I-Exclusive: Inselele ejwayelekile phezu kweRussia ibangele izindaba ezingamanga ezingenangqondo noma ezimbi eziye zaqinisa impi entsha ye-Cold, njengoba amanothi kaGareth Porter aphathelene nomlando wenyanga odlule wokuhlaselwa kwegridi kagesi wase-US.
NguGareth Porter, i-1 / 13 / 17 Izindaba ze-Consortium
Phakathi nenkinga enkulu yasekhaya lapho i-US ithi iRussia iphazamise ukhetho lwama-US, uMnyango Wezokuphepha Ezokuphepha (DHS) wabangela umfutho omfushane wezezindaba kazwelonke ngokudala nokusabalalisa indaba ekhohlisayo yokuthungathwa kweRussia engqalasizinda yamandla ase-US.
I-DHS iqalise indaba ekhona manje yekhompiyutha enezinyosi eBurlington, eMnyangweni weVermont Electricity ngokuthumela abaphathi be-Umbuso ukuthi balahlekise ulwazi oluyalukisayo, bese bafaka indaba ababeyazi ukuthi bangamanga futhi baqhubeka nokukhipha umugqa odukisayo kumaphephandaba .
Nokho, okwesabisa nakakhulu, i-DHS yayisakaze yabe isakaza indaba efana nalokhu yokuthungathwa kweRashiya kwePumpfield, e-Illinois ipompo yamanzi ngoNovemba 2011.
Indaba yokuthi uDHS wasakaza kabili kanjani izindaba ezingamanga zemizamo yaseRashiya yokubhubhisa "ingqalasizinda ebalulekile" yase-US ingumqondo wokuqaphela ukuthi abaholi abakhulu e-bureaucracy-on-the-make basebenzisa kanjani konke ukuthuthukiswa kwezombangazwe okukhulu ukuthuthukisa izithakazelo zabo, ukungahloniphi iqiniso.
I-DHS yenze umkhankaso omkhulu womphakathi ukugxila ekusongweni okusemthethweni kweRashiya kwingqalasizinda yamandla ase-US ekuqaleni kwe-2016. Umkhankaso wasebenzisa insolo yase-United States yokuhlasela kwe-cyber okuhlasela ingqalasizinda yamandla e-Ukraine ngoDisemba 2015 ukugqugquzela imisebenzi enkulu ye-ejensi - ukuqapha ukuhlaselwa kwe-cyber kwingqalasizinda yaseMelika.
Kusukela ngasekupheleni kuka-March 2016, i-DHS ne-FBI yenza uchungechunge lwezinkampani zezingqalasizinda ze-12 ezingenakunqunywa ezinkampanini zengqalasizinda yamandla kagesi emadolobheni ayisishiyagalombili okuthiwa, "I-Cyber Attack yase-Ukraine: impendulo kwabathintekayo base-US." I-DHS yashicilela esidlangalaleni, "Lezi zenzakalo zimelela owokuqala impikiswano engokoqobo ebonakalayo engqalasizinda ebalulekile ephumela ekuhlaselweni kwe-cyber. "
Leli gama lazigwema ngokuzikhandla ngokusho ukuthi amacala okuqala okubhujiswa kwengqalasizinda kazwelonke kusukela ekuhlaselweni kwe-cyber ayengavumelani ne-United States, kodwa yenziwa e-Iran yi-Obama ngokuphatha kuka-Obama no-Israyeli ku-2009 no-2012.
Kusukela ngo-Okthoba i-2016, i-DHS yavela njengomunye wabadlali ababili ababaluleke kakhulu - kanye ne-CIA-emdlalweni wezepolitiki mayelana nomzamo wokwaseRashiya othiwa ukuguqula ukhetho lwe-2016 kuDonald Trump. Khona-ke ngoDisemba 29, i-DHS ne-FBI basakaza "Umbiko Wokuhlaziywa Okuhlangene" kumasevisi aseMelika asetshenziswayo amandla ezweni lonke ngalokho athi "yizinkomba" zomzamo we-intelligence waseRussia ukungena nokuyekethisa amanethiwekhi e-computer e-US, kufaka phakathi amanethiwekhi ahlobene nomongameli ukhetho, ukuthi libizwa ngokuthi "GRIZZLY STEPPE."
