USA Executive Branch responds to alleged Russian Hacking December 2016

President Obama

December 29, 2016 President Barack Obama responded to alleged Russian hacking with sanctions, expulsion of 35 suspected Russian intelligence operatives, an executive order and a 13 page document describing the Russian hacking.

The 13 page paper titled “GRIZZLY STEPPE – Russian Malicious Cyber Activity” gives us an overview of the hacking of USA “government organizations, think tanks, universities, and corporations around the world” by “Russian Military and Civilian Intelligence Services (RIS).”   The report includes an overview of the tactics used, 2 diagrams, a code fragment, and a list of reported RIS handles and file names.  Half of the paper is textbook copy and paste recommended mitigations.  The paper points out that “APT29 successfully compromised a U.S. political party.”  APT29 is a suspect RIS and the political party would be the Democratic National Committee although it is not specifically identified as such.

President-elect Trump

December 28, 2016 President-elect Donald Trump spoke in Florida about President Obama’s plan to take action against Russia for alleged hacking.

“I think we ought to get on with our lives,” he said. “I think that computers have complicated lives very greatly. The whole age of computer has made it where nobody knows exactly what is going on. We have speed, we have a lot of other things, but I’m not sure we have the kind, the security we need.”

Notes

I use the term alleged hacking because I have not seen and reviewed the facts about this reported hacking.

I do believe that all nations spy on other nations to the extent that they can.

References

http://www.nytimes.com/2016/12/29/us/politics/russia-election-hacking-sanctions.html

http://www.nytimes.com/2016/12/29/us/politics/donald-trump-russia-hack.html

http://nyti.ms/2iJ4ZTC

US CERT references

GRIZZLY STEPPE – Russian Malicious Cyber Activity – at US CERT – https://www.us-cert.gov/security-publications/GRIZZLY-STEPPE-Russian-Malicious-Cyber-Activity

GRIZZLY STEPPE Indicators CSV – https://www.us-cert.gov/sites/default/files/publications/JAR-16-20296A.csv

Publication – https://www.us-cert.gov/sites/default/files/publications/JAR_16-20296A_GRIZZLY%20STEPPE-2016-1229.pdf

Edit.  1/8/17 add US Cert references

This entry was posted in Uncategorized and tagged , , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>