Welcome to European Tribune. It's gone a bit quiet around here these days, but it's still going.
Further details via The Guardian:

Macron hackers linked to Russian-affiliated group behind US attack - Guardian

Vitali Kremez of Flashpoint said his review indicated APT 28 was behind the leak. As part of the group's spear phishing technique, it needs to register and control web addresses which could plausibly fool a target into thinking they were logging into a legitimate website. In the US elections, one such address ("myaccount.google.com-changepasswordmyaccount-idx8jxcn4ufdmncudd.gq") was designed to look like an official Google page.

Last month, APT 28 registered decoy internet addresses to mimic the name of Macron's movement, En Marche!, which it probably used to send emails to hack into the campaign's computers, Kremez said. Those domains include onedrive-en-marche.fr, designed to appear like an official Microsoft address, and mail-en-marche.fr, which pretended to be a webmail site.

"If indeed driven by Moscow, this leak appears to be a significant escalation over the previous Russian operations aimed at the US presidential election, expanding the approach and scope of effort from simple espionage efforts towards more direct attempts to sway the outcome," Kremez said.

by Bernard on Mon May 8th, 2017 at 05:35:54 PM EST
[ Parent ]
A cursory look at Wikileaks discussion leaves me convinced that there were indeed fake documents planted with the genuine ones, created by people using Cyrillic versions of Microsoft Office.

Macron's outfit are certain to be the most tech-smart of the political teams currently operating in France (I have no particular knowledge of this, it just stands to reason because of the demographics of his circle). I would expect that they used encryption when exchanging "sensitive" emails, so the dump will provide nothing more than mildly-embarrassing stuff (and I pity the journalists assigned to trawl through it). Their security was good enough to withstand direct penetration, and they  were penetrated by social engineering, aka phishing, which will always work if you put enough effort into it. It required a non-trivial tech effort, with fake servers with similar domain names to the real ones etc, to collect passwords.

It will be quickly forgotten in France, and rightly so. I imagine the American alt-right will still be ranting about it for years to come.

It is rightly acknowledged that people of faith have no monopoly of virtue - Queen Elizabeth II

by eurogreen on Mon May 8th, 2017 at 10:34:07 PM EST
[ Parent ]


Occasional Series