democrat-funded opposition research to justify an investigation of the Republican presidential campaign.

Grassley followed with a dozen questions, all targeted at McCabe. Has McCabe been involved “in any capacity” in investigating alleged collusion between TrumpWorld and Russia? Has McCabe been involved in surveillance or intercepts of any sort in the case? Has McCabe “made any representations to prosecutors or judges” regarding the Steele dossier? Has McCabe had any interactions with Steele himself? Did McCabe brief anyone in the Obama administration on the Trump-Russia investigation? Was McCabe ever authorized by the FBI to speak to the media about the case? Did he ever do so without authorization? Has anyone in the FBI raised questions about McCabe’s possible Clinton-Trump conflict of interest? Has any complaint been filed about it? Has anyone at the FBI recommended or requested that McCabe recuse himself from the Russia-Trump investigation?

****

McCabe’s background:

Director James B. Comey has named Andrew G. McCabe executive assistant director of the FBI’s National Security Branch. Mr. McCabe most recently served as the assistant director of the Counterterrorism Division.

Mr. McCabe began his career as a special agent with the FBI in 1996. He first reported to the New York Division, where he investigated a variety of organized crime matters. In 2003, he became the supervisory special agent of the Eurasian Organized Crime Task Force, a joint operation with the New York City Police Department.

In 2006, Mr. McCabe shifted his focus to counterterrorism matters when he was promoted to FBI Headquarters as the unit chief responsible for extraterritorial investigations of Sunni extremist targets. He later served as the assistant section chief of International Terrorism Operations Section One (ITOS-1), where he was responsible for the FBI’s counterterrorism investigations in the continental United States.

In 2008, Mr. McCabe was promoted to assistant special agent in charge of the Washington Field Office’s Counterterrorism Division, where he managed several programs, including the division’s National Capital Response Squad, Rapid Deployment Team, Domestic Terrorism Squad, Cyber-CT Targeting Squad, and the Extraterritorial Investigations Squads. He received the FBI Director’s Award for his work on the 56th presidential inauguration.

In September 2009, Mr. McCabe was selected to serve as the first director of the High-Value Interrogation Group. In May 2011, he returned to the Counterterrorism Division at FBI Headquarters as deputy assistant director to oversee the international terrorism investigation program.

Before entering the FBI, Mr. McCabe worked as a lawyer in private practice. He received a Bachelor of Arts degree from Duke University in 1990 and Juris Doctor from Washington University School of Law in 1993. In 2010, Mr. McCabe was certified by the Director of National Intelligence as a senior intelligence officer.

When is it Enough for Putin and Russia?

Posted on by

Image result for russian hacking NBC

FBI: Russian Citizen Pleads Guilty For Involvement In Global Botnet Conspiracy

The summary below for the most part echoes the same testimony delivered by 6 panel members in two separate hearings before the Senate on March 30, 2017.

Two particular panel witness members were Clint Watts and Thomas Rid. (videos included)

There are several experts and those in media commentary that say there is no evidence of Russian intrusions. But there IS in fact evidence and attribution does required a long time to investigate, collaborate and convey, which is why the FBI has taken so long to provide. There are countless private corporations in the cyber industry, not tied to government in any form. They are hired to protect systems, investigate intrusions and research hacks and variations of interference both nationally and globally.

The United States is hardly the only victim of Russian intrusion, as Europe and the Baltic States are having the exact issues. But Americans rarely pay attention to anything outside the United States.

So, when is enough…enough for Putin? No one knows and due to the constant successes listed so far, there is very little reason for ‘active measures’ of asymmetric warfare tactics to cease….it is cheap ad effective and for the most part anonymous. The mission objective by the Kremlin is division, chaos, leaked propaganda and repeat….works doesn’t it.

Image result for russian hacking  DailyMail

Related reading: America Is Ill-Prepared to Counter Russia’s Information Warfare

Propaganda is nothing new. But Moscow is frighteningly effective—and worse is on the way.

***

What the Russians want: How Russia uses cyber attacks and hybrid warfare to advance its interests

What, exactly, do the Russians want? Their very active cyber operations obviously serve state goals, but what are those goals, and how can they inform a Western response?

