Russian hackers breach Democrats' data on Donald Trump
Published 14/06/2016 | 21:11
Hackers linked to Russian intelligence services broke into the Democratic National Committee's computer networks and gained access to data relating to Donald Trump.
CrowdStrike, a cyber-security firm, said the DNC asked it to investigate a suspected breach of its systems that began as early as last summer. The firm said it found traces of two of the best adversaries in the hacking arena, both tied to the Russian government.
The newly-revealed attacks join a host of high-profile digital breaches affecting current and past White House hopefuls.
DNC Chairwoman Debbie Wasserman Schultz called the incident serious and said the committee moved quickly to "kick out the intruders and secure our network". The DNC said donor, financial and personal information did not appear to have been accessed by the hackers.
But an individual knowledgeable of the breach said at least one year's worth of detailed chats, emails and opposition research on Mr Trump were stolen. That kind of research, a staple of political campaigns, often contains detailed information about a candidate's personal and professional history.
The individual said DNC officials first learned about the hack in late April when its technology staff discovered malware on its computers.
CrowdStrike reported that one group of hackers was able to execute computer code remotely on systems running Microsoft Windows. Another was capable of recording keystrokes.
Director of national intelligence James Clapper said last month that US officials have seen indications of foreign hackers spying on the presidential candidates. He said the US intelligence community expects more cyber threats against the campaigns.
Foreign hacking was rampant during the 2008 presidential election, and US President Barack Obama and Mitt Romney were targets of Chinese cyber attacks in the 2012 campaign. In 2008, Mr Obama and Republican nominee John McCain were also targeted.
CrowdStrike said one of the hacking groups identified in the DNC attack, dubbed Cozy Bear, had previously infiltrated unclassified networks at the White House, the State Department and the Joint Chiefs of Staff.
Another group detected, called Fancy Bear, had targeted private and public sector networks around the world since the mid-2000s. The two groups involved in the DNC hacking had penetrated the system separately, CrowdStrike said.
Dmitri Alperovitch, CrowdStrike's co-founder and chief technology officer, said the hackers specifically targeted the DNC's research department and obtained opposition documents prepared about Mr Trump. He said the firm is confident the DNC's network has eliminated the threat.
But Mr Alperovitch said: "The Russians' interest in the political campaign will not stop at this incident. We fully expect that they will try to get back in."
The incident was first reported on Tuesday by The Washington Post.
"It should come as no surprise to anyone that political parties are high-profile targets for foreign intelligence gathering," said Democrat Jim Langevin of Rhode Island, who co-founded the House's cyber security panel.
"Nonetheless, it is disconcerting that two independent operations were able to penetrate the DNC, one of which was able to stay embedded for nearly a year."
Cyber security experts have previously told The Associated Press that neither Mr Trump's nor Hillary Clinton's campaign networks are secure enough to stop attacks.
Mrs Clinton's use of a private email server while secretary of state raised questions of how well her personal system was protected from intrusions. Her campaign has said there is no evidence it was breached.