Please ensure Javascript is enabled for purposes of website accessibility

Trump-Backed Tax-Cut and Spending Bill Passes US Senate

4 hours ago

Israeli Officials to Hold Ceasefire Talks in Washington Amid Military Escalation in Gaza

5 hours ago

Trump Escalates Feud With Musk, Threatens Tesla, SpaceX Support

5 hours ago

Musk Vows to Punish Lawmakers Who Back Trump’s Spending Bill

21 hours ago

Fresno Man Sentenced to Nearly 6 Years for $4.2 Million Tech Startup Fraud

22 hours ago

Suspect Identified in Ambush Shooting That Killed 2 Idaho Firefighters

23 hours ago

Will Valadao Spoil Trump’s Plan for July 4th ‘Big Beautiful Bill’ Signing?

1 day ago

Shaver Lake and Reedley 4th of July Shows Are Wednesday. Who Else Is Celebrating?

1 day ago
US: Russian Hackers Targeting State, Local Networks
gvw_ap_news
By Associated Press
Published 5 years ago on
October 23, 2020

Share

WASHINGTON — U.S. officials said that Russian hackers have targeted the networks of dozens of state and local governments in the United States in recent days, stealing data from at least two servers. The warning, less than two weeks before the election, amplified fears of the potential for tampering with the vote and undermining confidence in the results.

The advisory from the FBI and the Department of Homeland Security’s cybersecurity agency describes an onslaught of recent activity by a Russian state-sponsored hacking group against a broad range of networks, some of which were successfully compromised. The alert released Thursday functions as a reminder of Russia’s potent capabilities and ongoing interference in the election even as U.S. officials publicly called out Iran on Wednesday night.

The advisory does not identify by name or location those who were targeted, but officials say they have no information that any election or government operations have been affected or that the integrity of elections data has been compromised.

“However, the actor may be seeking access to obtain future disruption options, to influence U.S. policies and actions, or to delegitimize (state and local) government entities,” the advisory said.

U.S. officials have repeatedly said it would be extremely difficult for hackers to alter vote tallies in a meaningful way, but they have warned about other methods of interference that could disrupt the election, including cyberattacks on networks meant to impede the voting process. The interference could continue during or after the tallying of ballots if Russians produce spoofed websites or fake content meant to confuse voters about election results and lead them to doubt the legitimacy of the outcome.

A broad concern, particularly at the local government level, has been that hackers could infiltrate a county network and then work their way over to election-related systems unless certain defenses, such as firewalls, are in place. This is especially true for smaller counties that don’t have as much money and IT support as their bigger counterparts to fund security upgrades.

On Thursday, the Treasury Department Announced Sanctions Against Five Iranian Entities

Officials have nonetheless sought to stress the integrity of the vote, with FBI Director Christopher Wray saying Wednesday, “You should be confident that your vote counts. Early, unverified claims to the contrary should be viewed with a healthy dose of skepticism.”

On Thursday, Chris Krebs, the head of Homeland Security’s Cybersecurity and Infrastructure Security Agency, said officials don’t have reason to believe that hackers were looking for election infrastructure or election-related information, and aren’t aware of any activity “that would allow them to come anywhere near a vote.” He said the alert was issued in regard to the scanning of county networks for vulnerabilities, not specifically to the targeting of elections.

“The election-related risk is the fact that they were in or touching an election system,” he said.

The threat from the Kremlin was mentioned but not especially emphasized during a hastily called news conference on Wednesday night, when officials said Russia and Iran had obtained voting registration information — though such data is sometimes easily accessible. But most of the focus was on Iran, which officials linked to a series of menacing but fake emails that purported to be from a far-right group and were aimed at intimidating voters in multiple battleground states.

John Ratcliffe, the director of national intelligence, said the operation was aimed at harming President Donald Trump, though he didn’t elaborate on how.

On Thursday, the Treasury Department announced sanctions against five Iranian entities, including the Islamic Revolutionary Guard Corps, for attempting to influence U.S. elections.

Despite Iran’s activities, Russia is widely regarded in the cybersecurity community as the bigger threat to the election. The U.S. has said that Russia, which interfered in the 2016 election by hacking Democratic email accounts and through a covert social media effort, is interfering again this year in part through a concerted effort to denigrate Trump’s Democratic opponent, Joe Biden.

U.S. officials attribute the recent activity to a state-sponsored hacking group variously known as DragonFly and Energetic Bear in the cybersecurity community. The group appears to have been in operation since at least 2011 and is known to have engaged in cyberespionage on energy companies and power grid operators in the U.S. and Europe, as well as on defense and aviation companies. Aviation networks are among the entities that officials say were recently targeted, according to Thursday’s advisory.

As of October 1, the Advisory Said, the Hackers Have Exfiltrated Data From at Least Two Servers

According to the advisory, the hackers have obtained user and administrator credentials to enter the networks and moved laterally inside to locate what they felt would be “high-value” information to steal. In at least one breach, officials say, the hackers accessed documents related to network configurations and passwords, IT instructions and vendors and purchasing information.

As of October 1, the advisory said, the hackers have exfiltrated data from at least two servers.

John Hultquist, the director of threat intelligence at FireEye, said Energetic Bear moved to the top of his worry list when the cybersecurity firm observed it breaking into state and local governments in the U.S. that administer elections, due to it having targeted election systems in 2019.

Hultquist said he does not think Energetic Bear has the ability to directly affect the U.S. vote but fears it could disrupt local and state government networks proximate to the systems that process votes.

“The disruption may have little effect on the outcome. It may be entirely insignificant to the outcome — but it could be perceived as proof that the election outcome is in question,” he said. “Just by getting access to these systems they may be preying on fears of the insecurity of the election.”

