Advertisement

Microsoft says fresh Russian hacking attacked Republicans ahead of US midterm elections

One of the websites was intended to look like the US Senate's page: Getty
One of the websites was intended to look like the US Senate's page: Getty

Microsoft says Russians are attacking US political groups ahead of the upcoming midterm elections.

Fake websites that were meant to look like two American conservative organisations and the US Senate have been created by a hacking group linked to the Russian government, Microsoft said. The fake pages spoofed right-wing organisations the Hudson Institute and the International Republican Institute.

But they don’t appear to be focused on promoting specific parties, unlike the Trump-supporting hacks prior to the presidential election. Instead, they seem intent on undermining democracy as a whole, experts said.

Microsoft didn’t say what the pages looked like. It’s not clear how many people saw them or what they were actually intended to be used for.

Russia said only that it did not understand the charges, or what proof Microsoft had presented.

"We don't know what hackers they are talking about," Kremlin spokesman Dmitry Peskov told reporters on a conference call when asked about Microsoft's accusations.

"... Who exactly are they talking about? We don't understand what the proof and the basis is for them drawing these kind of conclusions. Such information (proof) is lacking."

The revelation came just weeks after a similar Microsoft discovery led Senator Claire McCaskill, a Missouri Democrat who is running for re-election, to reveal that Russian hackers tried unsuccessfully to infiltrate her Senate computer network.

The hacking attempts mirror similar Russian attacks ahead of the 2016 election, which US intelligence officials have said were focused on helping to elect Republican Donald Trump to the presidency by hurting his Democratic opponent, Hillary Clinton.

This time, more than helping one political party over another, “this activity is most fundamentally focused on disrupting democracy”, Brad Smith, Microsoft’s president and chief legal officer, said in an interview this week.

Mr Smith said there is no sign the hackers were successful in persuading anyone to click on the fake websites, which could have exposed a target victim to computer infiltration, hidden surveillance and data theft. Both conservative think tanks said they have tried to be vigilant about “spear-phishing” email attacks because their global pro-democracy work has frequently drawn the ire of authoritarian governments.

“We’re glad that our work is attracting the attention of bad actors,” said Hudson Institute spokesman David Tell. “It means we’re having an effect, presumably.”

The International Republican Institute is led by a board that includes six Republican senators, and one prominent Russia critic and Senate hopeful, Mitt Romney, a former presidential candidate who is running for a Utah seat this fall.

Microsoft calls the hacking group Strontium; others call it Fancy Bear or APT28. An indictment from US special counsel Robert Mueller has tied it to Russian’s main intelligence agency, known as the GRU, and to the 2016 email hacking of both the Democratic National Committee and the Clinton campaign.

“We have no doubt in our minds” who is responsible, Mr Smith said.

Microsoft has waged a legal battle with Strontium since suing it in a Virginia federal court in summer 2016. The company obtained court approval last year allowing it to seize certain fake domains created by the group. It has so far used the courts to shut down 84 fake websites created by the group, including the most recent six announced on Tuesday.

Microsoft has argued in court that by setting up fake but realistic-looking domains, the hackers were misusing Microsofttrademarks and services to hack into targeted computer networks, install malware and steal sensitive emails and other data.

Mr Smith also announced Tuesday that the company is offering free cybersecurity protection to all US political candidates, campaigns and other political organisations, at least so long as they’re already using Microsoft’s Office 365 productivity software. Facebook and Google have also promoted similar tools to combat campaign interference.

Additional reporting by agencies