ITSEF’s second day opened with a panel on Russian hybrid warfare—a combination of cyberattack and  information operations with both conventional and irregular military operations. Larry Hanauer, of the Intelligence and National Security Alliance, chaired a discussion among the Hoover Institution’s Herb Lin, Lookout’s Mike Murray, and LIFARS CEO Ondrej Krehel.

Policy driven by resentment.

Hanauer’s opening question was open-ended: what are Russia’s policy goals, and how does it use hybrid warfare to advance them? The panel was in agreement that the key to understanding Russian actions in cyberspace is to recognize them as driven by resentment. Lin called that resentment “longstanding.” It stems from the collapse of the Soviet Union at the end of the Cold War and Russia’s treatment internationally since then. Russian leaders and a substantial set of the Russian population views that treatment as disrespectful, contemptuous.

Russia has a very long tradition of using deception and propaganda, Lin said, and he added that the country doesn’t draw clear lines between peace and war. “It’s always war, even below the level of armed conflict.” The long-term goal is restoration of Russia’s place in the world. Creation of chaos through the dissemination of fake news and other information operations is simply battlespace preparation. Cyber, he added, gives you low-cost tools you didn’t have before. “It’s an attack on brainspace, and we’re all in the attack surface.”

Murray agreed, noting one current success of Russian information operations. We’ve been distracted from their intervention in Syria by news and fake news surrounding the US elections.

One of the more prominent features of the Russian way of cyber warfare is their willingness and ability to use criminal organizations for operational purposes. During the Cold War, Krehel explained, “if you did harm to the US, you were a hero.” Among other possibilities, that harm could be reputational or it could be economic, and criminals are well-adapted to inflicting those kinds of harm. There’s a view now, among Russian leaders, that they can expose personal information of essentially all Americans, and that this will yield a comprehensive picture of American finances down to the individual level. It’s very important to the Russian government, Krehel observed, to understand what the US can afford, and what capabilities we’re investing in, and all manner of data go into building up that picture. Lin: agreed that Russian espionage aggregates data in ways that render those data more valuable than the simple loss would impose on any single victim.

As a side note on the Russian President, the panel appeared to agree, as one member put it, that we now see one man, President Putin, who is able to use the resources of a modern nation-state to redress a deeply held personal grievance.

Chaos as statecraft.

This general orientation, according to Murray, can be encapsulated by noting that all war, to Russia, is about political ends. There’s no separation of politics from the economy or business. The increase in chaos we see in Western news, information, and political culture is, from a Russian point of view, a desirable thing.

And chaos serves tactical as well as strategic ends. Krehel expanded on this by asserting that Russia wants chaos because it doesn’t have the funding, the financial resources, of, say, the US. Thus Russian security services hand intelligence over to criminal groups. “A normal government doesn’t hand over its political agenda to criminal groups,” he said, but Russia’s does.

Murray offered an evocative story: “The number two guy in Russia has two pictures on his desk: one of Putin, and the other of Tupac Shakur.” So there’s a kind of gangster ethos at the highest levels. And whie using criminal gangs as cutouts also affords an obvious form of deniability, we shouldn’t be deceived.

In response to Hanauer’s question about who might be the leading cyber actors in the Russian government, Krehel said that they were the organizations one would expect, with the FSB and GRU occupying prominent positions. Different units within the government do cooperate—resource and manpower constraints make this inevitable—and in those services “loyalty is high, and rated very highly.”

You cheated them. Expect payback.

There’s also a common motivation, and Russian information operations play into it, especially domestically. “Russia believes all of you in this room cheated them,” Krehel said, and this theme is consciously exploited to the population as a whole, but particularly to the security services. “So the GRU’s big objective is to cripple you financially. And then they want to make you look ridiculous.”

Lin agreed. “That’s an accurate picture of how it works on the ground. Russia is a thugocracy, a state of organized crime.” He has seen reports (unconfirmed reports, he stressed, but he also clearly thought them plausible) that there are formal memoranda of understanding from the FSB to criminal gangs, outlining what the gangs can expect in return for services. “Other governments have done this, but it’s a way of life in Russia. The line between intelligence services and gangs is very vague.”

