U.S. Govt. Hackers Get Burned by Online Vigilantes, Researchers

Elias Groll

April 10, 2017 at 4:51 PM

Or is Russia retaliating for President Donald Trump’s Syria strikes through one of its cyber-proxies?

It’s been a tough few days for America’s state-sponsored hackers. On Monday, CIA hackers were outed by an American security firm who linked their work to recent WikiLeaks dumps. And over the weekend, a shadowy group of hackers calling themselves the Shadow Brokers spilled NSA hacking tools onto the internet.

The Shadow Brokers dump and the report from security firm Symantec shines the spotlight once more on the hacking capabilities of American spy agencies, amid a growing scandal about Russian intelligence agencies’ attempts to influence the American election. It also underscores the spies’ vulnerability to detection when carrying out clandestine work online and the risk of exposure in an era when reams of data can be quickly and easily leaked and publicized.

In a blog post Monday, Symantec said it had linked 40 attacks in 16 countries to material that bear the markings of the CIA hacking tools revealed by WikiLeaks last month in its so-called Vault 7 series. The CIA has not confirmed the authenticity of the leak. Symantec described the work of a group it has dubbed “Longhorn,” which it says has been active since at least 2011 and has targeted foreign governments and firms in the financial, telecommunications, and other industries for espionage.

Symantec says it has observed attacks with technical features that match material published by WikiLeaks in Vault 7. “Given the close similarities between the tools and techniques, there can be little doubt that Longhorn’s activities and the Vault 7 documents are the work of the same group,” Symantec researchers wrote.

Symantec tracked the group operating on computer systems in Middle East, Europe, Asia, and Africa. It documented one infection in the United States, which was quickly uninstalled. Operating in the United States is against the CIA’s charter, and Symantec said it believed the infection was unintentional.

Meanwhile, the leak of NSA hacking tools shed light on the kinds of organizations targeted by the intelligence agency. They include telecommunications firms and a large number of foreign universities, including the Chinese Institute of Higher Energy Physics, according to security researchers who have examined the code released on Saturday. These hardly surprising targets for America’s premier signals intelligence agency.

Some tools released allow the NSA to penetrate deep into the infrastructure of a telecommunications firm and collect call data on large numbers of phone numbers, a computer researcher who works under the name x0rz told Foreign Policy. By gathering such data, the NSA can analyze who talks to whom and for how long on foreign telephone systems.

Most of the released tools are old techniques, which may no longer be a part of NSA’s hacking arsenal. The NSA did not respond to emails seeking comment.

The identities behind the Shadow Brokers remain shrouded in mystery but the hackers seemed motivated to leak the NSA hacking tools by anger over what they perceive as President Donald Trump’s betrayal of his base. The group attacked Trump for last week’s missile strike against Syria in retaliation for the use of chemical weapons, in a statement accompanying the Saturday release of the hacking tools. It also denounced the removal of Trump adviser Steve Bannon from the National Security Council and the failure to repeal Obamacare.

“Dear President Trump, Respectfully, what the fuck are you doing?” the group wrote on the self-publishing website Medium.“TheShadowBrokers voted for you. TheShadowBrokers supports you. TheShadowBrokers is losing faith in you.” Publishing NSA hacking tools, the Shadow Brokers explain, constitutes “our form of protest.”

Some analysts have speculated the Shadow Brokers represent the work of a disgruntled NSA insider who has made off with a huge trove of material. Still others believe that it is the project of an American adversary, perhaps Russia. Under the latter theory, the leak of the hacking tools would seem a retaliation by Russia for the strike against Syria, a Russian ally. Publishing hacking tools allows a defender to block and render them ineffective.

The Shadow Brokers first surfaced last August when they published a first set of NSA hacking tools and held a second set in reserve, to be sold at auction. The hacking tools published in August included previously unknown vulnerabilities in widely used networking equipment. Researchers have so far discovered no such information in Saturday’s dump.

Last year’s auction did not generate significant bids, and the Shadow Brokers claimed on Saturday that their dump included the information they had planned to sell. But security researchers examining the dump said they believed the published archive was incomplete.

