As usual, the rabbit hole gets much deeper the more you look.
In yesterday’s post, Credibility of Cyber Firm that Claimed Russia Hacked the DNC Comes Under Serious Question, I examined how CrowdStrike, the cybersecurity firm hired by the DNC to look into its hacking breach, had been exposed as being completely wrong about a separate attack it claimed originated from the same group it claimed broke into DNC systems, and supposedly works for Russia’s military intelligence unit, GRU. Here’s some of what we learned:
An influential British think tank and Ukraine’s military are disputing a report that the U.S. cybersecurity firm CrowdStrike has used to buttress its claims of Russian hacking in the presidential election.
The CrowdStrike report, released in December, asserted that Russians hacked into a Ukrainian artillery app, resulting in heavy losses of howitzers in Ukraine’s war with Russian-backed separatists.
But the International Institute for Strategic Studies (IISS) told VOA that CrowdStrike erroneously used IISS data as proof of the intrusion. IISS disavowed any connection to the CrowdStrike report. Ukraine’s Ministry of Defense also has claimed combat losses and hacking never happened.
The challenges to CrowdStrike’s credibility are significant because the firm was the first to link last year’s hacks of Democratic Party computers to Russian actors, and because CrowdStrike co-founder Dimiti Alperovitch has trumpeted its Ukraine report as more evidence of Russian election tampering.
continue reading