About that Russian Malware…

Back in the day, one of the strongest clues pointing away from the Kremlin came from a US intelligence agency report.

The PHP malware sample they have provided appears to be P.A.S. version 3.1.0 which is commonly available and the website that claims to have authored it says they are Ukrainian. It is also several versions behind the most current version of P.A.S which is 4.1.1b. One might reasonably expect Russian intelligence operatives to develop their own tools or at least use current malicious tools from outside sources.

WordFence pointed out that this malware was available widely, and the New York Times concurs.

He had made it available to download, free, from a website that asked only for donations, ranging from $3 to $250. The real money was made by selling customized versions and by guiding his hacker clients in its effective use.

But what happened after that report was interesting.

After the Department of Homeland Security identified his creation, he quickly shut down his website and posted on a closed forum for hackers, called Exploit, that “I’m not interested in excessive attention to me personally.”

Soon, a hint of panic appeared, and he posted a note saying that, six days on, he was still alive. […]

Serhiy Demediuk, chief of the Ukrainian Cyber Police, said in an interview that Profexer went to the authorities himself. As the cooperation began, Profexer went dark on hacker forums. He last posted online on Jan. 9. Mr. Demediuk said he had made the witness available to the F.B.I., which has posted a full-time cybersecurity expert in Kiev as one of four bureau agents stationed at the United States Embassy there. The F.B.I. declined to comment.

Profexer was not arrested because his activities fell in a legal gray zone, as an author but not a user of malware, the Ukrainian police say. But he did know the users, at least by their online handles. “He told us he didn’t create it to be used in the way it was,” Mr. Demediuk said.

A member of Ukraine’s Parliament with close ties to the security services, Anton Gerashchenko, said that the interaction was online or by phone and that the Ukrainian programmer had been paid to write customized malware without knowing its purpose, only later learning it was used in Russian hacking.

Huh. It turns out there was a Kremlin connection after all! This is just a side-effect of a rather smart choice made by Putin.

Also emerging from Ukraine is a sharper picture of what the United States believes is a Russian government hacking group known as Advanced Persistent Threat 28 or Fancy Bear. It is this group, which American intelligence agencies believe is operated by Russian military intelligence, that has been blamed, along with a second Russian outfit known as Cozy Bear, for the D.N.C. intrusion.

Rather than training, arming and deploying hackers to carry out a specific mission like just another military unit, Fancy Bear and its twin Cozy Bear have operated more as centers for organization and financing; much of the hard work like coding is outsourced to private and often crime-tainted vendors.

This creates a strong “patriotic Russians” cover story for hacking, but I repeat myself.

The Neo-Nazi in Chief

Ah, that was a great hike! What did I miss while I was gone…

oh. Oh dear. This should have been a slam-dunk: Nazis just committed acts of violence against unarmed protesters, and everyone hates Nazis. Yet all Trump could manage was this?!

We condemn in the strongest possible terms this egregious display of hatred, bigotry and violence on many sides. On many sides.

It’s been going on for a long time in our country. Not Donald Trump, not Barack Obama. This has been going on for a long, long time.

Maybe his cabinet did better? Let’s look at Mike Pence and Jeff Sessions

I stand with @POTUS against hate & violence. U.S is greatest when we join together & oppose those seeking to divide us. #Charlottesville

I have been in contact with our Department of Justice agents assisting at the scene and state officials,” Sessions said. “We will continue to support our state and local officers on the ground in any way possible. We stand united behind the president in condemning the violence in Charlottesville and any message of hate and intolerance. This kind of violence is totally contrary to American values and can never be tolerated. I want to thank all law enforcement personnel in the area for their commitment to protecting this community and the rule of law.

Except police officers stood aside while neo-Nazis attacked protesters, and they did nothing when heavily armed neo-Nazis showed up. Great dodge there, Sessions. Though, on that note: how did Republicans who aren’t part of the White House react? They haven’t exactly been kind to minorities in the past, so maybe they too would sympathise with the neo-Nazis and pull their punches?

The president’s vagueness stood in contrast to his frequent contention, echoing many on the right, that “radical Islamic terrorism” cannot be defeated if political leaders are not willing to specifically call it that.

