Security Market Segment LS
Wednesday, 17 August 2016 10:15

Russia tied to leak of hacking tools, Democrat data


NSA whistleblower Edward Snowden and security expert Dave Aitel both say that a leak of advanced hacking tools, most likely belonging to the American government, is connected to the hacking and leaks of material from the US Democratic party.

And both security experts also say that the nature of the leak and the type of material leaked indicate that a state player is behind it: almost certainly Russia, they conclude.

Snowden made his claim in a series of tweets, while Aitel, who worked for the NSA for six years before he set up his own security company, Immunity, made his case in a blog post.

The leak of material dating back to 2013 was done by a group calling itself Shadow Brokers that claimed it had hacked Equation Group, a highly sophisticated outfit that has been strongly suspected of being an offshoot of the NSA.

Written in poor English, the original post by Shadow Brokers has been deleted but the technology website Ars Technica linked to an archived version in Google's cache. Ars has several detailed reports on the development, all of which are worth a read.

The post also had links to what were claimed to be advanced hacking tools.

The security firm Kaspersky, which last year (see embedded video below) provided a detailed analysis of the Equation Group, confirmed that the tools belonged to this group.

"While we cannot surmise the attacker's identity or motivation nor where or how this pilfered trove came to be, we can state that several hundred tools from the leak share a strong connection with our previous findings from the Equation group," the company said.

Snowden said the leak was most likely "a warning that someone can prove US responsibility for any attacks that originated from this malware server".

He added that it looked like somebody was "sending a message that an escalation in the attribution game could get messy fast".

"NSA malware staging servers getting hacked by a rival is not new. A rival publicly demonstrating they have done so is," Snowden said.

The hacks of emails from the Democratic National Committee led to the resignation of its chairperson Debbie Wasserman Schultz and a few other officials. A separate break-in resulted in a dump of personal information of serving Democrats, all of it from material that had been exfiltrated from the Democratic Congressional Campaign Committee.

Aitel said the timing of the leak, the mention of corruption and elections in the release, the fact that it had been kept quiet for three years, and the risk of annoying the Equation Group this much all pointed to a big player: "Level of difficulty: Very Experienced Nation State."

WikiLeaks has claimed it has the same material as that stolen by Shadow Brokers and has said it will post it after it is suitably sanitised. The group was criticised recently by Snowden for releasing material from the DNC that included personal details.


You cannot afford to miss this Dell Webinar.

With Windows 7 support ending 14th January 2020, its time to start looking at your options.

This can have significant impacts on your organisation but also presents organisations with an opportunity to fundamentally rethink the way users work.

The Details

When: Thursday, September 26, 2019
Presenter: Dell Technologies
Location: Your Computer


QLD, VIC, NSW, ACT & TAS: 11:00 am
SA, NT: 10:30 am
WA: 9:00 am NZ: 1:00 pm

Register and find out all the details you need to know below.



iTWire can help you promote your company, services, and products.


Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments