Why Crowdstrike’s Russian Hacking Story Fell Apart- Say Hello to Fancy Bear

 

 

Why Crowdstrike’s Russian Hacking Story Fell Apart- Say Hello to Fancy Bear

by George Eliason
Washington’s Blog

[Preface by Washington’s Blog: As patriotic Americans,  we are most concerned about what’s best for the U.S.   If it’s Ukrainians – more than Russians – who are interfering with our country, we have a right to know. We are for uncovering the truth, wherever that may lead. As such, we bring you alternative voices and on-the-ground reporting. Then we let you decide what you believe.]

cover-image

In the wake of the JAR-16-20296 dated December 29, 2016 about hacking and influencing the 2016 election, the need for real evidence is clear. The joint report adds nothing substantial to the October 7th report. It relies on proofs provided by the cyber security firm Crowdstrike that is clearly not on par with intelligence findings or evidence. At the top of the report is an “as is” statement showing this.

The difference between Dmitri Alperovitch’s claims which are reflected in JAR-1620296 and this article is that enough evidence is provided to warrant an investigation of specific parties for the DNC hacks. The real story involves specific anti-American actors that need to be investigated for real crimes.

For instance, the malware used was an out-dated version just waiting to be found. The one other interesting point is that the Russian malware called Grizzly Steppe is from Ukraine. How did Crowdstrike miss this when it is their business to know?

Later in this article you’ll meet and know a little more about the real “Fancy Bear and Cozy Bear.” The bar for identification set by Crowdstrike has never been able to get beyond words like probably, maybe, could be, or should be, in their attribution.

The article is lengthy because the facts need to be in one place. The bar Dimitri Alperovitch set for identifying the hackers involved is that low. Other than asking America to trust them, how many solid facts has Alperovitch provided to back his claim of Russian involvement?

The December 29th JAR adds a flowchart that shows how a basic phishing hack is performed. It doesn’t add anything significant beyond that. Noticeably, they use both their designation APT 28 and APT 29 as well as the Crowdstrike labels of Fancy Bear and Cozy Bear separately.

This is important because information from outside intelligence agencies has the value of rumor or unsubstantiated information at best according to policy. Usable intelligence needs to be free from partisan politics and verifiable. Intel agencies noted back in the early 90’s that every private actor in the information game was radically political.

The Hill.com article about Russia hacking the electric grid is a perfect example of why this intelligence is political and not taken seriously. If any proof of Russian involvement existed, the US would be at war. Under current laws of war, there would be no difference between an attack on the power grid or a missile strike.

According to the Hill  “Private security firms provided more detailed forensic analysis, which the FBI and DHS said Thursday correlated with the IC’s findings.

“The Joint Analysis Report recognizes the excellent work undertaken by
security companies and private sector network owners and operators, and provides new indicators of compromise and malicious infrastructure
identified during the course of investigations and incident response,” read a statement. The report identities two Russian intelligence groups already named by CrowdStrike and other private security firms.”

In an interview with Washingtonsblog, William Binney, the creator of the NSA global surveillance system said “I expected to see the IP’s or other signatures of APT’s 28/29 [the entities which the U.S. claims hacked the Democratic emails] and where they were located and how/when the data got transferred to them from DNC/HRC [i.e. Hillary Rodham Clinton]/etc. They seem to have been following APT 28/29 since at least 2015, so, where are they?”

According to the latest Washington Post story, Crowdstrike’s CEO tied a group his company dubbed “Fancy Bear” to targeting Ukrainian artillery positions in Debaltsevo as well as across the Ukrainian civil war front for the past 2 years.

Alperovitch states in many articles the Ukrainians were using an Android app to target the self-proclaimed Republics positions and that hacking this app was what gave targeting data to the armies in Donbass instead.

Alperovitch first gained notice when he was the VP in charge of threat research with McAfee. Asked to comment on Alperovitch’s discovery of Russian hacks on Larry King, John McAfee had this to say. “Based on all of his experience, McAfee does not believe that Russians were behind the hacks on the Democratic National Committee (DNC), John Podesta’s emails, and the Hillary Clinton presidential campaign. As he told RT, “if it looks like the Russians did it, then I can guarantee you it was not the Russians.”