RELATED TOPICS:

DON'T MISS

What Are Fresno Real Estate Experts Predicting for 2025 and Beyond?

DON'T MISS

First California EV Mandates Hit Automakers This Year. Most Are Not Even Close

DON'T MISS

Clovis Police Seek Public’s Help in Finding Missing 82-Year-Old Woman

DON'T MISS

Fresno Woman Killed in Head-On Collision, CHP Investigating

DON'T MISS

Musk Vows to Punish Lawmakers Who Back Trump’s Spending Bill

DON'T MISS

Fresno Man Sentenced to Nearly 6 Years for $4.2 Million Tech Startup Fraud

DON'T MISS

Bryan Kohberger Pleads Guilty in Murders of Four Idaho Students, ABC News Reports

DON'T MISS

Wildfire Near Lake Madera Country Estates Burns 12 Acres, Now 100% Contained

DON'T MISS

Fresno County CHP Arrest Two in Interstate 5 Drug, Gun, and Counterfeit Money Bust

DON'T MISS

California Seizes Over 600,000 Pounds of Illegal Fireworks. Newsom Calls for Safe Celebrations

DON'T MISS

Where Trade Talks Stand With Major US Partners Ahead of Tariffs-Hike Deadline

DON'T MISS

Labor Icon Huerta Breaks Ground on Fresno Park Bearing Her Name

UP NEXT

Israeli Officials to Hold Ceasefire Talks in Washington Amid Military Escalation in Gaza

UP NEXT

Where Trade Talks Stand With Major US Partners Ahead of Tariffs-Hike Deadline

UP NEXT

Suspect Identified in Ambush Shooting That Killed 2 Idaho Firefighters

UP NEXT

935 People Killed in Israeli Strikes on Iran, Official Says

UP NEXT

US Revokes Visas for Bob Vylan After Music Duo’s Glastonbury Chants

UP NEXT

Israel Acknowledges Palestinian Civilians Harmed at Gaza Aid Sites, Says ‘Lessons Learned’

UP NEXT

Suspect Identified in Ambush Shooting That Killed 2 Idaho Firefighters

UP NEXT

Israel Faces Genocide Accusations Amid Gaza Food Aid Killings

UP NEXT

Iran-Linked Hackers May Target US Firms and Critical Infrastructure, US Government Warns

UP NEXT

Israel Strikes Pound Gaza, Killing 60, Ahead of US Talks on Ceasefire

US Senate Strikes AI Regulation Ban From Trump Megabill

2 hours ago

Fresno Police, CHP Crack Down on Impaired Driving for July 4th

2 hours ago

Despite Last-Minute Changes, Senate Bill Deals Big Blow to Renewable Energy

2 hours ago

Zohran Mamdani Officially Wins Democratic Primary for New York City Mayor

3 hours ago

Valley Crime Stoppers’ Most Wanted Person of the Day: Amaury Fernandez

3 hours ago

CA Rolls Back Its Landmark Environmental Law to Speed Housing Construction

4 hours ago

Visalia Police Investigate Deadly Shooting Near Bethlehem Center

4 hours ago

Trump-Backed Tax-Cut and Spending Bill Passes US Senate

4 hours ago

Homeland Security Secretary Noem Says CNN May Be Prosecuted Over Report on Migration App

4 hours ago

Musk Promises a New Political Party if the GOP Bill Passes

4 hours ago

Sex Abuse Scandal Forces Fresno’s Catholic Diocese to Declare Bankruptcy

The Catholic Diocese of Fresno filed for Chapter 11 bankruptcy Tuesday, according to a news release from the religious organization. The fil...

42 minutes ago

42 minutes ago

Sex Abuse Scandal Forces Fresno’s Catholic Diocese to Declare Bankruptcy

1 hour ago

California Republicans Send Message to Trump: Deport Criminals, Not Our Vital Workers

Fresno police arrested a suspect on suspicion of DUI Tuesday, July 1, 2025, morning after they showed up intoxicated to work, caused a disturbance, and struck another vehicle before arriving. (GV Wire/Anthony W. Haddad)
1 hour ago

Fresno Police Arrest Intoxicated Employee Following Morning Disturbance

The U.S Capitol and an office are reflected in a window inside the Hart Senate Office Building as Republican lawmakers struggle to pass U.S. President Donald Trump's sweeping spending and tax bill, on Capitol Hill in Washington, D.C., U.S., July 1, 2025. (Reuters/Nathan Howard)
2 hours ago

US Senate Strikes AI Regulation Ban From Trump Megabill

2 hours ago

Fresno Police, CHP Crack Down on Impaired Driving for July 4th

U.S. Senate Minority Leader Chuck Schumer (D-NY) speaks during a press conference after the Senate passes U.S. President Donald Trump’s sweeping spending and tax bill, on Capitol Hill in Washington, D.C., U.S., July 1, 2025. (Reuters/Annabelle Gordon)
2 hours ago

Despite Last-Minute Changes, Senate Bill Deals Big Blow to Renewable Energy

Zohran Mamdani addresses supporters on primary night, in New York, June 24, 2025. Mamdani, the democratic socialist whose blend of populist ideas and personal magnetism catapulted his upstart candidacy, has won the Democratic primary for mayor of New York City, according to The Associated Press. (Shuran Huang/The New York Times)
3 hours ago

Zohran Mamdani Officially Wins Democratic Primary for New York City Mayor

Amaury Fernandez is Valley Crime Stoppers' Most Wanted Person of the Day for July 1, 2025. (Valley Crimes Stoppers)
3 hours ago

Valley Crime Stoppers’ Most Wanted Person of the Day: Amaury Fernandez

Help continue the work that gets you the news that matters most.

Search

Send this to a friend