Lo mbiko wabikezela ngokucacile emisebenzini yokuthi "amathuluzi kanye nengqalasizinda" esho ukuthi asetshenziswe yizinhlaka ze-intelligence zaseRussia ukuphazamisa ukhetho kwakuyizisongo ngqo kubo. Kodwa-ke, ngokusho kukaRobert M. Lee, umsunguli kanye ne-CEO yenkampani yezokuphepha kwe-cyber Dragos, owayesungule enye yezinhlelo zikahulumeni zakudala zase-US zokuzivikela ekuhlaselweni kwe-inthanethi kwizinsizakalo ezingqalasizinda zase-US, lo mbiko wawuqinisekile ukudukisa abamukeli .
"Noma ubani oyisebenzisayo uzocabanga ukuthi uphethwe yimisebenzi yaseRussia," kusho uLee. "Sasihamba ngezinkomba kulo mbiko futhi sathola ukuthi amaphesenti aphezulu ayengamaqiniso amanga."
U-Lee nabasebenzi bakhe bathole uhlu olulodwa olude lwamafayela e-malware angaxhunyaniswa nabaduni baseRashiya ngaphandle kwedatha ecacile mayelana nokusebenza kwesikhathi. Ngokufanayo inqwaba yamakheli e-IP ohlwini angakwazi ukuxhunyaniswa ne- "GRIZZLY STEPPE" kuphela ngezinsuku ezithile ezithile, ezingahlinzekiwe.
I-Intercept ithola ukuthi empeleni ama-42 amaphesenti amakheli e-IP ye-876 adalwe kulo mbiko njengoba asetshenzisiwe abaduni baseRashiya beyizikhwama zokuphuma kwe-Tor Project, uhlelo oluvumela ababhulogi, izintatheli nabanye - kubandakanya ezinye izinhlangano zempi - ukuya gcina ukuxhumana kwabo kwe-intanethi ngasese.
U-Lee uthe abasebenzi baseDHS abasebenzisa ulwazi lobuchwepheshe kulo mbiko banamandla kakhulu, kodwa lo mbhalo wawungenalutho uma izikhulu zihlukaniswa futhi zisuswe ezinye izingxenye eziyinhloko zalo mbiko futhi zanezela ezinye izinto ezingafanele zibe khona kuwo. Ukholelwa ukuthi i-DHS ikhishwe umbiko "ngenjongo yezombangazwe," okumele "ibonise ukuthi i-DHS ikuvikela."
Ukutshala iNdaba, Ukuyigcina ikhona
Lapho ethola umbiko we-DHS-FBI ibutho lezokuphepha lenethiwekhi yeBurlington Electric Company ngokushesha laqala ukuseshwa kwamalogi alokhompyutha ngokusebenzisa uhlu lwamakheli e-IP olunikeziwe. Lapho elinye lamakheli e-IP elikhulunywe embikweni njengenkomba yezingcingo zaseRussia zitholakale emagodini, insizakalo ngokushesha ebizwa ngokuthi i-DHS ukwazisa njengoba yayitshelwe ukuba kwenziwe yi-DHS.
Eqinisweni, ikheli le-IP kumakhompiyutha eBurlington Electric Company kwakumane nje iseva ye-imeyli ye-Yahoo, ngokusho kukaLee, ngakho kwakungeke kube yisibonakaliso esisemthethweni sokuzama ukufakwa kwe-intrusion. Lokho kwakufanele kube ukuphela kwendaba. Kodwa i-Umbuso ayizange ilandele ikheli le-IP ngaphambi kokuyibika ku-DHS. Kodwa-ke, kulindeleke ukuthi i-DHS ilawule ngokuyimfihlo kuze kube yilapho isicutshungulwe kahle futhi ixazulula inkinga.
"I-DHS ayifuni ukudedela imininingwane," kusho uLee. "Wonke umuntu kwakufanele agcine umlomo wakhe uvaliwe."
