Russian-Speaking Hacker Breached US Election Commission after Vote - danielswhimmight77

Fancy Put u aka APT28 aka Strontium is possibly behind these hacks

Fears of election hacks and reports of data leaks were possibly some of the most talked about topics during the US statesmanlike election 2020 and its campaign historical period. Turns verboten the US agency that was responsible for ensuring that voting machines were ensure and that election officials were following best practices was itself breached by a hacker in November.

US election hack concerns grow later on confirmation of agency break

Led aside Presidential appointees, the Election Assistance Commission certifies voting systems and develops security measures and best practices for election officials across the nation.

Recorded Ulterior, a security firm working with law enforcement, has said that the US Election Assistance Mission was penetrated after the elections. Prerecorded Rising "was monitoring underground electronic markets where hackers buy and sell wares and disclosed somebody offering logon credentials for access to computers" at the Election Perpetration.

Reuters reported that the security firm then engaged in a conversation with the hacker by posing as a potential buyer. They discovered that the hacker had managed to obtain credentials of over 100 people at the Direction, Levi Gundert, VP of Intelligence at the troupe, and Andrei Barysevich, Director of Innovative Collection, confirmed.

Exploiting a mutual database vulnerability (SQL injection), hack had managed to gain access to the Commission network. The Communicative hacker was and then hard to sell information about this exposure to a "Geographical region government for several thousand dollars." However, inquiry group alerted the police enforcement pushing for a bandage for the exposure. (It has been patterned this Thursday)

The Commission hasn't responded to the hacking incident and FBI spokeswoman aforementioned her agency could only comment afterward a confirmation from the Commission.

Barysevich said that the security firm doesn't trust that hacker "actually plant for any political science or is super-blase." He misused a well-known exposure (that the Commission had unsuccessful to fix) to obtain a listing of usernames and passwords, which he also managed to crack. The report doesn't mention the type of hashing exploited, but if a hacker that security steady is vocation "unsophisticated" toilet crack them, then the Commission must be storing the passwords with weak encryption.

Researchers added that the hacker had an "unusual occupation mold," and moved rapidly to sell "access," but didn't slip data himself, making the healthy believe he wasn't state-sponsored.

Atomic number 2 did, however, gained access to non-unexclusive reports connected flaws in voting machines. Matt Blaze, an physics voting skillful and professor at the University of PA told Reuters that "in theory, someone could have used knowledge of such flaws to snipe specific machines."