How does Crowdstrike’s story part with reality? First is the admission that it is probably, maybe, could be Russia hacking the DNC.  “Intelligence agencies do not have specific intelligence showing officials in the Kremlin ‘directing’ the identified individuals to pass the Democratic emails to Wiki Leaks.”

The public evidence never goes beyond the word possibility.  While never going beyond that or using facts, Crowdstrike insists that it’s Russia behind both Clinton’s and the Ukrainian losses. NBC carried the story because one of the partners in Crowdstrike is also a consultant for NBC.

According to NBC the story reads like this.”The company, Crowdstrike, was hired by the DNC to investigate the hack and issued a report publicly attributing it to Russian intelligence. One of Crowdstrike’s senior executives is Shawn Henry, a former senior FBI official who consults for NBC News.

“But the Russians used the app to turn the tables on their foes, Crowdstrike says. Once a Ukrainian soldier downloaded it on his Android phone, the Russians were able to eavesdrop on his communications and determine his position through geo-location.

In June, Crowdstrike went public with its findings that two separate Russian intelligence agencies had hacked the DNC. One, which Crowdstrike and other researchers call Cozy Bear, is believed to be linked to Russia’s CIA, known as the FSB. The other, known as Fancy Bear, is believed to be tied to the military intelligence agency, called the GRU.”

The information is so certain the level of proof never rises above “believed to be.” According to the December 12th Intercept article “Most importantly, the Post adds that “intelligence agencies do not have specific intelligence showing officials in the Kremlin ‘directing’ the identified individuals to pass the Democratic emails to WikiLeaks.”

Because Ukrainian soldiers are using a smartphone app they activate their geolocation to use it. Targeting is from location to location. The app would need the current user location to make it work.

In 2015 I wrote an article that showed many of the available open source tools that geolocate, and track people. They even show street view. This means that using simple means, someone with freeware or an online website, and not a military budget can look at what you are seeing at any given moment.

Where Crowdstrike fails is insisting people believe that the code they see is (a) an advanced way to geolocate and (b) it was how a state with large resources would do it. Would you leave a calling card where you would get caught and fined through sanctions or worse? If you use an anonymous online resource at least Crowdstrike won’t believe you are Russian and possibly up to something.

” Using open source tools this has been going on for years in the private sector. For geolocation purposes, your smartphone is one of the greatest tools to use. Finding and following you has never been easier. Let’s face it if you are going to stalk someone, “street view” on a map is the next best thing to being there. In the following video, the software hacks your modem. It’s only one step from your phone or computer.”

If you read that article and watch the video you’ll see that using “geo-stalker” is a better choice if you are on a low budget or no budget. Should someone tell the Russians they overpaid?

According to Alperovitch, the smartphone app plotted targets in about 15 seconds. This means that there is only a small window to get information this way.

Using the open source tools I wrote about previously, you could track your targets all-day. In 2014, most Ukrainian forces were using social media regularly. It would be easy to maintain a map of their locations and track them individually.

From my research into those tools, someone using Python scripts would find it easy to take photos, listen to conversations, turn on GPS, or even turn the phone on when they chose to. Going a step further than Alperovitch, without the help of the Russian government, GRU, or FSB, anyone could take control of the drones Ukraine is fond of flying and land them. Or they could download the footage the drones are taking. It’s copy and paste at that point. Would you bother the FSB, GRU, or Vladimir Putin with the details or just do it?

In the WaPo article Alperovitch states “The Fancy Bear crew evidently hacked the app, allowing the GRU to use the phone’s GPS coordinates to track the Ukrainian troops’ position.

In that way, the Russian military could then target the Ukrainian army with artillery and other weaponry. Ukrainian brigades operating in eastern Ukraine were on the front lines of the conflict with Russian-backed separatist forces during the early stages of the conflict in late 2014, CrowdStrike noted. By late 2014, Russian forces in the region numbered about 10,000. The Android app was useful in helping the Russian troops locate Ukrainian artillery positions.”

In late 2014, I personally did the only invasive passport and weapons checks that I know of during the Ukrainian civil war. I spent days looking for the Russian army every major publication said were attacking Ukraine. The keyword  Cyber Security industry leader Alperovitch used is “evidently.” Crowdstrike noted that in late 2014, there were 10,000 Russian forces in the region.

