"Grizzly Steppe" - FBI, DHS Release "Report" On Russian Hacking

Tyler Durden's picture

As part of the "evidence" meant to substantiate the unprecedented act of expelling 35 Russian diplomats and locking down two Russian compounds without a major concurrent political or diplomatic incident, or an act of war, and which simply provides an outlets for the Democrats to justify the loss of their candidate in the US presidential election (sorry, Putin did not tell the rust belt how to vote), the Department of Homeland Security and the FBI released a 13-page "report" on the Russian action done "to compromise and exploit networks and endpoints associated with the U.S. election", i.e., hack it.

As the DHS writes, "this document provides technical details regarding the tools and infrastructure used by the Russian civilian and military intelligence Services (RIS) to compromise and exploit networks and endpoints associated with the U.S. election, as well as a range of U.S. Government, political, and private sector entities. The U.S. Government is referring to this malicious cyber activity by RIS as GRIZZLY STEPPE."

Where things get awkward, however, is at the very start of the report, which prefaced by a broad disclaimer, according to which nothing in the report is to be relied upon and that everything contained in it may be completely false.

No really: "this report is provided “as is” for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service referenced in this advisory or otherwise."

Which then begs the question who provides warranties of any kind to the allegation that Russia hacked the election, the 13-page report supposedly provides technical details regarding tools and infrastructure used by Russian civilian and military intelligence services to “compromise and exploit networks and endpoints associated with the U.S. election, as well as a range of U.S. Government, political, and private sector entities.”

So with that useful background in mind, we present some more notable excerpts from the report, where we get an introduction to the alleged Russian "parties" -  APT and APT 28. and note that nowhere in the report is it actually confirmed that these are the two alleged hackers or that they were instructed to "hack" the DHS (or the election as Obama puts it) by the Kremlin.

The U.S. Government confirms that two different RIS actors participated in the intrusion into a U.S. political party. The first actor group, known as Advanced Persistent Threat (APT) 29, entered into the party’s systems in summer 2015, while the second, known as APT28, entered in spring 2016.

 

 

Both groups have historically targeted government organizations, think tanks, universities, and corporations around the world. APT29 has been observed crafting targeted spearphishing campaigns leveraging web links to a malicious dropper; once executed, the code delivers Remote Access Tools (RATs) and evades detection using a range of techniques. APT28 is known for leveraging domains that closely mimic those of targeted organizations and tricking potential victims into entering legitimate credentials. APT28 actors relied heavily on shortened URLs in their spearphishing email campaigns. Once APT28 and APT29 have access to victims, both groups exfiltrate and analyze information to gain intelligence value. These groups use this information to craft highly targeted spearphishing campaigns. These actors set up operational infrastructure to obfuscate their source infrastructure, host domains and malware for targeting organizations, establish command and control nodes, and harvest credentials and other valuable information from their targets.

While there is more in the report below, essentailly what it does is blames several "known" Russian hacking organizations for what was simply a very unsophisticated phishing attack, one which could have been conducted by any 15-year-old in Cambodia or any other location around the globe.

The report comes as part of a slate of retaliatory measures against Russia issued Thursday by the Obama administration in response to the hacks. The Intelligence Community in October formally attributed the attacks to Russia, but provided no evidence to support its assessment.  It is unclear if this report, for which the DHS "does not provide any warranties of any kind regarding" its contents is what is supposed to pass off as "proof" that Russia hacked the US election; if so, Putin will indeed be laughing all night.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
greenskeeper carl's picture

So, in other words, we have no real, concrete evidence, just take our word for it?

Lumberjack's picture

I didn't know bullshit was a 3 letter word.

Ghost of Porky's picture

I'm more convinced than ever that Hitlery would have started WWIII.

willpoi's picture

Find hard evidence Hillary is guilty - Don't Indict.

Find No evidence Russia wanted to disrupt the elections by showing Hillary is a crook - Overreact!

Mr. Bones's picture

Make a note, they released this before the evening news on Thursday instead of after the evening news on Friday.

y3maxx's picture

-Give Obama a nobel peace prize of bullshit on his way out,

to match the nobel peace prize for peace when he came in.

-Unless this is one way Obama will declare he will remain President.

Holy hand grenade of Antioch's picture

AaaaahH... I see now... it was Comrade Mustard in the library with the candlestick!

Mike in GA's picture

Wish they'd gotten Comrade Ketchup in the M.E. with a red line up his horse's ass.

Hands off m yBox's picture

or Comrada Cunton and Barry Oblowmeo with the horses dick up their ass

tmosley's picture

King Nigger is getting evicted, so he's trashing the place on the way out.

Anyone who has ever rented to one knows this behavior well.

Bumpo's picture

Assuming you're right, and Russia "Hacked" the elections, exactly what did they do? Please explain. Hack is never defined. Its not the Hillary emails. Its not the Podesta emails. Its not Project Veritas. Explain "Hack" - WHAT. EXACTLY. DID. THEY. DO.

