AP finds hackers hijacked at least 195 Trump web addresses

In this Jan. 19, 2017, file photo, then-President-elect Donald Trump and his wife Melania Trump and family wave at the conclusion of the pre-Inaugural "Make America Great Again! Welcome Celebration" at the Lincoln Memorial in Washington.(AP Photo/David J. Phillip. File)
Updated 04 November 2017
0

AP finds hackers hijacked at least 195 Trump web addresses

WASHINGTON: Four years ago, well before the furor over allegations Moscow meddled in the 2016 election that put Donald Trump in the White House, at least 195 web addresses belonging to Trump, his family or his business empire were hijacked by hackers possibly operating out of Russia, The Associated Press has learned.
The Trump Organization denied the domain names were ever compromised. But a review of Internet records by the AP and cybersecurity experts shows otherwise. And it was not until this past week, after the Trump camp was asked about it by the AP, that the last of the tampered-with addresses were repaired.
After the hack, computer users who visited the Trump-related addresses were unwittingly redirected to servers in St. Petersburg, Russia, that cybersecurity experts said contained malicious software commonly used to steal passwords or hold files for ransom. Whether anyone fell victim to such tactics is unclear.
A further mystery is who the hackers were and why they did it.
The discovery represents a new twist in the Russian hacking story, which up to now has focused mostly on what US intelligence officials say was a campaign by the Kremlin to try to undermine Democrat Hillary Clinton’s candidacy and benefit Trump’s.
It is not known whether the hackers who tampered with the Trump addresses are the same ones who stole Democratic officials’ emails and embarrassed the party in the heat of the campaign last year. Nor is it clear whether the hackers were acting on behalf of the Russian government.
The affected addresses, or domain names, included donaldtrump.org, donaldtrumpexecutiveoffice.com, donaldtrumprealty.com and barrontrump.com. They were compromised in two waves of attacks in August and September 2013, according to the review of Internet records.
Many of the addresses were not being used by Trump. Businesses and public figures commonly buy addresses for possible future use or to prevent them from falling into the hands of rivals or enemies. The Trump Organization and its affiliates own at least 3,300 in all.
According to security experts, the hackers hijacked the addresses by penetrating and altering the domain registration records housed at GoDaddy.com, a seller of web addresses.
Accounts at GoDaddy, like at any site that requires a user name and password, are often subject to malicious messages known as phishing attacks, which are designed to trick people to reveal that personal information to hackers.
Computer users who entered or clicked on one of those Trump addresses probably would have had no idea they were redirected to servers in Russia.
Within days after the AP asked the Trump Organization about the tampering, the affected web addresses were all corrected.
The White House referred questions to the Trump Organization. The FBI did not respond to a request for comment.
GoDaddy spokesman Nick Fuller said the company had no breaches of its system in 2013 and has measures in place to monitor for malicious activity. Fuller would not discuss any customers in particular.
Some cybersecurity experts said there is an outside chance the tampering was a probe — an attempt to test security for an eventual effort to gather information on Trump or his business dealings. But those experts were only guessing.
There was no evidence the hackers ultimately broke into server computers at the Trump Organization or other Trump interests.
“This is beyond me,” said Paul Vixie, CEO of the San Mateo, California-based Internet security company Farsight Security Inc. “I have simply never seen a benefit accrue from an attack of this kind. I’m at loss, unless it’s a demonstration of capabilities.”
Vixie said the Trump Organization’s apparent failure to detect what was happening probably suggests inadequate cybersecurity at the company.
“There’s no way something like this could go by in the Bloomberg empire without this being seen,” Vixie said.


Child bride auction in South Sudan goes viral, sparks Facebook anger

Updated 21 November 2018
0

Child bride auction in South Sudan goes viral, sparks Facebook anger

JUBA: Five hundred cows, two luxury cars, $10,000, two bikes, a boat and a few cell phones made up the final price in a heated bidding war for a child bride in South Sudan that went viral after the auction was pointed out on Facebook. It is the largest dowry ever paid in the civil war-torn country, the government said.
The highest bidder was a man three times the 17-year-old’s age. At least four other men in Eastern Lakes state competed, said Philips Anyang Ngong, a human rights lawyer who tried to stop the bidding last month. Among the bidders was the state’s deputy governor.
“She has been reduced to a mere commodity,” Ngong told The Associated Press, calling it “the biggest test of child abuse, trafficking and auctioning of a human being.” Everyone involved should be held accountable, he said.
Earlier this month, Nyalong became the man’s ninth wife. Photos posted on Facebook show her sitting beside the groom, wearing a lavish dress and staring despondently at the floor. The AP is using only her first name to protect her identity.
South Sudan has a deeply rooted cultural practice of paying dowries for brides, usually in the form of cows. It also has a long history of child marriage. Even though that practice is now illegal, 40 percent of girls still marry before age 18, according to the United Nations Population Fund. The practice “threatens girls’ lives” and limits prospects for their future, said Dr. Mary Otieno, the agency’s country representative.
The bidding war has caused local and international outrage. It took several days for Facebook to remove the post that first pointed out the auction, and after it was taken down other posts “glorifying” the situation remained, George Otim, country director for Plan International South Sudan, told the AP.
“This barbaric use of technology is reminiscent of latter-day slave markets. That a girl could be sold for marriage on the world’s biggest social networking site in this day and age is beyond belief,” he said. The auction was discussed, not carried out, on the site.
Facebook did not reply to a request for comment.
While South Sudan’s government condemns the practice of child marriage it says it can’t regulate communities’ cultural norms, especially in remote areas.
“You can’t call it bidding as if it was an auction. It’s not bidding. If you see it with European eyes you’ll call it an auction,” government spokesman Ateny Wek Ateny told the AP. “You have to see it with an African eye, as it’s a tradition that goes back thousands of years. There’s no word for it in English.”
Some local lawmakers and activists disagree. In a statement released this week, the National Alliance for Women Lawyers in South Sudan called upon officials to comply with the government’s plan to end child marriage by 2030. Ending the practice includes putting a stop to the auctioning of girls.
South Sudan’s anti-human trafficking chief called the case reminiscent of others he has seen across the country, in which girls are forced or tricked into marriage after being told they are going to live with relatives and go to school instead.
“It is clear that some human trafficking practices are hidden in our culture,” John Mading said.
In other cases, some girls who grow up in the South Sudanese diaspora are brought back to the country and forced to marry. The AP spoke with several people who know girls who arrived for what they thought was a vacation, only to have their passports taken away and forced into marriage by their families.
“Some families want children to marry in their countries and in their ethnic communities, but most do it if the kids are misbehaving,” said Esther Ikere Eluzai, undersecretary for South Sudan’s ministry of gender.