When I did the passport and weapons check, it was under the condition there would be no telephone calls. We went where I wanted to go. We stopped when I said to stop. I checked the documents and the weapons with no obstacles. The weapons check was important because Ukraine was stating that Russia was giving Donbass modern weapons at the time. Each weapon is stamped with a manufacture date. The results are in the articles above.

The government in Kiev agreed with my findings throughout 2014 and 2015. There were and are no Russian troops fighting in Donbass regardless of what Mr. Alperovitch asserts. There are some Russian volunteers which I have covered in detail.

Based on my findings which the CIA would call hard evidence, almost all the fighters had Ukrainian passports. There are volunteers from other countries. In Debaltsevo today, I would question Alperovitch’s  assertion of Russian troops based on the fact the passports will be Ukrainian and reflect my earlier findings. There is no possibly, could be, might be, about it.

The SBU, Olexander Turchinov, and the Ukrainian Ministry of Defense all agree that Crowdstrike is dead wrong in this assessment. Although subtitles aren’t on it, the former Commandant of Ukrainian Army Headquarters thanks God Russia never invaded or Ukraine would have been in deep trouble.

How could Dimitri Alperovitch and Crowdstrike be this wrong on easily checked detail and still get this much media attention?  Could the investment made by Google and some very large players have anything to do with the media Crowdstrike is causing?

In an interview with PBS newshour on December 22nd 2016, Dmitri Alperovitch finally produced the hard evidence he has for Russian involvement clearly. To be fair, he did state it several times before. It just didn’t resonate or the media and US intelligence agencies weren’t listening.

According to Alperovitch, the CEO of a $150 million dollar cyber security company  “And when you think about, well, who would be interested in targeting Ukraine artillerymen in eastern Ukraine who has interest in hacking the Democratic Party, Russia government comes to mind, but specifically, Russian military that would have operational over forces in the Ukraine and would target these artillerymen.”

That statement is most of the proof of Russian involvement he has. That’s it, that’s all the CIA, FBI have to go on. It’s why they can’t certify the intelligence. It’s why they can’t get beyond the threshold of maybe.

Woodruff then asked two important questions. She asked if Crowdstrike was still working for the DNC. Alperovitch responded “We’re protecting them going forward. The investigation is closed in terms of what happened there. But certainly, we’ve seen the campaigns, political organizations are continued to be targeted, and they continue to hire us and use our technology to protect themselves.”

Based on the evidence he presented Woodruff, there is no need to investigate further? Obviously, there is no need, the money is rolling in.

Second and most important Judy Woodruff asked if there were any questions about conflicts of interest, how he would answer? This is where Dmitri Alperovitch’s story starts to unwind.

His response was “Well, this report was not about the DNC. This report was about information we uncovered about what these Russian actors were doing in eastern Ukraine in terms of locating these artillery units of the Ukrainian army and then targeting them. So, what we just did is said that it looks exactly as the same to the evidence we’ve already uncovered from the DNC, linking the two together.”

Why is this reasonable statement going to take his story off the rails? First, let’s look at the facts surrounding his evidence and then look at the real conflicts of interest involved. While carefully evading the question, he neglects to state his conflicts of interest are worthy of a DOJ investigation. Can you mislead the federal government about national security issues and not get investigated yourself?

If Alperovitch’s evidence is all there is, then the US government owes some large apologies to Russia.

After showing who is targeting Ukrainian artillerymen, we’ll look at what might be a criminal conspiracy.

Crowdstrike CEO Dmitri Alperovitch story about Russian hacks that cost Hillary Clinton the election was broadsided by the SBU (Ukrainian Intelligence and Security) in Ukraine. If Dimitri Alperovitch is working for Ukrainian Intelligence and is providing intelligence to 17 US Intelligence Agencies is it a conflict of interest?

Ukraine has been screaming for the US to start a war with Russia for the past 2 1/2 years. Using facts accepted by leaders on both sides of the conflict, the main proof Crowdstrike shows for evidence doesn’t just unravel, it falls apart. Is Ukrainian Intelligence trying to invent a reason for the US to take a hard-line stance against Russia? Are they using Crowdstrike to carry this out?

Real Fancy Bear?

Real Fancy Bear?

