Microsoft Detects Foreign Cyberattacks Targeting US Presidential Election
Groups from Russia, China and Iran have stepped up cyberattacks in an effort to disrupt the U.S. presidential election in November, a Microsoft Corp. investigation found.
The groups have increased cyberattacks targeting the political campaigns of Democratic presidential nominee Joe Biden and U.S. President Donald Trump, advocacy groups, political parties, academics and leaders in the international affairs community, according to a blog post by Tom Burt, corporate vice president of customer security and trust at Microsoft, on Thursday.
SKDKnickerbocker, a public affairs and political consulting firm working with Biden’s campaign, was recently targeted in an unsuccessful hack by suspected Russian state-backed hackers, according to a Thursday report by Reuters, which said that Microsoft had alerted the firm.
The attempted hack on SKDKnickerbocker reflects a broader trend that was documented by Microsoft, that a Russia-based group had attacked “political campaigns, advocacy groups, parties, and political consultants.”
Microsoft reported that more than 200 organizations directly or indirectly tied to the U.S. election and political organizations in Europe were affected by a Russian-operated group, called Strontium, including U.S.-based consultants serving Republicans and Democrats. The same group was also identified in the report by Special Counsel Robert Mueller as being responsible for the attacks on the Democratic presidential campaign in 2016, according to Microsoft. (Strontium is also known as APT28, or Fancy Bear.)
Microsoft also reported unsuccessful cyberattacks from Iran on people associated with the Trump campaign, and attempted attacks from China on people associated with the Biden campaign, as well as a “prominent” individual formerly associated with the Trump administration. The people who were targeted weren’t named. The Chinese group, referred to as Zirconium, has mounted thousands of attacks from March through September on campaign officials as well as prominent academics and others in international affairs. Of those attempts, about 150 were successful breaches, but Microsoft didn’t identify the victims other than to say they weren’t associated with the presidential campaigns.
Microsoft’s findings echo those of U.S. government officials. In August, William Evanina, head of the National Counterintelligence and Security Center, said Russia, China and Iran are trying to “use covert and overt influence measures in their attempts to sway U.S. voters’ preferences and perspectives, shift U.S. policies, increase discord in the United States, and undermine the American people’s confidence in our democratic process.” And on Wednesday, Chad Wolf, acting secretary of the Department of Homeland Security, said “the governments of China, Iran and Russia target our election systems, each with its own separate and nefarious motives and tactics.”
The recent attacks reveal that “foreign activity groups have stepped up their efforts targeting the 2020 election,” according to Microsoft. “What we’ve seen is consistent with previous attack patterns that not only target candidates and campaign staffers but also those who they consult on key issues.”
The majority of attacks were detected and stopped by security tools built into Microsoft’s software, Burt said.
Foreign groups used tactics including rotating IP addresses to disguise attacks, web bugs planted in purchased domain names and phishing, in an effort to harvest log-in credentials and gain information on targeted individuals and organizations. Phishing attacks can be for routine espionage against campaigns or, in some cases, to conduct hack and leak operations — a key feature in Russia’s campaign to help Trump and hurt Hillary Clinton in 2016.
Disinformation experts are on high alert for strategic leaks of real or fabricated documents in the weeks ahead of Nov. 3, a foreign influence tactic that could significantly harm the candidate targeted, particularly if there is not enough time for them to adequately respond ahead of Election Day.
“We disclose attacks like these because we believe it’s important the world knows about threats to democratic processes,” Burt said. He also said more federal funding is needed in the U.S. so states can better protect their election infrastructure.
©2020 Bloomberg News
Distributed by Tribune Content Agency, LLC.
In The News
IOWA CITY, Iowa (AP) — A Republican candidate saw her vote lead dwindle to single digits Wednesday in Iowa’s 2nd Congressional District as a dramatic recount moved toward a conclusion in a race that will help determine the size of Democrats’ majority in the House of... Read More
WASHINGTON (AP) — Monday seemed like the end of President Donald Trump's relentless challenges to the election, after the federal government acknowledged President-elect Joe Biden was the “apparent winner” and Trump cleared the way for cooperation on a transition of power. But his baseless claims have... Read More
WILMINGTON, Del. (AP) — On a day of grace and grievance, President-elect Joe Biden summoned Americans to join in common purpose against the coronavirus pandemic and their political divisions while the man he will replace stoked the fading embers of his campaign to “turn the election... Read More
DES MOINES, Iowa (AP) — Democrats once dominated Koochiching County in the blue-collar Iron Range of northern Minnesota. But in this month's presidential election, President Donald Trump won it with 60% of the vote. That's not because voters there are suddenly shifting to the right, said... Read More
WASHINGTON (AP) — President Donald Trump said Thursday that he will leave the White House if the Electoral College formalizes President-Elect Joe Biden's victory — even as he insisted such a decision would be a “mistake” — as he spent his Thanksgiving renewing baseless claims that... Read More
WASHINGTON — House Ways and Means Chairman Richard E. Neal's attitude toward legislating under a Democratic-led White House might aptly be described as "never let a crisis go to waste." The Massachusetts Democrat wants to take a page from his party's 2009 playbook, when the Obama administration took office amid the wreckage of... Read More