There’s no such thing as a win-win, Lin said, in the Russian worldview. “To Russia, it’s always win-lose.” Hanauer noted that this seemed a point of difference between Russia and China, and Lin agreed. Where there have been agreements of a sort between the US and China moderate conduct in cyberspace, Lin thinks there’s little evidence that such deterrent or confidence building agreements will have much effect in US-Russian relations.

Protect what’s important? Everything’s important (to the Russians).

Asked about defensive measures, Lin said that, “while there’s a logic to saying, ‘protect what’s important,’ to a good intelligence agency there’s never too much data.”

There are preferences for certain kinds of targets, which Krehel enumerated: first, oil, second, pharma, and a distant third, tech. Tech was less actively prospected because of Russian confidence that “they’re so much better at tech than we are.” Lin agreed, and said there was some basis for that confidence. “In the physics community, for example, we’ve long noted the sophistication of Russian physicists. They have great theoretical insight.”

Humiliation as statecraft, and the commodity tools used to do it.

Murray said he’d recently heard someone lamenting that he missed the Chinese, who just stole without embarrassing you. “That says a lot about Russian operations.”

Turning to the embarrassment inflicted during the US elections, Hanauer asked what kinds of tools the Russians were using for their attacks? Lin answered that the most consequential hack—Democratic Party operative John Podesta’s email—was phishing, a very basic approach.

Krehel said that, during the run-up to the election, he observed the Democratic and Republican National Committee networks being equally pressured by the Russians, the former more successfully than the latter. The approach in both cases focused on human engineering.

The Russian services, Murray explained, focus on engineering end-to-end systems. “‘PowerShell’ is the magic word for Russian coding.” There’s an emphasis on the least common denominator—phishing, PowerShell, darkside commodity tools—in effect a startup mentality. “All their tools are malleable and in motion, all the time.”

Critical infrastructure and acts of war.

Hanauer asked about the much-feared prospect of an attack on US critical infrastructure. Are we seeing, he asked, Russian attacks on US critical infrastructure? And if and when we do, would these be acts of war? “If they’re not trying [to hit US critical infrastructure]” Lin said, “then someone over there should be fired.” In Murray’s view, “Everyone’s trying to figure out the act-of-war line.” He reviewed briefly the history of Russian attacks (a coordinated mix of criminal and intelligence service attacks) on the Ukrainian power grid. He thought Russia would be more circumspect about doing such things to the US grid because, of course, the US is potentially a more dangerous adversary than Ukraine. But he also thought that if the Russians came to believe such attacks would be useful, they wouldn’t hesitate to undertake them.

– See more at: https://thecyberwire.com/events/sinet-itsef-2017/what-the-russians-want-how-russia-uses-cyber-attacks-and-hybrid-warfare-to-advance-its-interests.html#sthash.FnUREpYT.dpuf

Please Don’t Sign it Mr. Trump, You Cant Sign it…

Posted on by

(CNN)FBI Director James Comey warned Wednesday that Americans should not have expectations of “absolute privacy,” adding that he planned to finish his term leading the FBI.

“There is no such thing as absolute privacy in America; there is no place outside of judicial reach,” Comey said at a Boston College conference on cybersecurity. He made the remark as he discussed the rise of encryption since 2013 disclosures by former National Security Agency contractor Edward Snowden revealed sensitive US spy practices.
“Even our communications with our spouses, with our clergy members, with our attorneys are not absolutely private in America,” Comey added. “In appropriate circumstances, a judge can compel any one of us to testify in court about those very private communications.”
Did you get that? What? Keep reading, it gets worse….

Here’s the Data Republicans Just Allowed ISPs to Sell Without Your Consent

Privacy watchdogs blasted the vote as a brazen GOP giveaway to the broadband industry.

Motherboard: Financial and medical information. Social Security numbers. Web browsing history. Mobile app usage. Even the content of your emails and online chats.