Meet the real Fancy Bear and Cozy Bear, part of the groups that are targeting Ukrainian positions for the Donetsk and Lugansk People’s Republics. These people were so tech savvy they didn’t know the Ukrainian SBU (Ukrainian CIA/internal security) records every phone call and most internet use in Ukraine and Donbass. Donbass still uses Ukrainian phone and internet services.

These are normal people fighting back against private volunteer armies that target their homes, schools, and hospitals. The private volunteer armies like Pravy Sektor, Donbas Battalion, Azov, and Aidar have been cited for atrocities like child rape, torture, murder, and kidnapping. That just gets the ball rolling. These are a large swath of the Ukrainian servicemen Crowdstrike hopes to protect.

This story which just aired on Ukrainian news channel TCN shows the SBU questioning and arresting some of what they call an army of people in the Ukrainian-controlled areas. This news video shows people in Toretsk that provided targeting information to Donbass and people probably caught up in the net accidentally.

This is a civil war and people supporting either side are on both sides of the contact line. The SBU is awestruck because there are hundreds if not thousands of people helping to target the private volunteer armies supported by Ukrainian-Americans.

The first person they show on the video is a woman named Olga Lubochka. On the video her voice is heard from a recorded call saying ” In the field, on the left about 130 degrees. Aim and you’ll get it.” and then ” Oh, you hit it so hard you leveled it to the ground.””Am I going to get a medal for this?”

Other people caught up in the raid claim and probably were only calling friends they know. It’s common for people to call and tell their family about what is going on around them. This has been a staple in the war especially in outlying villages for people aligned with both sides of the conflict. A neighbor calls his friend and says “you won’t believe what I just saw.”

Another “fancy bear,” Alexander Schevchenko was caught calling friends and telling them that armored personnel carriers had just driven by.

Anatoli Prima, father of a DNR(Donetsk People’s Republic) soldier was asked to find out what unit was there and how many artillery pieces.

One woman providing information about fuel and incoming equipment has a husband fighting on the opposite side in Gorlovka. Gorlovka is a major city that’s been under artillery attack since 2014.  For the past 2 1/2 years, she has remained in their home in Toretsk. According to the video, he’s vowed to take no prisoners when they rescue the area.

When asked why they hate Ukraine so much, one responded that they just wanted things to go back to what they were like before the coup in February 2014.

Another said they were born in the Soviet Union and didn’t like what was going on in Kiev. At the heart of this statement is the anti- OUN, antinationalist sentiment that most people living in Ukraine feel. The OUNb Bandera killed millions of people in Ukraine, including starving 3 million Soviet soldiers to death. The new Ukraine was founded in 1991 by OUN nationalists outside the fledgling country.

Is giving misleading or false information to 17 US Intelligence Agencies a crime? If it’s done by a cyber security industry leader like Crowdstrike should that be investigated? If unwinding the story from the “targeting of Ukrainian volunteers” side isn’t enough, we should look at this from the American perspective. How did the Russia influencing the election and DNC hack story evolve? Who’s involved? Does this pose conflicts of interest for Dmitri Alperovitch and Crowdstrike? And let’s face it, a hacking story isn’t complete until real hackers with the skills, motivation, and reason are exposed.

In the last article exploring the DNC hacks the focus was on the Chalupas. The article focused on Alexandra, Andrea, and Irene Chalupa. Their participation in the DNC hack story is what brought it to international attention in the first place.

According to journalist and DNC activist Andrea Chalupa on her Facebook page “After Chalupa sent the email to Miranda (which mentions that she had invited this reporter to a meeting with Ukrainian journalists in Washington), it triggered high-level concerns within the DNC, given the sensitive nature of her work. “That’s when we knew it was the Russians,” said a Democratic Party source who has been directly involved in the internal probe into the hacked emails. In order to stem the damage, the source said, “we told her to stop her research.”” July 25, 2016

If she was that close to the investigation Crowdstrike did how credible is she? Her sister Alexandra was named one of 16 people that shaped the election by Yahoo news. The DNC hacking investigation done by Crowdstrike concluded hacking was done by Russian actors based on the work done by Alexandra Chalupa? That is the conclusion of her sister Andrea Chalupa and obviously enough for Crowdstrike to make the Russian government connection. These words mirror Dimitri Alperovitch’s identification process in his interview with PBS Judy Woodruff.