Photo by Mark Wilson/Getty Images

Good Morning America
Biden won't sanction Israeli military units accused of human rights violations in West Bank before start of war with Hamas
The Biden administration has determined that three military battalions with the Israel Defense Forces committed "gross human rights violations" against Palestinian civilians in the West Bank but will remain eligible for U.S. military aid regardless because of steps Israel says it's taking to address the problem, ABC News has learned. The administration assessment, which has not yet been made public, was outlined in an undated letter by Secretary of State Antony Blinken to House Speaker Mike Johnson obtained by ABC News. The U.S. determination "will not delay the delivery of any U.S. assistance and Israel will be able to receive the full amount appropriated by Congress," Blinken wrote.
40m ago
Good Morning America
Secretary of State Antony Blinken set to meet with President Xi of China
U.S. Secretary of State Antony Blinken is set to meet with President Xi of China on Friday following a meeting with Director of the Chinese Communist Party (CCP) Central Foreign Affairs Commission and Foreign Minister Wang Yi, according to the U.S. State Department. Blinken, in his remarks, described the first meeting with Wang Yi as "extensive and constructive."
2h ago
ABC News
Superintendent speaks out after time capsule from 1920 found in old high school
A construction crew was in the process of demolishing an old high school in Minnesota recently when they discovered a time capsule tucked inside of a cornerstone from when the building was erected in 1920. A press conference was held Monday following the discovery, during which the contents from the capsule were revealed to community members after being kept in a metal box for over a century. Speaking to "Good Morning America," Owatonna Public Schools Superintendent Jeff Elstad said there were a lot of documents found in the capsule.
7h ago
ABC News
US military starts building pier off of Gaza to deliver aid
The U.S. military has begun to build the long-awaited port and causeway off the coast of Gaza that will establish a maritime corridor to bring humanitarian aid into Gaza, the Pentagon said Thursday. "I can confirm that U.S. military vessels, to include the USNS Benavidez, have begun to construct the initial stages of the temporary pier and causeway at sea," Maj. Gen. Pat Ryder, the Pentagon's press secretary, told reporters, referring to the Joint Logistics Over-the-Shore, or JLOTS, system floating pier delivery system. "We are aware of the significant interest in this important effort and will provide much more information in the very near future as we work alongside the international community to rush aid to the people of Gaza," he added.
11h ago
ABC News
Former official told investigators Trump had 'no standing declassification order' regarding documents, filing says
Prosecutors in former President Donald Trump’s classified documents case said in court filings that a former Trump administration official told investigators that Trump, as president, had "no standing declassification order" regarding documents in his possession. The filings, which are part of special counsel Jack Smith's response to a Trump legal team motion to compel discovery in the case, include notes from prosecutors' interview with a former administration official who the special counsel says "refused recording of the interview."
11h ago
ABC News
At emotional DC memorial, Chef José Andrés mourns 7 World Central Kitchen aid workers killed by Israeli airstrikes
World Central Kitchen founder José Andrés delivered emotional and, at times, stirring remarks to an interfaith celebration of life held at the Washington National Cathedral on Thursday in honor of the seven aid workers with the chef's aid organization who were killed in a Gaza airstrike by Israel Defense Forces earlier this month. The service honored Palestinian Saifeddin Issam Ayad Abutaha; three British nationals, John Chapman, James Henderson and James Kirby; Jacob Flickinger, a dual U.S. and Canadian citizen; Lalzawmi "Zomi" Frankcom of Australia; and Damian Sobol of Poland.
11h ago
ABC News
Baltimore high school athletic director used AI to create fake racist audio of principal: Police
Police arrested a Baltimore high school athletic director Thursday after they said they discovered he allegedly used artificial intelligence to create a phony audio recording of the school's principal that went viral and cost the school leader his job temporarily and his safety. Principal Eric Eisworth was removed from his position at Pikesville High School after the school district began investigating the audio clip that was circulated among staff and social media in January where it appeared Eisworth made racist comments against Black and Jewish persons, investigators allege. The three-month probe, which involved local police and the FBI, concluded that the audio was forged using AI tools by Dazhon Darien, the athletic director at the school, according to Baltimore Chief of Police Robert McCollough.
11h ago
Good Morning America
EPA limits 4 types of power plant pollution with sweeping rulemaking
The Biden administration on Thursday announced a series of new rules designed to cut pollution emitted from coal and natural gas-fired power plants having an impact on air, water, land and climate. "At the same time, the power sector is also a major contributor to the pollution that drives climate change and threatens public health." "At EPA it is our responsibility to act within the bounds of our legal authority and assess impacts in a way that is smart, effective, follows the latest science and enables our economy to grow and thrive," he added.
11h ago
ABC News
Giuliani, Meadows indicted in Arizona fake elector scheme; Trump unindicted co-conspirator
Several former and current key aides to former President Donald Trump appear to be among those charged by the Arizona State Attorney General over their alleged efforts to overturn the 2020 election. Arizona Attorney General Kris Mayes also announced charges against 11 named alleged fake electors and seven people whose names are redacted in the filing for their alleged role in efforts to subvert Joe Biden's 2020 victory in the state.
11h ago
ABC News
College protests live updates: Hundreds arrested as universities crack down on pro-Palestinian encampments