Among the prominent Republicans who took to Twitter to specifically condemn the neo-Nazis’ violence in Virginia, were House Speaker Paul D. Ryan, Sens. Marco Rubio of Florida and Orrin G. Hatch of Utah, former Republican Party Chairman Ed Gillespie, who is now running for governor in Virginia, and Ronna Romney McDaniel, the current chairwoman of the Republican National Committee.

No really, with the notable exception of Mitch McConnell they had no problems outright condemning neo-Nazis. Even Orrin Hatch was harsh.

 

“Very important for the nation to hear @potus describe events in #Charlottesville for what they are, a terror attack by #whitesupremacists,” tweeted Sen. Marco Rubio, R-Fla. […]

In a statement, Sen. John McCain, R-Ariz., went so far as to address “neo-Nazis” along with white supremacists, saying that the groups “are, by definition, opposed to American patriotism and the ideals that define us as a people and make our nation special.” […]

Speaker of the House Paul Ryan was among the high-ranking Republicans to speak out against the rally, calling it “repugnant” and “vile.” “The views fueling the spectacle in Charlottesville are repugnant. Let it only serve to unite Americans against this kind of vile bigotry,” Ryan wrote. […]

Sen. Tim Scott, R-S.C., the lone African-American Republican in the senate, also called the attack “domestic terror” and encouraged it to be “condemned.” “Otherwise hate is simply emboldened,” wrote Scott. […]

Sen. Ted Cruz slammed the violence associated with the rally and its aftermath in a strongly worded Facebook post.

“The Nazis, the KKK, and white supremacists are repulsive and evil, and all of us have a moral obligation to speak out against the lies, bigotry, anti-Semitism, and hatred that they propagate,” Cruz wrote in the statement.

“Having watched the horrifying video of the car deliberately crashing into a crowd of protesters, I urge the Department of Justice to immediately investigate and prosecute this grotesque act of domestic terrorism.”

OK, so this is definitely something specific to Trump’s White House. If it were an isolated incident, we might be able to dismiss it as a fluke, but instead this incident joins a long list of curious behaviour towards neo-Nazis from Trump and his associates.

  • “It’s this constant, “Oh, it’s the white man. It’s the white supremacists. That’s the problem.” No, it isn’t, Maggie Haberman. Go to Sinjar. Go to the Middle East, and tell me what the real problem is today. Go to Manchester.”
  • A Trump administration effort to exclude violent white supremacists from a government anti-terrorism program and focus efforts solely on Islamist extremism drew a sharp backlash Thursday …”
  • The State Department drafted its own statement last month marking International Holocaust Remembrance Day that explicitly included a mention of Jewish victims, according to people familiar with the matter, but President Donald Trump’s White House blocked its release.The existence of the draft statement adds another dimension to the controversy around the White House’s own statement that was released on Friday and set off a furor because it excluded any mention of Jews.”
  • “But Trump did not become the object of white nationalist affection simply because his positions reflect their core concerns. Extremists made him their chosen candidate and now hail him as “Emperor Trump” because he has amplified their message on social media—and, perhaps most importantly, has gone to great lengths to avoid distancing himself from the racist right. With the exception of Duke [HJH: which he later clawed back], Trump has not disavowed a single endorsement from the dozens of neo-Nazis, Klansmen, white nationalists, and militia supporters who have backed him. The GOP nominee, along with his family members, staffers, and surrogates, has instead provided an unprecedented platform for the ideas and rhetoric of far-right extremists, extending their reach. And when challenged on it by the press, Trump has stalled, feigned ignorance, or deflected—but has never specifically rejected any of these other extremists or their ideas.”
  • Rich Higgins wrote a neo-Nazi influenced memo (“globalists and bankers” are two of their things), which almost got him canned until the Trumps intervened and stalled the firing. got him fired by McMaster. The Trumps loved the memo, though, and the president was outraged by the firing. McMaster has been isolated, as a result.
  • Steve Bannon.

And as hinted at earlier, neo-Nazis view Trump as on their side.

Richard Spencer: Did Trump just denounce antifas? Or did Trump denounce the state police that cracked down on peacefully and lawfully assembled demonstrators?

Paul Nehlen: Like Pres. Trump, I condemn hatred and bigotry on all sides. Violent, illegal antifa attacks on lawful assemblies are especially repugnant.

