Author Topic: Technical Analysis of Russian Hacking?  (Read 123 times)

Offline Baruch (OP)

Technical Analysis of Russian Hacking?
« on: January 02, 2017, 08:29:06 AM »
https://turningpointnews.org/exposing-political-corruption/dhs-fbi-claim-of-russian-hacking-is-fake-news

This analysis was done by a retired teacher.  Probably the FBI and CIA can do better than he can.  The NSA could have the real evidence of file transfer ... but won't share it.  But this isn't proof that the NSA did it and puts the blame on Russia.
שלום

Re: Technical Analysis of Russian Hacking?
« Reply #1 on: January 02, 2017, 11:29:33 AM »
I read an analysis of the same info done by a wordpress security firm.  Rough conclusion:

Quote
The IP addresses that DHS provided may have been used for an attack by a state actor like Russia. But they don’t appear to provide any association with Russia. They are probably used by a wide range of other malicious actors, especially the 15% of IP addresses that are Tor exit nodes.

The malware sample is old, widely used and appears to be Ukrainian. It has no apparent relationship with Russian intelligence and it would be an indicator of compromise for any website.

This attempt to convince the public the ruskies did it makes our own gov look like a bunch of amateurs.  Laughable even.

Offline Baruch (OP)

Re: Technical Analysis of Russian Hacking?
« Reply #2 on: January 02, 2017, 01:06:16 PM »
We can't tell at this point.  A private party (with lots of zombie nodes) or a state actor (which we assume isn't the US only because of propaganda) could be involved.  Or it could have been a disgruntled insider.  My most recent Ethical Hacker training claims that 60% of all attacks are insider attacks.  So on that basis, it was a DNC operative that released the Pedestal and DNC emails.
שלום