Many pro-Palestinian protesters are calling for their colleges to divest of funds from Israeli military operations, while some Jewish students on the campuses have called the protests antisemitic and said they are scared for their safety. The student protests -- some of which have turned into around-the-clock encampments -- have erupted throughout the nation following arrests and student removals at Columbia University in New York City. Students at schools including Yale University, New York University, Harvard University, University of Texas at Austin, University of Southern California and more have launched protests.
12h ago
ABC News
Moody Blues founding member Mike Pinder dies at 82
Mike Pinder – keyboardist, vocalist and founding member of the Moody Blues – passed away Wednesday at the age of 82. The news was confirmed in a statement from his family, which was shared on Facebook by his Moody Blues bandmate, John Lodge. "Michael's family would like to share with his trusted friends and caring fans that he passed peacefully," reads the statement.
12h ago
Good Morning America
Isabella Strahan shares day-in-the-life amid chemotherapy, brain tumor battle
Six months after being diagnosed with a brain tumor, Isabella Strahan is sharing a glimpse into her day-to-day life. The 19-year-old daughter of "Good Morning America" co-anchor Michael Strahan, shared in a new video Wednesday on her YouTube channel what it's like as she undergoes chemotherapy and works on her recovery. In a video filmed by her twin sister, Sophia Strahan, Isabella takes viewers inside an area in her home she has set up as "Isabella's Station," where she stores a container full of medicine bottles, among other things.
13h ago
Good Morning America
Harvey Weinstein's rape conviction overturned in New York; DA will attempt to retry
The rape conviction of movie producer Harvey Weinstein has been overturned by New York's highest court. The New York Court of Appeals, in a scathing 4-3 opinion, overturned Weinstein's conviction on sex crimes against three women, finding the trial judge "erroneously admitted testimony of uncharged, alleged prior sexual acts against persons other than the complainants of the underlying crimes." The court said that testimony "served no material non-propensity purpose" and "portrayed defendant in a highly prejudicial light."
13h ago
ABC News
5 takeaways from historic Supreme Court arguments on Trump's immunity claim
The Supreme Court on Thursday heard historic arguments on whether former President Donald Trump can be criminally prosecuted related to his efforts to overturn his 2020 election loss. The former president, who lamented not attending arguments in Washington as he is on trial in New York in a separate criminal trial, in which he has pleaded not guilty, was represented by attorney John Sauer. Michael Dreeben argued on behalf of the government and special counsel Jack Smith.
14h ago
ABC News
Speaker Johnson alleges Hamas support for anti-Israel campus protests, threatens intervention
Speaker Mike Johnson, claiming that Hamas supports the pro-Palestinian, anti-Israel protests at Columbia University and at other U.S. colleges, on Thursday threatened congressional intervention, including pulling federal funding from the institutions. ABC News has not documented any cases of protesters waving Hamas flags, as Johnson suggested. Student protests at Columbia and other schools have primarily denounced Israeli military action in Gaza and expressed support for Palestinian civilians, rather than expressing support for Hamas.
14h ago
ABC News
Texas sheriff conducting criminal investigation into deadly National Guard helicopter crash near border
A deadly crash involving a National Guard helicopter is the focus of an investigation in Texas into whether there was any criminal wrongdoing involved, ABC News has learned. The March 8 incident near the U.S.-Mexico border resulted in the deaths of Chief Warrant Officer 2 Casey Frankoski and Chief Warrant Officer 2 John Grassia, who were members of the New York Army National Guard, and U.S. Border Patrol agent Chris Luna, a South Texas resident, U.S. officials said. An unidentified National Guard member was injured in the collision, which occurred in rural Starr County.
14h ago
ABC News
No cuts: Proposed bill could change skipping the security line at the airport
California lawmakers have pushed forward a new piece of legislation aimed at changing the way third-party security screening companies like CLEAR help expedite customers through security at the airport. An annual CLEAR membership that costs $189 allows travelers to skip the onerous security lines and instead verify their identity with biometric data at a kiosk, then get escorted by an agent to the front of the line bypassing TSA and TSA PreCheck.
14h ago
ABC News
Could a president stage a coup? And 9 more key moments from Trump's Supreme Court immunity hearing
As various Supreme Court justices themselves acknowledged during a high-stakes hearing on Thursday, they could potentially reshape the contours of presidential power when they rule on whether Donald Trump is entitled to some amount of immunity from prosecution for alleged acts in the White House as he pushed to overturn his 2020 election loss. Over nearly three hours on Thursday, with demonstrators gathered outside, the justices grappled with arguments from both Trump's attorney and an attorney for special counsel Jack Smith, who has charged Trump in connection with his effort to stay in office after losing to now-President Joe Biden. Trump denies all wrongdoing and disputes some of what he is accused of doing while he maintains that other actions were part of his presidential authority.
14h ago
Good Morning America
2 of the 4 horses that broke free in central London underwent surgery, British Army says
Four horses -- and at least one of them soaked in blood -- caused chaos across central London on Wednesday morning after breaking free in Westminster, police say. The horses were among 150 horses in the Household Cavalry Mounted Regiment, the ceremonial guard of the British monarch, which are exercised every morning in the city, according to the British Army. On Wednesday morning, seven horses were spooked by construction work when building materials were dropped next to them, according to the Army.
15h ago
ABC News
Federal judge rejects Donald Trump's bid for new E. Jean Carroll defamation trial, upholds $83M judgment
A federal judge in New York on Thursday rejected former President Donald Trump's bid for a new trial in a defamation case brought by writer E. Jean Carroll. "Contrary to the defendant's arguments, Ms. Carroll's compensatory damages were not awarded solely for her emotional distress; they were not for garden variety harms; and they were not excessive," Judge Lewis Kaplan wrote. "Mr. Trump's malicious and unceasing attacks on Ms. Carroll were disseminated to more than 100 million people," he added.
15h ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