I’m sorry, America, but you’ve elected a Nazi to lead your country. You might want to do something about that before he nukes the joint.

All the President’s Bots

Trump appears cranky. It’s raining New Jersey, so he can’t golf work, which leaves him with no choice but to hate-watch CNN. Vets are angry with him, his policies are hurting his base, the polls have him at his lowest point since taking office, foreign diplomats view him as a clown, and he has nothing to show for his first six months.

He still has friends, though.

"@1lion: brilliant 3 word response to Hilary's 'I'm With You' slogan. @realDonaldTrump twitter.com/seanhannity/"Aww, at least one person likes Trump!

ilion on Twitter: STILL hasn't made a single Tweet.

… or maybe not? As an old Cracked article pointed out, Trump had a habit of quoting Tweets that didn’t exist, from people who just joined Twitter or were obvious bots. It was an easy way to make himself look more popular than he was, and stroke his ego. He put this to rest after winning the presidency, but that appears to be changing.

In a tweet on Saturday, President Donald Trump expressed thanks to Twitter user @Protrump45, an account that posted exclusively positive memes about the president. But the woman whose name was linked to the account told Heavy that her identity was stolen and that she planned to file a police report. The victim asserted that her identity was used to sell pro-Trump merchandise.

Although “Nicole Mincey” was the name displayed on the Twitter page, it was not the name used to create the account. The real name of the victim has been withheld to protect her privacy.

The @Protrump45 account also linked to the website Protrump45.com which specialized in Trump propaganda. All of the articles on the website were posted by other Twitter users, which also turned out to be fakes. Mashable noted that the accounts were suspected of being so-called “bots” used to spread propaganda about Trump. Russia has been accused of using similar tactics with bots during the 2016 campaign.

The “Nicole Mincey” scam was remarkably advanced, backed up by everything from paid articles pretending to be journalism to real-life announcers-for-hire singing her praises.

So the latest thing in the Trump resistance is bot-hunting. It’s pretty easy to do, once you’ve seen someone else do it, and the takedown procedure is also a breeze. It also silences a lot of Trump’s best friends.

If only we could do the same to Trump.

William Browder and the Magnitsky Act

While a fair number of people have contributed to Pharyngula’s “Political Madness” thread, one of the top contributors is Salty Current.

I watched Bill Browder’s Senate testimony live the other day. Here’s the link to the recording.

This one is better, actually, but if you follow either link you’ll be treated to a nearly two-hour Congressional hearing featuring William Browder, who learned about corruption at the Kremlin the hard way.

In June of 2007 my Moscow office was raided by 25 officers from the Moscow Interior ministry…. I hired the smartest man I knew, a young man named Sergei Magnitsky… , to investigate who did what and how we could stop them. … he came back with an astounding conclusion… the purpose of stealing our companies was to try and steal our assets, which they didn’t succeed in doing, however they did succeed in stealing 230 million dollars in taxes to the Russian government, from the Russian government.

Magnitsky was arrested by the high-ranking officials, and tortured in jail for much of a year. This included denying or ignoring 20 requests for medical attention to take care of pancreatitis, which left him screaming in pain. Magnitsky was eventually moved to a jail with medical facilities, but (according to Browder) was instead beaten with batons until death. Faced with a government that gave state honours to the people involved, Browder successfully lobbied for the Magnitsky Act in the United States.

That’s just the beginning of the testimony, though. Browder goes on to discuss various murders, Natalia Veselnitskaya‘s role in all this, and the depths of corruption within the Kremlin. It’s riveting stuff, and worth the watch. Can’t watch? Don’t worry, they have a rough transcript below the video. Some of the highlights I plucked from it:

  • “There’s no such thing as a former FSB agent, it’s a lifetime commitment.”
  • Fusion GPS, which hired Christopher Steele to compile that infamous dossier, is claimed to have been indirectly hired by the Kremlin to spread lies about Browder. They deny it, but if Browder is correct then it suggests that dossier was commissioned by the Kremlin so they could discredit or blackmail Trump should they have the need.
  • “Nobody was talking about adoptions, they were talking about the repeal of sanctions so that Russian torturers and murderers could freely travel and keep their money in America.”
  • The Panama Papers contain a treasure trove of information about Russian connections, one of which involves a cellist worth 2 billion dollars.
  • Brower believes that by muscling oligarchs, Vladimir Putin was able to skim off 50% of their transactions for himself and become the richest person in the world.

