AP finds hackers hijacked at least 195 Trump web addresses
AP finds hackers hijacked at least 195 Trump web addresses
The Trump Organization denied the domain names were ever compromised. But a review of Internet records by the AP and cybersecurity experts shows otherwise. And it was not until this past week, after the Trump camp was asked about it by the AP, that the last of the tampered-with addresses were repaired.
After the hack, computer users who visited the Trump-related addresses were unwittingly redirected to servers in St. Petersburg, Russia, that cybersecurity experts said contained malicious software commonly used to steal passwords or hold files for ransom. Whether anyone fell victim to such tactics is unclear.
A further mystery is who the hackers were and why they did it.
The discovery represents a new twist in the Russian hacking story, which up to now has focused mostly on what US intelligence officials say was a campaign by the Kremlin to try to undermine Democrat Hillary Clinton’s candidacy and benefit Trump’s.
It is not known whether the hackers who tampered with the Trump addresses are the same ones who stole Democratic officials’ emails and embarrassed the party in the heat of the campaign last year. Nor is it clear whether the hackers were acting on behalf of the Russian government.
The affected addresses, or domain names, included donaldtrump.org, donaldtrumpexecutiveoffice.com, donaldtrumprealty.com and barrontrump.com. They were compromised in two waves of attacks in August and September 2013, according to the review of Internet records.
Many of the addresses were not being used by Trump. Businesses and public figures commonly buy addresses for possible future use or to prevent them from falling into the hands of rivals or enemies. The Trump Organization and its affiliates own at least 3,300 in all.
According to security experts, the hackers hijacked the addresses by penetrating and altering the domain registration records housed at GoDaddy.com, a seller of web addresses.
Accounts at GoDaddy, like at any site that requires a user name and password, are often subject to malicious messages known as phishing attacks, which are designed to trick people to reveal that personal information to hackers.
Computer users who entered or clicked on one of those Trump addresses probably would have had no idea they were redirected to servers in Russia.
Within days after the AP asked the Trump Organization about the tampering, the affected web addresses were all corrected.
The White House referred questions to the Trump Organization. The FBI did not respond to a request for comment.
GoDaddy spokesman Nick Fuller said the company had no breaches of its system in 2013 and has measures in place to monitor for malicious activity. Fuller would not discuss any customers in particular.
Some cybersecurity experts said there is an outside chance the tampering was a probe — an attempt to test security for an eventual effort to gather information on Trump or his business dealings. But those experts were only guessing.
There was no evidence the hackers ultimately broke into server computers at the Trump Organization or other Trump interests.
“This is beyond me,” said Paul Vixie, CEO of the San Mateo, California-based Internet security company Farsight Security Inc. “I have simply never seen a benefit accrue from an attack of this kind. I’m at loss, unless it’s a demonstration of capabilities.”
Vixie said the Trump Organization’s apparent failure to detect what was happening probably suggests inadequate cybersecurity at the company.
“There’s no way something like this could go by in the Bloomberg empire without this being seen,” Vixie said.
Afghan polling centers plagued by problems as casualties surge
- Nearly nine million voters registered for the parliamentary election, but many suspect a significant number of those were based on fake identification documents
- Despite the chaos, the United Nations Assistance Mission in Afghanistan (UNAMA) said the election was “an important milestone in Afghanistan’s transition to self-reliance”
KABUL: Problems plagued hundreds of Afghan polling centers Sunday in the shambolic legislative election’s second day of voting, fueling criticism of organizers and eroding hopes for credible results after a ballot marred by deadly violence.
As voting restarted in more than 20 provinces, an AFP tally of official casualty figures showed the number of civilians and security forces killed or wounded in poll-related violence on Saturday was nearly 300 — almost twice the figure released by the interior ministry.
The huge discrepancy adds to concerns about the lack of transparency and credibility of the long-delayed election that is seen as a dry run for next year’s presidential vote.
At some of the 253 polling centers opened for voting on Sunday, election workers still struggled to use biometric verification devices and voter rolls were “either incomplete or non-existent,” Electoral Complaints Commission spokesman Ali Reza Rohani told reporters.
“Most of the problems we had yesterday still exist today,” said Rohani, adding some polling sites again opened late and had insufficient ballot papers.
Another 148 polling sites that were supposed to open remained closed for security reasons, the Independent Election Commission told AFP.
The IEC’s chronic mishandling of the parliamentary election, which is the third since the fall of the Taliban in 2001, has all but dashed hopes it can organize the presidential ballot, scheduled for April.
“This does not bode well for next year,” Afghanistan Analysts Network co-director Thomas Ruttig told AFP.
“The IEC has clearly shown its lack of capacity to run acceptable and transparent elections, instead publishing doctored figures.”
A Western official, who had monitored the months-long preparations, told AFP they had no confidence left in the IEC.
“None at all,” they said on the condition of anonymity.
“With the current IEC leadership there are a lot of doubts that they would be able to handle the presidential election properly,” political analyst Haroun Mir said.
Initial IEC figures show around three million people risked their lives to vote on Saturday — many waiting hours for polling centers to open — despite scores of militant attacks.
Nearly nine million voters registered for the parliamentary election, but many suspect a significant number of those were based on fake identification documents that fraudsters planned to use to stuff ballot boxes.
But the fact any Afghans turned out to vote was an achievement in itself, some observers noted.
“The people of Afghanistan showed that they are still hopeful for their future,” Mir said.
Despite the shortcomings in the voting process, that was “undoubtedly a great achievement,” he said.
Turnout was likely affected after the Taliban issued several warnings in the days leading up to the poll demanding the more than 2,500 candidates for the lower house candidates withdraw from the race and for voters to stay home.
The militant group on Saturday claimed it carried out more than 400 attacks on the “fake election.”
Official observers described disorder and chaos at polling centers on Saturday where election workers did not know how to use biometric devices that the IEC had rolled out at the eleventh hour to appease political leaders and said were required for votes to be counted.
Many voters who had registered their names months ago were not on the roll, and the Taliban commandeered some polling centers and refused to let people cast their ballots.
There are concerns that extending voting by a day could “impact transparency of the process” and provide “opportunity for fraud,” Election and Transparency Watch Organization of Afghanistan said.
As vote counting continued and officials began the process of transferring ballot boxes to Kabul, Afghan voters and candidates took to social media to vent their frustration at the debacle.
“Shame on the IEC,” Hosai Mangal wrote on the IEC’s official Facebook page.
“There was no order at all, I could not find my name at the polling center where I registered.”
Another angry voter wrote: “The worst elections ever.”
But embattled IEC chief Abdul Badi Sayyad on Sunday defended the organization’s handling of the election, saying the problems were not due to “weak management.”
Despite the chaos, the United Nations Assistance Mission in Afghanistan (UNAMA), which has spearheaded international efforts to advise the IEC, said the election was “an important milestone in Afghanistan’s transition to self-reliance.”
UNAMA urged observers, political parties, candidates and voters to play a “constructive role in the days ahead to safeguard the integrity of the electoral process as votes are tallied.”
Elections will be held in the southern province of Kandahar on October 27 after the vote was suspended following Thursday’s assassination of a powerful police chief.