Joe Davola's picture

That is the question - DNC was an insider leak.

WordSmith2013's picture

This is really all about PIZZAGATE!

The Cover Is Blown Off The Ongoing
Worldwide C.I.A. Black Pedo-Operation

 

http://stateofthenation2012.com/?p=60679

 

PIZZAGATE: A Special Report on the Washington, D.C. Pedophilia Scandal

 

 

Luc X. Ifer's picture

WTF I just read, a report wich is not a report because we acknowldge all is immagination not evidence baxked story line now even a  Harlequin vomit novel is much of more value than this diarrhea 

Whoa Dammit's picture

The Grizzley Graphic also doubles a chart for transgender bathroom usage.

BeanusCountus's picture

Well, after that report, I can't even assume they are right. Please tell me they have something more than this. And the Senate bought it? Note to self: vote in next election against any Senator that took this report as "proof". Idiots.

A Nanny Moose's picture

I mean...you would think they would come up with something plausible like:

Pedo-Desta's password was stolen using an email phishing attack, that contained a link to a server hosted in Russia. Oh wait...we have that email, and the MIME headers...ooops.

In the InfoSec World, the term Advanced Persistent Threat is euphemism for, "we don't know what the fuck is happening to our data, or what to do about it." This is often a marketing term employed by large, bureactratic ITSec vendors, like Symantec, who are trying to explain to customers, why their flagship product (signature based antivirus), no longer works because they failed to adapt to a threat landscape that has left them in the dust.

froze25's picture

This is proof? Hahaha, I got proof I own the Atlantic Ocean, you want to buy it from me? I also own the rights to the "Question Mark [?] ", I am owed some big money for its use.

HamSandwich's picture

Basically we have gov officials that are too damn dumb to not click on phishing links (like Podesta did) and execute trojans contained in .zip files used by hackers looking to glean credit and identity info. What a joke. This report is a joke. Obama is a joke. Retards will lap it up as "evidence" because they're retarded.

Mr.Sono's picture

So Putin 28 and Putin 29 hacked dnc. Got it.

auricle's picture

I work in IT and phishing attacks happen on a regular basis from servers all over the world. It is commonplace on the internet. The phishing is always done from a slave computer and thus is impossible to ever know the original source. All you can do is prohibit the compromised machine from accessing your networks. It is a neverending task for IT departments. What was released in this article only shows how phishing is done nothing that links to a government. It appears they are trying to attribute the location of the slave computer as the location of the source computer and that would be a YUGE mistake. They better have far more information than this since they declared a national emergency against Russia. 

Davy Crockett's picture

This is a 13 page document

  • Page 13 is how to contact the DHS and FBI, should you ever want to
  • Pages 6 - 12 is just a general vomitting of standard "how to secure you server" advice that has no relation to anything specific.
  • Page 5 - a 19 line  PHP script (God help us) that you can run to see if your server has been infected by a specific root kit.
  • Page 4 - a list of hacker groups from Russia, supposedly.  PinchedDuke, Tsar Team, and Energetic Bear to name a few.  Must be Russian
  • Pages 2-3 - a meaningless graphic that says that "Advanced Persistent Threat 28 and 29" are Russians 'because we said so'
  • Page 1 - Boilerplate Introduction

I have to say, there is no meat here.  The only pages that even pretend to be meat are pages 2, 3, and 4.  Those pages are actually completely devoid of actual facts.  The other 10 pages don't even pretend to have any actual evidence or facts.

 

cro_maat's picture

Davy - excellent synopsis of the DHS / FBI lame attempt at a psyop.

Here is a good overview of what voting machines were in use and which could be hacked through the internet:

https://www.verifiedvoting.org/which-voting-machines-can-be-hacked-throu...

Here is a map of those machines by state:

https://www.verifiedvoting.org/verifier/#year/2016/

Note that 17 states used paper ballots exclusively and 3 states were only mail in ballots. Nowhere in the Grizzly Stepp (what moron thought this name up) report do they discuss any of the different technologies in use and that only the newer ones are ever connected to the internet.

Chupacabra-322's picture

A Scripted False Narratice / PsyOp report from, aside from the Criminal Pure Evil Psychopaths at the CIA. Two of the most discredited Criminal Corporate Fraud Agencies.

Dear War Criminal Corporate Fraud Agencies,

You're completely Lawless and The American People no longer have trust, loyalty & respect to your Criminal Institutions.

And, didn't the Governor of Michigan write DHS The Dept. of Human Sacrifice a letter inquiring as to why DHS attempted to hack into the elections there?

These Fuckimg Criminals have no Shame. Amateurs.

KingMoe's picture

No, no, no.