How close is Dimitri Alperovitch to DNC officials? Close enough professionally he should have stepped down from an investigation that had the chance of throwing a presidential election in a new direction.

According to Esquire.com, Alperovitch has vetted speeches for Hillary Clinton about cyber security issues in the past. Because of his work on the Sony hack, President Barrack Obama personally called and said the measures taken were directly because of his work.

Still, this is not enough to show a conflict of interest. Alperovitch’s relationships with the Chalupas, radical groups, think tanks, Ukrainian propagandists, and Ukrainian state supported hackers do. When it all adds up and you see it together, we have found a Russian that tried hard to influence the outcome of the US presidential election in 2016.

In my previous article I showed in detail how the Chalupas fit into this. A brief bullet point review looks like this.

  • The Chalupas are not Democrat or Republican. They are OUNb. The OUNb worked hard to start a war between the USA and Russia for the last 50 years. According to the Ukrainian Weekly in a rare open statement of their existence in 2011, “Other statements were issued in the Ukrainian language by the leadership of the Organization of Ukrainian Nationalists (B) and the International Conference in Support of Ukraine. The OUN (Bandera wing) called for”… What is OUNb Bandera? They follow the same political policy and platform that was developed in the 1930’s by Stepan Bandera. When these people go to a Holocaust memorial they are celebrating both the dead and the OUNb SS that killedThere is no getting around this fact. The OUNb have no concept of democratic values and want an authoritarian fascism.
  • Alexandra Chalupa- According to the Ukrainian Weekly,… “The effort, known as Digital Miadan, gained momentum following the initial Twitter storms. Leading the effort were: Lara Chelak, Andrea Chalupa, Alexandra Chalupa, Constatin Kostenko and others.” The Digital Maidan was also how they raised money for the coup. This was how the Ukrainian emigres bought the bullets that were used on Euromaidan. Ukraine’s chubby nazi, Dima Yarosh stated openly he was taking money from the Ukrainian emigres during Euromaidan and Pravy Sektor still fundraises openly in North America. The “Sniper Massacre” on the Maidan in Ukraine by Dr. Ivan Katchanovski, University of Ottowa shows clearly detailed evidence how the massacre happened. It has Pravy Sektor confessions that show who created the “heavenly hundred. Their admitted involvement as leaders of Digital Maidan by both Chalupas is a clear violation of the Neutrality Act and has up to a 25 year prison sentence attached to it because it ended in a coup.
  • Andrea Chalupa-2014, in a Huff Post article Sept. 1 2016, Andrea Chalupa described Sviatoslav Yurash as one of Ukraine’s important “dreamers.” He is a young activist that founded Euromaidan Press. Beyond the gushing glow what she doesn’t say is who he actually is. Sviatoslav Yurash was Dmitri Yarosh’s spokesman just after Maidan. He is a hardcore Ukrainian nationalist and was rewarded with the Deputy Director position for the UWC (Ukrainian World Congress) in Kiev.

In January, 2014 when he showed up at the Maidan protests he was 17 years old. He became the foreign language media representative for Vitali Klitschko, Arseni Yatsenyuk, and Oleh Tyahnybok. All press enquiries went through Yurash. To meet Dimitri Yurash you had to go through Sviatoslav Yurash as a Macleans reporter found out.

At 18 years old, Sviatoslav Yurash became the spokesman for Ministry of Defense of Ukraine under Andrei Paruby. He was Dimitri Yarosh’s spokesman and can be seen either behind Yarosh on videos at press conferences or speaking ahead of him to reporters. From January 2014 onward, to speak to Dimitri Yarosh, you set up an appointment with Yurash.

Andrea Chalupa has worked with Yurash’s Euromaidan Press which is associated with Informnapalm.org and supplies the state level hackers for Ukraine.

  • Irene Chalupa- Another involved Chalupa we need to cover to do the story justice is Irene Chalupa. From her bio– Irena Chalupa is a nonresident fellow with the Atlantic Council’s Dinu Patriciu Eurasia Center. She is also a senior correspondent at Radio Free Europe/Radio Liberty (RFE/RL), where she has worked for more than twenty years. Ms. Chalupa previously served as an editor for the Atlantic Council, where she covered Ukraine and Eastern Europe. Irena Chalupa is also the news anchor for Ukraine’s propaganda channel org She is also a Ukrainian emigre leader.

