Recommended for you

Start writing a post

Lifestyle

Tech Translation: Decoding GRIZZLY STEPPE

How Russia influenced the election of the century.

Peter Mulroe

Jan 11, 2017

Caldwell, New Jersey

Tech Translation: Decoding GRIZZLY STEPPE

Peter Mulroe

Russia hacked the 2016 presidential election.

It was made fact on December 29th by a Joint Analysis Report (JAR) released by the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI).

This JAR elaborates on the strategies and tools used by Russian civilian and military intelligence services (RIS) to compromise the election. It's the explanation to the Joint Statement released on October 7th, 2016 from DHS and the Director of National Intelligence on Election Security.

It even has a pretty badass name: GRIZZLY STEPPE .

Shortly after being made publicly available an old friend of mine shared the link to Facebook. Obviously, I had to click.

Good news: It's only 13 pages.

Bad news: It reads like wet newspaper and is illustrated with fugly swimlane diagrams.

Thankfully this is Tech Translation, so let's explain it! I even took the liberty of making a cooler cover photo for the report.

Class is now in session.

The Short Explanation

Since the summer of 2015, two separate RIS groups did three major things:

1. Hack and control other legitimate sites, computers and accounts around the world. These machines did the dirty work while keeping their real identities and locations hidden.

2. Dupe targets with fake websites or bad links disguised with URL shorteners (like bit.ly) to steal login information or install remote access tools (RATs) for back doors into party systems.

3. Analyze initial information to craft even more convincing spearphishing messages to senior party members. This is the 'leaked' information we've been seeing on the news.

Phishing is the term for tricking people out of their information online. I actually cover it in more detail in another article. It becomes spearphishing when there's a list of specific targets.

According to the report, "at least one" regretful slob actually clicked to open Pandora's box. That's all it takes.

Imagine a virus that hides from your immune system and can make you sneeze on command to spread further. That's hacker malware; designed to operate and spread automatically while leaving no obvious digital evidence.

RIS groups successfully exploited both mechanical and human flaws to achieve their goal of disrupting our election.

So what if the election is over? There's no reason for them to just stop.

Everything Else In The JAR

This is obviously a complex, ongoing issue that deserves more than 13 pages. Not all security buffs are stoked on this report. There isn't much declassified data to sink their teeth into.

They do provide two lists of best practices and mitigation strategies. Let's see what professional security entails.

Best Practices (Translated)

1. Backups - Are there at least two copies of everything? No such thing as too much redundancy.

2. Risk Analysis - What are your digital assets? How critical to the business are they? How badly do others want to steal this? Things like that.

3. Staff training - This is critically important for any business, but especially government offices. Hackers prey on ignorance. In many cases, it really comes down to not clicking on that one link.

4. Vulnerability Scanning & Patching - As people have more time to poke around existing coding languages and software, backdoors and flaws are revealed. It's a game of cat and mouse. If White Hat (lawful) hackers find it first, a fix can be made and distributed. If Black Hat (criminal) hackers find it first... well we've seen the headlines.

5. Application Whitelist - this is a common security practice. Basically, only software that is specifically approved can be used. All other programs are automatically blocked.

6. Incident Response - Misleading because 95% of the work is in the preparation. Being able to quickly detect and eliminate criminal software or users is key. The stealthiest can exist undetected for years like barnacles, quietly siphoning out information.

7. Business Continuity - If the plug has to get pulled on key business infrastructure or information, can things continue on as normal? Having backups makes this easier.

8. Penetration Testing - Calm down boys. This just means hiring White Hat hackers to try and break in. These skills are in high demand right now to keep the good guys one step ahead.

Mitigation Strategies (Translated)

1. Software Patches - As I've explained in another article, a lot of updates are security fixes.

2. Application Whitelist - See above.

3. Restrict Admin Privileges - Don't give one person all the keys. A top goal for hackers is to take over an important account. Limit access privileges to only what is directly necessary for the job.

4. Network Security Zones - Like big digital doors that close to keep the fire contained.

5. Input Sanitation - Let's say a hacker types this (extremely fake) code command into the "Name" box of a contact form: C#:hack_the_world.exe. If the input is not "sanitized", the command could actually be run inside the system instead of being a name only C3-PO could love.

6. Firewalls - Not to be confused with antivirus, firewalls automatically block all internet traffic except what's permitted by specific rules. Kinda like whitelisting, it's easier to just block everything and have a short approval list.

That's all folks. The few remaining pages have response strategies for more specific corporate needs. I'm already over my word count here. Sorry Victoria.

Thanks for reading! Stay tuned for more #GRIZZLYSTEPPE coverage.

Leave a comment or reach out on social media to discuss with me.

@pjmulroe #MakeSecurityGreatAgain

Report this Content

This article has not been reviewed by Odyssey HQ and solely reflects the ideas and opinions of the creator.

Lifestyle

10 things that happen the second Thanksgiving is over

AKA, Christmas overload.

UNC Charlotte

745

10 things that happen the second Thanksgiving is over

reference.com

To those who celebrate, you just spent an entire day cooking an elaborate meal with all of your favorite foods. You probably ate your body weight in pumpkin pie and mashed potatoes. What happens now? Oh yea, Christmas. It’s time to take out all of the decorations and Christmas themed things that have been sitting in the attic since last year; it’s time to make a reappearance. So, here are 10 things that happen the second Thanksgiving is over.