And there’s a lot more where that came from.

Dead Again

The Senate on Friday rejected a new, scaled-down Republican plan to repeal parts of the Affordable Care Act, seemingly derailing the Republicans’ seven-year campaign to dismantle the health care law.

Senator John McCain, Republican of Arizona, cast the decisive vote to defeat the proposal, joining two other Republicans, Susan Collins of Maine and Lisa Murkowski of Alaska, in opposing it.

The 49-to-51 vote was a huge setback for the majority leader, Mitch McConnell of Kentucky, who has spent the last three months trying to devise a repeal bill that could win support from members of his caucus.

The truncated Republican plan was far less than what Republicans once envisioned. Republican leaders, unable to overcome complaints from both moderate and conservative members of their caucus, said the skeletal plan was just a vehicle to permit negotiations with the House, which passed a much more ambitious repeal bill in early May.

I’ve been following this vote closely, and it looked like a sure pass right up until they were scheduled to vote. McCain may have flipped back thanks to pressure from the Arizona governor. Whatever the case, McConnell has said it is time to move on and signalled he was willing to work with Democrats, to which Schumer agreed.

Breath easy, USians. Your health care system is safe for the moment. Well, safe-ish.

Everything All Right Down There?

Do you need Canada to step in and intervene, USA? Because things are getting weird.

Shock surprise, after repeated denials that the Kremlin influenced your election, Trump is whining that no-one is reporting the Kremlin influenced the election to hurt him. All right, all right, fine, I’ll signal boost the alleged “pee pee tape” that was reported in the New York Times, Washington Post, and a tonne of other mainstream outlets.

If it were just that, I’d declare this an ordinary Thursday. But we also have this:

“Who leaked that to you?” he asked. I said I couldn’t give him that information. He responded by threatening to fire the entire White House communications staff. “What I’m going to do is, I will eliminate everyone in the comms team and we’ll start over,” he said. I laughed, not sure if he really believed that such a threat would convince a journalist to reveal a source. He continued to press me and complain about the staff he’s inherited in his new job. “I ask these guys not to leak anything and they can’t help themselves,” he said. “You’re an American citizen, this is a major catastrophe for the American country. So I’m asking you as an American patriot to give me a sense of who leaked it.” […]

“They’ll all be fired by me,” he said. “I fired one guy the other day. I have three to four people I’ll fire tomorrow. I’ll get to the person who leaked that to you. Reince Priebus—if you want to leak something—he’ll be asked to resign very shortly.” The issue, he said, was that he believed Priebus had been worried about the dinner because he hadn’t been invited. “Reince is a fucking paranoid schizophrenic, a paranoiac,” Scaramucci said. He channelled Priebus as he spoke: “ ‘Oh, Bill Shine is coming in. Let me leak the fucking thing and see if I can cock-block these people the way I cock-blocked Scaramucci for six months.’ ” […]

“The swamp will not defeat him,” he said, breaking into the third person. “They’re trying to resist me, but it’s not going to work. I’ve done nothing wrong on my financial disclosures, so they’re going to have to go fuck themselves.”

Scaramucci also told me that, unlike other senior officials, he had no interest in media attention. “I’m not Steve Bannon, I’m not trying to suck my own cock,” he said, speaking of Trump’s chief strategist. “I’m not trying to build my own brand off the fucking strength of the President. I’m here to serve the country.”

If you haven’t guessed, that was Anthony Scaramucci less than a week into his job. It isn’t often that the most bonkers person in the news isn’t Donald Trump.

Incredibly, though, Scaramucci was sane next to much of your own Senate. Not only did a mainstream publication push a story titled “Senate Republicans hope their own Obamacare repeal won’t become law“, the headline is accurate.

Mitch McConnell is making one last frantic plea to his Senate Republican members to advance the party’s scaled-back Obamacare repeal, assuring them at a private lunch that the vote is merely aimed at getting to conference with the House rather than immediately becoming law.

The Senate majority leader picked up some key votes at lunch, with Sen. Rob Portman (R-Ohio) endorsing the shriveling repeal effort as a bridge to bicameral negotiations. Not everyone was sold, but GOP leaders were emphasizing that the bill, which would slash Obamacare’s coverage mandates and result in millions more uninsured, is not the ultimate goal.