U.S. Govt. Hackers Get Burned by Online Vigilantes, Researchers

Latest Stories

Biden won't sanction Israeli military units accused of human rights violations in West Bank before start of war with Hamas

Secretary of State Antony Blinken set to meet with President Xi of China

Superintendent speaks out after time capsule from 1920 found in old high school

US military starts building pier off of Gaza to deliver aid

Former official told investigators Trump had 'no standing declassification order' regarding documents, filing says

At emotional DC memorial, Chef José Andrés mourns 7 World Central Kitchen aid workers killed by Israeli airstrikes

Baltimore high school athletic director used AI to create fake racist audio of principal: Police

EPA limits 4 types of power plant pollution with sweeping rulemaking

Giuliani, Meadows indicted in Arizona fake elector scheme; Trump unindicted co-conspirator

College protests live updates: Hundreds arrested as universities crack down on pro-Palestinian encampments

Moody Blues founding member Mike Pinder dies at 82

Isabella Strahan shares day-in-the-life amid chemotherapy, brain tumor battle

Harvey Weinstein's rape conviction overturned in New York; DA will attempt to retry

5 takeaways from historic Supreme Court arguments on Trump's immunity claim

Speaker Johnson alleges Hamas support for anti-Israel campus protests, threatens intervention

Texas sheriff conducting criminal investigation into deadly National Guard helicopter crash near border

No cuts: Proposed bill could change skipping the security line at the airport

Could a president stage a coup? And 9 more key moments from Trump's Supreme Court immunity hearing

2 of the 4 horses that broke free in central London underwent surgery, British Army says

Federal judge rejects Donald Trump's bid for new E. Jean Carroll defamation trial, upholds $83M judgment