Profile picture
Stephen McIntyre @ClimateAudit
, 14 tweets, 5 min read Read on Twitter
THREAD: the first article on DNC hack was in WaPo, June 14, by Ellen Nakashima
web.archive.org/web/2016061415… It almost certainly stays close to script developed by DNC and Crowdstrike. So how does it stand up now that we know more? One expects disinformation, but form can be telling
2/ DNC admitted hack of "database of all opposition research" and "all email and chat traffic". Clinton said that, to her knowledge, Clinton campaign "has not been hacked into" and would be priority.
3/ in fact, Clinton campaign (Podesta emails) had been hacked. Indeed, Podesta emails had been hacked and were hacked prior to the entry to DNC network by APT28 (described in Indictment). Did Clinton lie about knowledge of Podesta hack or were they that ignorant?
4/ interesting that they reported that "all email and chat traffic" had been hacked. As it turned out, the DNC emails delivered to Wikileaks were limited to emails to/from nine uninteresting DNC finance officials. Why these officials and not Debbie WS and other bigger fish?
5/ also: on Jun 8, DCLeaks had released documents in a Hillary archive: web.archive.org/web/2016120617… . All the documents had been attachments to Podesta emails, with narrow campaign distribution. Are we seriously to believe that Clinton campaign couldn't figure this out? Playing dumb?
6/ intel officials told WaPo (anonymously) that they knew that campaigns of Trump and Clinton had been targeted and some Republican PACs, but "details details on those cases were not available". Lots of time since then to make such details available. Why not?
7/ they said that hackers had been "expelled over the past weekend". This was more than a month since Crowdstrike arrived. ALL DNC hack emails were exfiltrated AFTER Crowdstrike took responsibility. Indeed, the damaging emails in DNC hack sent AFTER DNC knew of Russian hack
8/ they said that "no financial, donor or personal information" accessed or taken. But Mueller indictment reported keylogging of individual banking information, DCCC online banking information,
9/ in original narrative, possibility of ordinary criminal hacking (eg Russian Lurk banking hackers) dismissed due to supposed lack of hacker interest in finances. But why would Russian intel service try to embezzle donations to US political party? This part seems like criminals
10/ curiously, out of all domains associated with spearphishing and hacking, actblues[.com was the only one which was forthwith secured, By Aug 8, 2016, Microsoft got court order seizing domain (including it in Microsoft trademark lawsuit). A favor to Democrat Party??
11/ the WaPo article (reflecting Marc Elias' attitude here) was unconcerned about espionage. They noted that "American spies gather similar information on foreign candidates and leaders". In other words, nothing to see here, move along.
12/ Crowdstrike's Shawn Henry was similarly phlegmatic, saying that it was "job of every foreign intelligence service" to collect such information. No one then regarded attack as supposed effort to "undermine American democracy" or Pearl Harbor or Crystallnacht.
13/ DNC timeline: "late April" Amy Dacey told of traffic. She notified Perkins Coie "that evening", which, "soon after", called Crowdstrike's Shawn Henry, who installed software "within 24 hours". Later, we learned software installed on May 6. In fact, took 8-10 days to respond
14/ Crowdstrike reported hacking by two groups: APT28 (Fancy Bear) and APT29 (Cosy Bear). Only APT28 was charged in recent Indictment. Why?
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Stephen McIntyre
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @ClimateAudit see all

Profile picture
DOJ charged @NVeselnitskaya with making a "false and misleading declaration implying" that she had not participated in drafting Russian response to US inquiry. Before looking at details, the US DOJ made false statements in indictment, including canard that Magnitsky was lawyer.
2/ @LucyKomisar, who has diligently researched Browder frauds (and others) have shown that Magnitsky was accountant for Browder firms, convicted for his role in Browder tax frauds in Russia. He was NOT heroic "lawyer" exposing fraud.
100r.org/2017/10/magnit…
3/ although Magnitsky was NOT a lawyer, Browder has stated over and over that he was - a point not arguable, but conceded by Browder in his deposition in Prevezon case (in SDNY)
100r.org/media/2017/10/…
Read 7 tweets
Profile picture
@2xwide_dreaming @dr_davidsmith @wakeywakey16 @Larry_Beech @taleof2servers In that post, I mentioned an "Easter egg". I explained the Easter egg in a follow-up post climateaudit.org/2018/03/24/att…. There was an apparent infrastructure link between the Lurk banking gang and the spearphishing campaign attributed to APT28 (Fancy Bear) by SecureWorks.
@2xwide_dreaming @dr_davidsmith @wakeywakey16 @Larry_Beech @taleof2servers registrant of googlesetting[.com] domain used in the 2015 spearphishing campaign analysed by SecureWorks (June 26, 2016) is andre_roy@mail.com, also registrant for numerous domains in Oct 2014 PWC inventory pwc.blogs.com/files/tactical… of APT28 domains. Connecting spearphish to APT28.
@2xwide_dreaming @dr_davidsmith @wakeywakey16 @Larry_Beech @taleof2servers 2/ registrant of accoounts-google[.com, other domain used in 2015 spearphishing campaign, is "Gennadiy Borisov" with email yingw90@yahoo.com, used in scores of crimeware domains associated with Lurk's Angler exploit kit.
Read 22 tweets
Profile picture
1/ the number of "coincidences" in Russiagate never cease to amaze. In this thread, I'll discuss a surprising link between analysis of the 2015-2016 spearphishing campaign(which caught Podesta and others) and Ukrainian InformNapalm operatives. Precise meaning unclear
@Stranahan
2/ on June 16, 2016, the day after Crowdstrike's reveal article, SecureWorks secureworks.com/research/threa… reported tht they had been using bitly links to monitor a spearphishing campaign, which, between mid-March and mid-May had targeted both hillaryclinton.com and gmail accounts
3/ in a second article secureworks.com/research/threa… on June 26, 2016, SecureWorks described the techniques of the spearphishing campaign, providing several intriguing examples.
Read 13 tweets