Did you not see the graphic, easy to understand flowchart? Guy in hoodie (thug) is colored red (russian thug, maybe republican thug) and is hard at work sending and recieving true evil to / from blue (DNC, mom, apple pie) computers on the other side of the interwebs?

Did you not feel more secure about the last eight years of these guys in charge of cyber-stuff when they recited, word for word, page 48 of "free A+ certification security course for remedial readers"?

 

Draybin Deffercon III's picture

In the previous thread you accused me of being a criminal. Please cite specifically which laws I have broken?

Can you do it moron?

Mercury's picture

REPORT: "...to compromise and exploit networks and endpoints associated with the U.S. election"

 

...which resulted in exposing primary source evidence of Clinton Machine and DNC unethical/illegal behavior assoiciated with the U.S. election.

So, our law enforcement agencies failed us here I guess because otherwise we wouldn't have known, would we?

Leakers? Russians? non-Russian hackers?

As Hillary would say:

WHAT DIFFERENCE DOES IT MAKE !?!!?

// //
chunga's picture

I've never felt the US govt moar out of control than it is right now. It feels like it's about an inch away from going *overt* totalitarian.

There will be mayhem at the inauguration.

Chupacabra-322's picture

@ chunga,

Relax brother. Many can relate with the high anxiety level. Appropiate Under Cover Law Enforcement, Military security & Intelligence measures will be present at the Inauguration to deal with violence, threats & Sorros Agent Provocateurs.

One thing is certain. Trump has been Brillant & steps ahead of the Criminal Establishment as well as Presstitute Media. Inauguration day will be no different. And, this will be no Dealey Plaza.

chunga's picture

It would be nice to know for sure who the security agencies report to. These days it's very hard to say.

Chupacabra-322's picture

Well, everyone would agree. 17 Highly Compartmentalized Competitive Intelligence Agenices are one too many.

Especial the by default War Criminal Ones. CIA, FBI & DHS for starters. A complete over haul, defunding & Criminal Arrests are long over do.

Dimwit's picture

"WHAT DIFFERENCE DOES IT MAKE"

It will make America the 'laughing-stock' of the World.

http://www.phrases.org.uk/meanings/laughing-stock.html

Withdrawn Sanction's picture

Relax, Dimwit.  People (worldwide) who know how to think for themselves already realize this is and has been a crock.  It's meant as deflection; as in to deflect attention from the content of what was leaked (not hacked) by INSIDERS.   So it wont matter to the people who count.  

People who dont know how to think for themsleves dont matter.  So either way, this is an irrelvancy erected on quicksand.  

Truther's picture

Lies, lies and more lies. Fuck the Feds along with Barry, McCainISIS, and Graham the Fag.

Fredo Corleone's picture

Bill Banzai's flow charts are far more accurate.

SoDamnMad's picture

McStain was in Lithuania and Graham was in Latvia beating the war drums for war with Russia. Neither country could hold out for more than 6 hours before a regiment of Russian paratroopers would be in line at McDonalds in their capitals filling up of Big Macs (which are NOT named for McCain.)

Side note. McCain looks like a withered old fart snatched out of some nursing home. Graham not much better. 

Offthebeach's picture

McStain. Doing to Latvia what he did to, half dozen aircraft, Savings & Loans, TBTF Bailout, Syria.

He's like the coal canary of doom
If he shows up to save you, get in the box, you're dead.

rex-lacrymarum's picture

The Angel of Death. Really the very last US citizen you want to come visit your country. Wherever he shows up, people are bound to be wading in blood and guts shortly. It is downright eerie in fact. The governments of some countries have learned the lesson by now and have demonstrated an uncanny ability to back down from important economic projects that have required years of planning and billions in capital expenditure  at warp speed the moment this death-dealing clown shows his mummified visage:  http://www.acting-man.com/?p=32355   (the link inter alia leads to a transcript of certain conversations in Bulgaria's halls of power around the time he popped in...). 

 

 

GUS100CORRINA's picture

Just one thought comes to mind ...

"THE HEART IS DECEITFUL ABOVE ALL ELSE AND DESPARATELY WICKED ... WHO CAN KNOW IT?"

I will let everyone guess which book this quote comes from.

 

refill6times's picture

probably because the sunday shows tape on fri-sat.

The networks have to be supplied the questions to ask and the so-called senate inteligence members have to be supplied the answers.

 

walküre's picture

January 20th is still light years away it seems

youarelost's picture

TRUMP also said he will not indict.

hxc's picture

Because TRUMP is the president, not the DOJ

youarelost's picture

Your comment is angry and makes no sense

localsavage's picture

Yet, he didn't say that Sessions wouldn't indict

Publicus_Reanimated's picture

Let's be really careful about that. Sessions, as a political appointee of Trump, will indict Hillary Clinton on the day hell freezes over. His only option is to hand off the investigation to a special counsel (look it up, the Watergate and Lewinsky era rules no longer apply). The special counsel does have indictment power.