According to Robert Parry’s article  At the forefront of people that would have taken senior positions in a Clinton administration and especially in foreign policy are the Atlantic Council. Their main goal is still a major confrontation with nuclear-armed Russia.

The Atlantic Council is the think tank associated and supported by the CEEC (Central and Eastern European Coalition).  The CEEC has only one goal which is war with Russia. Their question to candidates looking for their support in the election was “Are you willing to go to war with Russia?” Hillary Clinton has received their unqualified support throughout the campaign.

What does any of this have to do with Dimitri Alperovitch and Crowdstrike? Since the Atlantic Council would have taken senior cabinet and policy positions, his own fellowship status at the Atlantic Council and relationship with Irene Chalupa creates a definite conflict of interest for Crowdstrike’s investigation. Trump’s campaign was gaining ground and Clinton needed a boost. Had she won, would he have been in charge of the CIA, NSA, or Homeland Security?

When you put someone that has so much to gain in charge of an investigation that could change an election, that is a conflict of interest. If the think tank is linked heavily to groups that want war with Russia like the Atlantic Council and the CEEC, it opens up criminal conspiracy.

If the person in charge of the investigation is a fellow at the think tank that wants a major conflict with Russia it is a definite conflict of interest. Both the Atlantic Council and clients stood to gain Cabinet and Policy positions based on how the result of his work affects the election. It clouds the results of the investigation. In Dmitri Alperovitch’s case, he found the perpetrator before he was positive there was a crime.

Alperovitch’s relationship with Andrea Chalupa’s efforts and Ukrainian intelligence groups is where things really heat up. Noted above she works with Euromaidanpress.com and Informnapalm.org which is the outlet for Ukrainian state-sponsored hackers.

When you look at Dimitri Alperovitch’s twitter relationships, you have to ask why the CEO of a $150 million dollar company like Crowdstrike follows Ukrainian InformNapalm and its hackers individually. There is a mutual relationship. When you add up his work for the OUNb, Ukraine, support for Ukraine’s Intelligence, and to the hackers it needs to be investigated to see if Ukraine is conspiring against the US government.

Alperovitch and Fancy Bear tweet each other?

Alperovitch and Fancy Bear tweet each other?

Crowdstrike is also following their hack of a Russian government official after the DNC hack. It closely resembles the same method used with the DNC because it was an email hack.

ff-twitter-com-2016-12-30-02-24-54

Crowdstrike’s product line includes Falcon Host, Falcon Intelligence, Falcon Overwatch and Falcon DNS. Is it possible the hackers in Falcons Flame are another service Crowdstrike offers? Although this profile says Virginia, tweets are from the Sofia, Bulgaria time zone and he writes in Russian. Another curiosity considering the Fancy Bear source code is in Russian. This image shows Crowdstrike in their network.

Crowdstrike is part of Ukrainian nationalist hacker network

Crowdstrike is part of Ukrainian nationalist hacker network

In an interview with Euromaidanpress these hackers say they have no need for the CIA. They consider the CIA amateurish. They also say they are not part of the Ukrainian military Cyberalliance is a quasi-organization with the participation of several groups – RUH8, Trinity, Falcon Flames, Cyberhunta. There are structures affiliated to the hackers – the Myrotvorets site, Informnapalm analytical agency.”

In the image it shows a network diagram of Crowdstrike following the Surkov leaks. The network communication goes through a secondary source. This is something you do when you don’t want to be too obvious. Here is another example of that.

Ukrainian Intelligence and the real Fancy Bear?

Ukrainian Intelligence and the real Fancy Bear?

Although OSINT Academy sounds fairly innocuous, it’s the official twitter account for Ukraine’s Ministry of Information head  Dimitri Zolotukin. It is also Ukrainian Intelligence. The Ministry of Information started the Peacekeeper or Myrotvorets website that geolocates journalists and other people for assassination. If you disagree with OUNb politics, you could be on the list.

Should someone tell Dimitri Alperovitch that Gerashchenko, who is now in charge of Peacekeeper recently threatened president-elect Donald Trump that he would put him on his “Peacemaker” site as a target? The same has been done with Silvio Berscaloni in the past.

