BREAKING: @CISAgov confirms #Russia-linked actor - known as #BerserkBear - has compromised US state and local government targets
The actor "successfully compromised network infrastructure, & as of October 1, 2020, exfiltrated data from at least two victim servers"
"The #Russia|n-sponsored APT actor is obtaining user & administrator credentials to establish initial access, enable lateral movement once inside the network, & locate high value assets in order to exfiltrate data" per @CISAgov
"To date, the @FBI & CISA have no information to indicate this [#Russia|n] APT actor has intentionally disrupted any aviation, education, elections, or government operations" per @CISAgov "However, the actor may be seeking access to obtain future disruption options"
"There may be some risk to elections information housed on SLTT government networks" pr @CISAgov "However, the @FBI & CISA have no evidence to date that integrity of elections data has been compromised"
"We believe this activity is tied to an actor who has targeted global critical infrastructure for several years" he says, focusing on "energy providers, water infrastructure, and even airports"
"We have actively tracked targeting of state and local systems by this actor in the lead up to the election" per @Mandiant's @JohnHultquist "However, we have no information which suggests these actors are capable or even willing to alter votes"
"Access to these systems could enable disruption or could be an end in itself, allowing the actor to seize on perceptions of election insecurity and undermine the democratic process" per statement from @Mandiant's @JohnHultquist
Iranian actors "creating fictitious media sites & spoofing legitimate media sites to spread obtained US voter-registration data, anti-American propaganda, & misinformation abt voter suppression, voter fraud..."
#Iran behind "a significant number of intrusions against US-based networks since Aug 2019" per @CISAgov "...could render these systems temporarily inaccessible to the public or election officials, which could slow, but would not prevent, voting or the reporting of results"
"Alongside our interagency partners at DHS & @FBI, US Cyber Command & the National Security Agency are tirelessly defending the nation & our elections..."
"As we've said before, the #UnitedStates will not tolerate foreign influence & interference in our elections" per @NSAGov Election Security Lead Dave Imbordino & @US_CYBERCOM Election Security Lead BrigGen Joe Hartman
"These are desperate attempts by our adversaries to intimidate or to undermine voter confidence, but Americans can rest assured: thousands of your fellow citizens stand ready to defend your vote, every single day" per @NSAGov's Imbordino & @US_CYBERCOM's BrigGen Hartman
"We must remain steadfast...While this year has thrown unprecedented obstacles in our way, the entire election community stands ready for the task ahead & united in our goal to protect our democracy"
• • •
Missing some Tweet in this thread? You can try to
force a refresh
US has prosecuted 13-14 cases vs #NorthKorea over the past 2 years - both criminal prosecutions, seizures/going after property & #cyber, per Demers
#DPRK activity being drive by need for hard currency - "A lot of it is getting money, getting cash" especially on the #cyber side, per @TheJusticeDept's Demers
Developing: @DeptofDefense demands for ALL US allies to ramp up defense spending to at least 2% of GDP concerning to House Armed Services Comm. Chair @RepAdamSmith
"I don't have a problem w/that discussion" @RepAdamSmith tells reporters on a call, adding "I am concerned that this administration views our allies as a burden that basically, if they don't pay enough, it's a burden not worth maintaining"
"I think we get a lot more benefit out of our alliances than the Trump administration seems to recognize" per @RepAdamSmith "And I am concerned about the rhetoric that is driving them away"
BREAKING: US warns foreign adversaries may still try to "introduce chaos" w/less than 2 weeks until #Election2020
@CisaKrebs calls now "the perfect time for our adversaries to launch efforts intended to undermine your confidence" in the process cisa.gov/rumorcontrol
"We remain confident that no foreign #cyber actor can change your vote, & we still believe that it would be incredibly difficult for them to change the outcome of an election at the nat'l level" per @CISAKrebs "But that doesn’t mean various actors won’t try"
.@CISAKrebs warns US adversaries may make "sensational claims that overstate their capabilities" to impact #Election2020
"The last line of defense in election security is you, the American voter—so be prepared for efforts that call into question the legitimacy of the election"
#Election2020 - “Accurate results are, as always, more important than fast results” per @EACgov Commissioner/Vice Chair Don Palmer “So there may be discrepancies that need to be identified right after election night & addressed…”
“Hopefully we’ll know the outcome on election night but its quite possible that we might not" per @EACgov's Christy McCormick
"That is just a slower process" @NMSecOfState Maggie Toulouse Oliver cautions on counting mail-in ballots during @EACgov roundtable on #Election2020
"Your election officials are always continuing to work thru days & weeks after Election day"