FBI warned fraction of hackers’ targets
Policymakers call latest revelation bizarre, dispiriting
WASHINGTON — The hackers’ targets: The former head of cybersecurity for the U.S. Air Force. An ex-director at the National Security Council. A former head of the Defense Intelligence Agency.
All were caught up in a Russian governmentaligned cyberespionage campaign. None was warnedby the FBI.
The bureau repeatedly failed to notify scores of U.S. officials that Russian hackers were trying to break into their personal Gmail accounts despite having evidence for at least a year that the targets were in the Kremlin’s crosshairs, The AssociatedPress has found.
Nearly 80 interviews with Americans targeted by Fancy Bear, a Russian government-aligned cyberespionage group, turnedup only two cases in which the FBI had provided a heads-up. Even senior policymakers discoveredthey were targets only when the AP told them, a situation some described asbizarre and dispiriting.
“It’s utterly confounding,” said Philip Reiner, a former senior director at the National Security Council, who was notified by the AP that he was targeted in 2015. “You’ve got to tell your people. You’ve got to protect your people.”
Noone has “ever said to me, ‘Hey Joe, you’ve been targeted by this Russian group,’” said former Navy intelligence officer Joe Mazzafro, whose inbox the hackers tried to compromise in 2015. “That our own security services have not gone out and alerted me, that’s what I find the most disconcerting as a national security professional.”
The FBI declined to discuss its investigation into Fancy Bear’s spying campaign.
Three people familiar with the matter — including a current and a former government official — said the FBI has known for more than a year the details of Fancy Bear’s attempts to break into Gmail inboxes. A senior FBI official, who was not authorized to publicly discuss the hacking operation because of its sensitivity, declined to comment on when it received the target list, but said that the bureau was overwhelmed by the sheer number of attempted hacks.
“It’s a matter of triaging to the best of our ability the volume of the targetswho are out there,” he said.
The AP did its own triage, dedicating two months and a small team of reporters to go through a hit list of Fancy Bear targets provided by the cybersecurity firmSecureworks.
Previous AP investigations based on the list have shown how Fancy Bear worked in close alignment with the Kremlin’s interests to steal tens of thousands of emails from the Democratic Party.