Trying not to be obvious, the Head of Ukraine’s Information Ministry (UA Intelligence) tweeted something interesting that ties Alperovitch and Crowdstrike to the Ukrainian Intelligence hackers and the Information Ministry even tighter.

Trying to keep it hush hush?

Trying to keep it hush hush?

This single tweet on a network chart shows that out of all the Ukrainian Ministry of Information Minister’s following, he only wanted the 3 hacking groups associated with both him and Alperovitch to get the tweet. Alperovitch’s story was received and not retweeted or shared. If this was just Alperovitch’s victory, it was a victory for Ukraine. It would be shared heavily. If it was a victory for the hacking squad, it would be smart to keep it to themselves and not draw unwanted attention.

These same hackers are associated with Alexandra, Andrea, and Irene Chalupa through the portals and organizations they work with through their OUNb. The hackers are funded and directed by or through the same OUNb channels that Alperovitch is working for and with to promote the story of Russian hacking.

Pravy Sektor Hackers and Crowdstrike?

Pravy Sektor Hackers and Crowdstrike?

When you look at the image for the hacking group in the euromaidanpress article, one of the hackers identifies themselves as one of Dimitri Yarosh’s Pravy Sektor members by the Pravy Sektor sweatshirt they have on. Noted above, Pravy Sektor admitted to killing the people at the Maidan protest and sparked the coup.

Going further with the linked Euromaidanpress article the hackers say” Let’s understand that Ukrainian hackers and Russian hackers once constituted a single very powerful group. Ukrainian hackers have a rather high level of work. So the help of the USA… I don’t know, why would we need it? We have all the talent and special means for this. And I don’t think that the USA or any NATO country would make such sharp movements in international politics.”

What sharp movements in international politics have been made lately? Let me spell it out for the 17 US Intelligence Agencies so there is no confusion. These state sponsored, Russian language hackers in Eastern European time zones have shown with the Surkov hack they have the tools and experience to hack states that are looking out for it. They are also laughing at US intel efforts.

The hackers also made it clear that they will do anything to serve Ukraine. Starting a war between Russia and the USA is the one way they could serve Ukraine best, and hurt Russia worst. Given those facts, if the DNC hack was according to the criteria given by Alperovitch, both he and these hackers need to be investigated.

According to the Esquire interview “Alperovitch was deeply frustrated: He thought the government should tell the world what it knew. There is, of course, an element of the personal in his battle cry. “A lot of people who are born here don’t appreciate the freedoms we have, the opportunities we have, because they’ve never had it any other way,” he told me. “I have.”

While I agree patriotism is a great thing, confusing it with this kind of nationalism is not. Alperovitch seems to think by serving OUNb Ukraine’s interests and delivering a conflict with Russia that is against American interests, he’s a patriot. He isn’t serving US interests. He’s definitely a Ukrainian patriot. Maybe he should move to Ukraine.

The evidence presented deserves investigation because it looks like the case for conflict of interest is the least Dimitri Alperovitch should look forward to. If these hackers are the real Cozy Bear and Fancy Bear, they really did make sharp movements in international politics.

By pawning it off on Russia, they made a worldwide embarrassment of an outgoing President of the United States and made the President Elect the suspect of rumor.

From the Observer.com, “Andrea Chalupa—the sister of DNC research staffer Alexandra Chalupa—claimed on social media, without any evidence, that despite Clinton conceding the election to Trump, the voting results need to be audited to because Clinton couldn’t have lost—it must have been Russia. Chalupa hysterically tweeted to every politician on Twitter to audit the vote because of Russia and claimed the TV show The Americans, about two KGB spies living in America, is real.”

Quite possibly now the former UK Ambassador Craig Murry’s admission of being the involved party to “leaks” should be looked at. “Now both Julian Assange and I have stated definitively the leak does not come from Russia. Do we credibly have access? Yes, very obviously. Very, very few people can be said to definitely have access to the source of the leak. The people saying it is not Russia are those who do have access. After access, you consider truthfulness. Do Julian Assange and I have a reputation for truthfulness? Well in 10 years not one of the tens of thousands of documents WikiLeaks has released has had its authenticity successfully challenged. As for me, I have a reputation for inconvenient truth telling.”

___
http://www.washingtonsblog.com/2017/01/crowdstrikes-russian-hacking-story-fell-apart-say-hello-fancy-bear-2.html