Esikhundleni salokho, isikhulu se-DHS esibizwa ngokuthi iWashington Post futhi sidlulisela izwi ukuthi esinye sezibonakaliso zokuqothulwa kweRussia kwe-DNC sitholakale kwinethiwekhi yekhompiyutha yaseBurlington. I-Post ayiphumelelanga ukulandela ukubaluleka okuyisisekelo kwe-journalism, ngokuthembela emthonjeni wayo we-DHS esikhundleni sokuhlola kuqala noMnyango we-Burlington Electric kuqala. Umphumela waba indaba kaDisemba yePost 30 enomusa ngaphansi kwesihloko esithi "Abaduni baseRussia bangenele igridi kagesi yase-US ngokusebenzisa usizo eVermont, kusho izikhulu zase-US."
Isikhulu se-DHS sasivumele ukuthi i-Post iphakamise ukuthi amaRussia ahlukumezile ayengena egridi ngaphandle kokusho kanjalo. Iphephandaba i-Post libike ukuthi amaRussia "awazange asetshenziswe ngokuqinile ikhodi ukuphazamisa ukusebenza kwe-utility, ngokusho kwezikhulu ezikhuluma ngesimo sokungaziwa ukuze zixoxisane nodaba lokuphepha," kodwa wabe esenezela nokuthi "ukungena kwesizwe igridi kagesi iyabonakala ngoba ibonisa ukuthambekela okungathi sína. "
Inkampani kagesi ngokushesha ikhishwe ngokuqinile ukuphika ukuthi ikhompyutha embuzweni ixhunywe egridi yamandla. Iposi laphoqeleka ukuba lihlehlise, empeleni, isimangalo sayo sokuthi igridi kagesi iye yahlushwa yiRussia. Kodwa inamathele ngendaba yayo yokuthi lo msebenzi wawusisulu se-harck yaseRussia ngezinsuku ezintathu ngaphambi kokuvuma ukuthi akukho bufakazi obunjalo bokuthi bekukhona.
Ngosuku olulandelayo indaba ishicilelwe, ubuholi be-DHS bulokhu bufakazela, ngaphandle kokusho ngokucacile, ukuthi umbuso weBurlington wawunqotshwe yiRashiya. UNobhala Wezandla Zobushicileli uJ.J. Todd Breasseale wanikeza i-CNN isitatimende ukuthi "izinkomba" ezivela kwisofthiwe enonya ezitholakala kwikhompyutha e-Burlington Electric "zifana" nalabo abasekhompyutheni yeDNC.
Ngokushesha nje uma i-DHS ihlola ikheli le-IP, noma kunjalo, liyazi ukuthi liyi-server yamafu e-Yahoo ngakho-ke akuyona inkomba yokuthi iqembu elifanayo elithinteka i-DNC lase lingene ku-laptop ye-Burlington Umbuso. I-DHS iphinde ifunde kusukela ekusebenziseni ukuthi i-laptop ebuzwayo isenwe yi-malware ebizwa ngokuthi i- "neutrino," engakaze isetshenziswe ku-"GRIZZLY STEPPE."
Ngemva kwezinsuku ezimbalwa i-DHS yembula lawo maqiniso abalulekile ePost. Futhi i-DHS isalokhu ivikela umbiko wayo ohlanganyelwe ePost, ngokusho kukaLee, owathola ingxenye yezindaba ezivela emithonjeni yeposi. Isikhulu se-DHS siphikisa ukuthi "siholele ekutholeni," esho. "Owesibini uthi, 'Bheka, lokhu kukhuthaza abantu ukuba baqhube izinkomba.'"
Indaba yangempela ye-DHS yamanga
I-Hack ye-Burlington ye-Electric eyesimweni esabisayo ikhumbuza indaba yangaphambili yokukhwabanisa kweRussia yombuso lapho iDHS nayo ibhekene nayo. NgoNovemba 2011, kubike ukuthi "ukungena ngaphakathi" kwikhompyutha yase-Illinois yesifunda sase-Springfield, e-Illinois efana neyakhe.
Njenge-Burlington fiasco, umbiko wamanga wawungaphambi kwesimangalo se-DHS ukuthi izinhlelo zezingqalasizinda zase-US sezivele zihlaselwa. Ngo-Okthoba i-2011, isekela lika-DHS iphini lika-Undersecretary uGreg Schaffer wacashunwa yi-Washington Post njengesixwayiso sokuthi "abaphikisana nathi" bayagxila eminyango yalezi zinhlelo. "USchaffer wanezela," Kwezinye izimo, kuye kwaba khona intrusions. " akazange acacise ukuthi nini, kuphi noma yikuphi, futhi akuzange kubhalwe phansi ngaphambili.