These are among the types of private consumer information that House Republicans voted on Tuesday to allow your internet service provider (ISP) to sell to the highest bidder without your permission, prompting outrage from privacy watchdogs.

The House action, which was rammed through by a vote of 215 – 205 on a largely partisan basis by the GOP majority, represents another nail in the coffin of landmark Federal Communications Commission consumer privacy rules that were passed in 2016. The rules, which were set to go into effect later this year, would have required broadband providers to obtain “opt-in” consent before using, sharing, or selling private consumer data.

“Ignoring calls from thousands of their constituents, House Republicans just joined their colleagues in the Senate in violating internet users’ privacy rights,” Craig Aaron, CEO of DC-based public interest group Free Press Action Fund, said in a statement. “They voted to take away the privacy rights of hundreds of millions of Americans just so a few giant companies could pad their already considerable profits.”

Last week, the Senate passed its version of the legislation. President Trump, who “strongly” supports the FCC privacy rollback, is expected to sign the measure soon, as part of the widening Republican campaign to reverse federal safeguards across broad swaths of the economy, including rules protecting the environment, public health, and consumer interests.

Privacy watchdogs say the FCC’s policy is necessary because ISPs can see everything that consumers do online. Unless you use a Virtual Private Network (VPN), every website you visit, every mobile app you use, every online search you conduct, is visible on their networks. Needless to say, this data is immensely valuable because it can be used to create detailed profiles for marketing and tracking purposes.

Related reading: Is Your Favorite Website Spying on You?

Corporate giants like Comcast, AT&T and Verizon already rake in billions of dollars annually from internet, cable, and mobile subscriptions. Now, these broadband firms will be able to make even more money by selling your private data to third party marketers without your permission.

“What the heck are you thinking? What is in your mind?”

Last year, the FCC detailed the data covered by its privacy policy. Thanks to Capitol Hill Republicans, ISPs will no longer be required to obtain “opt-in” consent before using, sharing, or selling this data.

Image: FCC

“What the heck are you thinking?” Rep. Michael Capuano, the Massachusetts Democrat, demanded of his GOP colleagues during floor debate earlier Tuesday. “What is in your mind? Why would you want to give out any of your personal information to a faceless corporation for the sole purpose of them selling it?”

Privacy advocates are particularly outraged because Republican lawmakers are nuking the FCC privacy policy using a controversial legislative tool called the Congressional Review Act (CRA), which allows Congress to nullify recently-approved federal regulations. “Resolutions of disapproval” passed under the CRA cannot be filibustered, and prohibit the agency in question, in this case the FCC, from adopting “substantially similar” privacy rules in the future.

“Once President Trump signs this resolution, there will be no effective federal cop on the beat to proactively protect consumer information collected by ISPs,” Dallas Harris, Policy Fellow at DC-based digital rights group Public Knowledge, said in a statement. “Without the FCC’s broadband privacy rules, Americans go from being internet users to marketing data—from people to the product.”

It should come as no surprise that many of the Republicans leading the charge to roll back the FCC’s privacy rules, including Rep. Marsha Blackburn of Tennessee, have received vast sums of campaign cash from the broadband industry.

Over the course of Blackburn’s 14-year career in the House, she has received $75,750 from AT&T and $72,650 from Verizon, her second and third largest corporate donors, respectively, according to the Center for Responsive Politics. Blackburn has also received $66,000 from NCTA, the broadband industry trade group, and $49,500 from Comcast.

For the last year, the broadband industry has complained that the FCC’s privacy policy is unfair because it doesn’t apply to so-called “edge providers” like Google and Facebook, which are regulated by the Federal Trade Commission (FTC). But instead of fighting to bolster the FTC’s privacy policy to create a level playing field, Republican lawmakers instead chose to eliminate the FCC’s more robust protections. Now the measure moves to Trump’s desk.

“If President Trump was serious about his campaign promises to stand up for the rights of the individual over the powerful special interests in Washington DC, then he would veto this bill,” Nathan White, Senior Legislative Manager at Access Now, said in a statement.