Security Expert: US Govt's Alleged 'Russian Hack' Appears to Trace Back to UkraineChris Menahan
Jan. 02, 2017
Black Guy Walks Into Starbucks, Calls Them 'Racist,' Demands Free Coffee, Gets It Immediately
Laura Ingraham Interviews Comedian Who Requested Free Coffee From Starbucks As 'Reparations'
UK Gov, Guardian Newspaper Says 'Syrian Girl' Is A Russian Bot
Syria Says U.S.-Led Strike Destroyed Pharmaceutical Research Institute Working On Cancer Drugs
Google Lawsuit: Senior Engineer Sought to 'Blacklist Alt-Right Websites' Like 'Breitbart,' Purge YouTube
The security experts behind the top WordPress security plugin Wordfence traced the malware mentioned in the FBI/DHS report claiming Russia hacked our election back to Ukraine.
Wordfence Founder/CEO Mark Maunder reports:
The IP addresses that DHS provided may have been used for an attack by a state actor like Russia. But they don't appear to provide any association with Russia. They are probably used by a wide range of other malicious actors, especially the 15% of IP addresses that are Tor exit nodes.You can see from the screenshots he released the maker of the malware says they're Ukrainian.
Additionally, Maunder says the malware the USG report cites is quite outdated.
The "PAS" malware the USG cited was version 3.1.7, whereas now the program is now up to version 4.1.1.
Note, "UA" is short for Ukraine.
You can read all the specifics of how they found this data on their website. It totally blows apart the idea this was some sophisticated, next level "leet Russian haxor" operation and shows the hackers actually used not-so-sophisticated malware allegedly of Ukrainian origin.
Follow InformationLiberation on Twitter and Facebook.