“I believe the leader has been in communication with Speaker [Paul] Ryan on that topic,” said Senate Majority Whip John Cornyn (R-Texas). “The request to go to conference has to come from the House so that would probably be the best people to talk to. But I have every expectation we will.”

To sum up the process so far, the House just barely passed a healthcare bill thanks in part to a promise that they’d fix it in the Senate; today, some key Republicans held a press conference to trash the new Senate bill, with Lindsey Graham in particular saying it was “terrible policy and horrible politics” and a “fraud”… then announced they’d vote for it, provided the House promised not to follow usual procedure and put it to a vote. Instead, they want the House and Senate to hash out their vast differences and come up with a third version of this healthcare bill. If they fail on that task, these Senators want the House to abandon the legislation instead of put it to a snap vote, despite heavy pressure to pass something. All this is happening as no-one has any idea what’s in the Senate bill they’re due to vote on sometime in the next 24 hours, but they do know that critical portions will have to dropped to pass it with 50 votes.

We’re starting to get really worried for you up here. Should we call in France or the UN to help mediate?

Time To Mobilise, America

It’s official.

Mitch McConnell: Tomorrow, I will keep my commitment to vote to move beyond the failures of #Obamacare. I will vote yes on the motion to proceed.

The fight for your health care just kicked up a few notches. Republicans are desperate for a “win,” even though they don’t know what they’re fighting for, to the point that they’re flying in John McCain immediately after his blood clot surgery and brain cancer diagnosis. The vote happens tomorrow, so you’d better get active now. Ben Wikler has some good advice.

The first big tell is Tuesday morning, when Republicans need 50+1 votes to start final debate on… something bad, don’t know what yet. 2/

Nobody knows how Tuesday’s vote will go. I have a sinking feeling. As do others. Need constant, maximal pressure. Call: 202-224-3121 3/

Unlike earlier phases of this battle, the hard right is now fully engaged. Koch organizations, Trump admin, the works. We must be louder. 4/

If McConnell votes FOR the motion to proceed but it FAILS, he can’t bring it up again and you can exhale. 7/

that’s very unlikely. Leaders nearly always switch their votes to “nay” so they’re voting w majority and reserve right to bring back up. 8/

If the Rs win the Motion to Proceed, we enter 20 hours of debate. Surreally, that’s all the debate we’ll get on Trumpcare. 11/

In this case, though, the MTP isn’t necessarily a preview of final vote because we won’t know what the final bill will be. So TURN IT UP 13/

Tue-Wed, we’ll have 10 hours of R speeches, 10 hours of D speeches, furious dealmaking, & (your job) mega public outrage 14/

Then vote-o-rama: the weird Senate thing on budget reconciliation bills where each side proposes unlimited amendments & ALL get voted on 15/

This time, vote-o-rama will be used by Rs to propose radical restructurings of the health care system without time for debate or review 17/

Meanwhile, Dems will, I hope and expect, come ready with 100s or 1000s of amendments to extend vote-o-rama as long as possible 18/

That’s the only way Ds can delay the final vote. But the Parliamentarian could rule them dilatory. Or McConnell can change rules anytime 20/

At the end, McConnell will intro an amendment that wipes away all previous amendments. That’s the final bill. Possibly unseen till then 22/

And then the Senate will vote on Trumpcare, whatever Trumpcare is at that point. A mystery bill that could shape all of our futures. 23/

In a series of moments, each a second or two long, a handful of Republican senators will vote yay or nay—death or life for untold 1000s 25/

If the Senate votes yes on Trumpcare, it’s very likely that the House votes the bill through intact & with mind-blowing speed. 29/

If the GOP passes the Motion to Proceed on Tuesday, I’d suggest basically putting your life on hold until the Trumpcare final vote is over.

This is one of those extremely rare moments in politics when everything is on the line—AND nobody knows which way it’ll go.

His advice for what to do begins around here in the Twitter thread. One thing I’d like to point to directly are virtual call banks, where you repeatedly call your representatives from the comfort of your home, but Wikler details a lot of other ways you can help and dishes some great advice (eg. don’t call people who don’t represent you).

Now get moving! Your health depends on it.