NgoNovemba 8, 2011, ipompo lamanzi elisifundazweni samanzi saselokishi saseCrranran-Gardner eduze kwaseSpanish, e-Illinois, sishiswe ngemuva kokuqhuma izikhathi eziningana ezinyangeni ezedlule. Ithimba lokulungisa elilethwe ukulilungisa lithole ikheli le-IP yaseRussia kulogi kusukela ezinyangeni ezinhlanu ngaphambili. Leli kheli le-IP empeleni livela efonini yocingo evela kumakontrakta owasetha isimiso sokulawula ipompo futhi owayehlala eRussia nomndeni wakhe, ngakho igama lakhe lisegeni ngekheli.
Ngaphandle kokuphenya ikheli le-IP ngokwalo, i-utility ibike ikheli le-IP kanye nokuwa kwempompo yamanzi kwi-Environmental Protection Agency, eyayidlulisela ku-Illinois Statewide Terrorism and Intelligence Center, ebizwa nangokuthi isikhungo se-fusion esakhiwa yi-Illinois State Amaphoyisa kanye nabameleli be-FBI, i-DHS namanye ama-ejensi kahulumeni.
NgoNovemba i-10 - ezinsukwini ezimbili kuphela ngemuva kombiko wokuqala ku-EPA - isikhungo se-fusion sikhiqize umbiko obizwa ngokuthi "I-Cyber Intrusion yase-Public Water District" okushiwo ukuthi i-hacker yaseRussia ibambe ukuthi ubani ogunyaziwe ukusebenzisa ikhompiyutha futhi wayenekhompyutheni uhlelo olwenza ukuba amapompo amanzi ahluleke.
Isonkontileka ogama lakhe lingesigabeni esiseduze nekheli le-IP kamuva utshele umagazini ophefumulelwe ukuthi ucingo olulodwa kuye lube lubeke lolu daba ukuphumula. Kodwa i-DHS, eyayiholele ukubeka umbiko, ayizange ihlukumeze ukwenza leyo foni ecacile ngaphambi kokuvula ukuthi kumele kube yingozi likaRussia.
Isikhungo se-fusion "umbiko wezingcweti," esasakazwa yi-DHS Office of Intelligence and Research, sithathwe yi-Blogger-blogger-security blogger, obizwa ngokuthi iThe Washington Post futhi ufundele intatheli intatheli. Ngakho i-Post yathunyathelisa indaba yokuqala yokuzwakalayo ye-Hack yaseRashiya ibe ingqalasizinda yase-US ku-Nov. 18, i-2011.
Ngemuva kokuthi indaba yangempela iphume, i-DHS inqatshelwe umthwalo walo mbiko, ethi umthwalo wesikhungo se-fusion. Kodwa uphenyo lwenkampani yeSenate embule embikweni wonyaka owodwa ukuthi ngisho nangemva kokuba umbiko wokuqala uphishiwe, i-DHS ayikhiphe noma ikuphi ukuhoxisa noma ukulungiswa kumbiko, futhi ayikwazanga abamukeli ngeqiniso.
Abaphathi be-DHS ababhekene nombiko wamanga batshela abaphenyi baseSeneate ukuthi imibiko yayingahloswe ukuba "iqedele ukuhlakanipha," okufakazela ukuthi ibha yokuthola ngokunemba kolwazi akudingeki ukuthi iphakame kakhulu. Baze bathi le mbiko "yimpumelelo" ngoba yenze lokho "okumele kwenziwe - kwakha isithakazelo."
Kokubili iziqephu zaseBurlington naseCurran-Gardner zigcizelela iphuzu eliyinhloko lomdlalo wezombusazwe wokuphepha kwezwe eNkathini Yomhlaba WaseNtshonalanga YaseMpi: Abadlali abakhulu bezenhlalo abafana ne-DHS banezombangazwe ezinkulu ezombusazwe ekubhekeleni usongo lwaseRussia, futhi noma nini lapho kuvela ithuba yenza kanjalo, bayolisebenzisa.