Keep Reading...Show less

christmas

Adulting

18 Things I Want To Do Now That I'm 18

I'm technically an adult, so I'm legally required to live a little, right?

Emory University

3400

Flickr

For the entirety of my high school career, I was always seen as the goody-two-shoes. I never got in trouble with a teacher, I kept stellar grades, and when I wasn't doing extracurricular activities, I was at home studying. Even when I did go out, it was usually with a bunch of fellow band geeks. The night would end before 11:00 PM and the only controversial activity would be a fight based on who unfairly won a round of Apples-to-Apples when someone else clearly had a better card (I promise I'm not still holding a grudge).

Now that I'm officially an adult, I want to pursue some new things. I want to experience life in a way that I never allowed myself to do prior to entering college. These are the years that I'm supposed to embark on a journey of self-discovery, so what better way to do that than to create a bucket list?

Keep Reading...Show less

Featured

10 Life Lessons from Christmas Classics

The holiday classics that shaped my life

The University of Alabama

2060

Flickr

The holiday season is full of stress, debt, and forced conversation. While we rush through the month of December, it's important to take a step back and enjoy the moments before they're gone. Most families love to watch Christmas movies, but these beloved films provide more than entertainment. Here are 10 life lessons that I've learned from the holiday classics we watch every year.

Keep Reading...Show less

Featured

15 Mind-Bending Riddles

Hopefully they will make you laugh.

Ursinus College

201377

Ilistrated image of the planet and images of questions

StableDiffusion

I've been super busy lately with school work, studying, etc. Besides the fact that I do nothing but AP chemistry and AP economics, I constantly think of stupid questions that are almost impossible to answer. So, maybe you could answer them for me, and if not then we can both wonder what the answers to these 15 questions could be.

Keep Reading...Show less

philosophical

Recommended for you

Tech Translation: Decoding GRIZZLY STEPPE

How Russia influenced the election of the century.

The Short Explanation

Everything Else In The JAR

Best Practices (Translated)

Mitigation Strategies (Translated)

Subscribe to our Newsletter

AKA, Christmas overload.

I'm technically an adult, so I'm legally required to live a little, right?

1. Watch an R-rated Scary Movie in a Movie Theater

2. Buy a Lottery Ticket

3. Vote in an Election

4. Participate in a Run (or a Walk, Realistically) for Charity

5. Go on a Road Trip

6. Start a Savings Account

7. Get a Credit Card

8. Sign up for Spotify Premium

9. Go to a Club

10. Start a Meditation Routine

11. Go to a Yoga Class

12. Treat Myself to a Dinner for One

13. Volunteer for a Charity

14. Participate in a Research Study

15. Bake Something (That Ends Up Being Edible)

16. Go Skydiving

17. Be Called for Jury Duty

18. Figure Out What I Want to Do With my Life

The holiday classics that shaped my life

1."But what would happen if we all tried to be like Santa and learned to give as only he can give: of ourselves, our talents, our love and our hearts? Maybe we could all learn Santa's beautiful lesson and maybe there would finally be peace on Earth and good will toward men."

"Sometimes the most real things in the world are the things we can't see."

"If you won't use your heart, who cares if it gets broken? If you just keep it to yourself, maybe it'll be like my rollerblades. When you do decide to try it, it won't be any good. You should take a chance. Got nothing to lose."

"Remember, no man is a failure who has friends."

"Life is made up of meetings and partings. That is the way of it."

"If you look for it, I've got a sneaky feeling you'll find a that love actually is all around."

"Sometimes things look good on paper, but lose their luster when you see how it affects real folks. I guess a healthy bottom line doesn't mean much if to get it, you have to hurt the ones you depend on."

"'Maybe Christmas,' he thought, 'doesn't come from a store. Maybe Christmas, perhaps, means a little bit more.'"

"Faith is believing when common sense tells you not to."

"There's room for everyone on the nice list."

Hopefully they will make you laugh.

1. Why are towels considered dirty when you get out of the shower clean?

2. Who closes the bus door once the bus driver gets off?

3. Why is there a "d" in "fridge" but not in "refrigerator"?

4. If you drop soap on the floor is the floor clean or the soap dirty?

5. Is the "S" or the "C" silent in the word "scent"?

6. Does expecting the unexpected make the unexpected the expected?

7. Would Lightning McQueen buy car insurance or life insurance?

8. Who put the alphabet in alphabetical order?

9. What color are mirrors?

10. If 2 mind readers read each other's minds whose mind are they really reading?

11. Is there a synonym for "synonym"?

12. If your shirt isn't tucked into your pants, are your pants tucked into your shirt?

13. Why is it called "quick sand" if you sink slowly in it?

14. If I try to fail, but succeed, which one did I do?

15. If Cinderella's shoe fit perfectly, why did it fall off?

As if May wasn't enough, a truly spectacular Northern Lights show lit up the sky on Oct. 10, 2024

Northern Lights in Pittsburgh, Pennsylvania

Northern Lights in Outer Banks, North Carolina

Northern Lights in Massachusetts

Northern Lights in New Jersey

Northern Lights in California

Northern Lights in Bronx, New York

Northern Lights in St. Louis, Missouri

Northern Lights in New York City

Northern Lights in Maine

Northern Lights in New Hampshire

Northern Lights in Kentucky

Northern Lights in Myrtle Beach, South Carolina

Trending Topics

Top Creators

Trending Stories

Best of Lifestyle

Subscribe to Our Newsletter

Facebook Comments

Subscribe to our
Newsletter