Related threads

Profile picture
141. A la hora del montoneo fashionista jashtaguero, resulta que todos son fulanita o fulanito; hasta el perro son. Pero cuando toca revisar el nivel de responsabilidad personal en el crimen de la #PederastiaEclesiástica, no hay quien se apunte con el #TodosSomosCómplices
142. aciprensa.com/noticias/papa-…

⬇️
143. #Bergoglio da consejos de qué hacer con un hijo homosexual; sin embargo este "Padre espiritual" está atiborrado de hijos espirituales homosexuales -curas-, a los que les solapa sus abusos en contra de seminaristas:

Todo está claro en el enlace del tuit 135 de este hilo.
Read 681 tweets
Profile picture
So the original IBM PC had a limit of 640kb of conventional memory, and there were workarounds to get past it: EMS, XMS, 32bit extenders.

But there was also The All Card, from 1986. And it was gloriously weird.
So EMS works by having hardware that has a "window" into a larger >1mb area, XMS works similarly but with copying it in, protected mode uses the 32bit mode of the 386 to address more than 1mb.

but on the original 8086/8088 chip, 1mb was all you got, and the top 384k was reserved
The all card worked in a rather simple way:
"RESERVED? SAYS WHO? FUCK THE POLICE!"

so it just makes the whole first 1mb RAM. 952 kilobytes free conventional memory, baby!
Read 15 tweets
Profile picture
#thread My first exposure to planning came in my junior year of high school. I had discovered my passion for history and had worked for six years in local governance (prosecutor's office, community food co-op). #SoJustSuburbs /1
Learning urban design in a suburban context led me to ask questions about the limitations of traditional planning education. #SoJustSuburbs #SaturdaySchool /2
At the heart of these questions, I focused on the life of William Harris, a farmer worker with intellectual disabilities who worked on central NJ plantations, 1932-1961. The "rural" was rarely a factor in planning conversations. #SoJustSuburbs #SaturdaySchool /3
Read 16 tweets
Profile picture
CROWDSTRIKE: A Look Behind the Mask

The Deep State Plot to Frame Russia for a DNC Hack.

#QAnon #12Russians #MAGA #Crowdstrike #MuellerProbe #Rosenstein #Trump #MondayMotivaton @realDonaldTrump
Before we begin our dig into the Deep State's plot to frame Russia for a DNC hack...

Let's dive into a bit of Crowdstrike's history, their founders & execs, as well as other notable connections.

#QAnon #MAGA #Crowdstrike #12Russians #Trump #MuellerProbe @realDonaldTrump
Crowdstrike founder Dimitri Alperovitch is an anti-Putin Russian expat who's company was discredited over their revision & retraction of a report of Russian hacking of Ukrainian equipment. Crowdstrike's lack of credibility raises questions as the sole analyst of the DNC server.
Read 25 tweets
Profile picture
Not so long ago, the Russian pro-opposition outlet The Insider, together with the "expert group" Bellingcat, published an investigation about the MH-17 plane crash. I'm gonna try to explain the arguments of @cyberberkut2 about this investigation. #thread
In this article, 'journalists' tried to show that the Russian government is directly responsible for the Malaysian MH-17 crash, which was shot down over the territory of Ukraine in 2014: bellingcat.com/news/uk-and-eu…
In particular, the article features the name of Oleg Ivannikov, whom journalists call the "Commander of the GRU", working under the pseudonym "Oreon". According to the editors, he is the main suspect involved in this case.
Read 73 tweets

Trending hashtags

#Vigano #Crookston #U2 #PopeFrancis #Ezzati #elPapaEncubre #corrupción #USD #SanFranciscoDeAsís #Manorama #Clowns #México #AbusoSexualInfantil #JuanPabloII #KeralaFloods #ElPapaEncubrePederastas #Connecticut #PietroParolin #MSDyn365 #SmartCities #FrancescoCoccopalmerio #RodríguezMadariaga #Trump #JeanVillot #WeshallOvercome

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($3.00/month or $30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!