Russian-Speaking Hacker Selling Access to the US Election Assistance Commission

Recorded Future threat intelligence technology identified chatter (not intelligence at that point) related to a suspected breach of the U.S. Election Assistance Commission (EAC).

Further research identified a Russian hacker (Recorded Future refers to this actor as Rasputin) soliciting a buyer for EAC database access credentials.

For more information visit https://www.recordedfuture.com/rasputin-eac-breach/.

Key Findings

  • On December 1, 2016, Recorded Future identified chatter related to a suspected breach of the U.S. Election Assistance Commission (EAC).
  • Recorded Future engaged the Russian-speaking actor (referred to as “Rasputin” in this research) to assess the full scope of the unauthorized access, and provided all relevant information to federal law enforcement.
  • Further analysis identified more than 100 potentially compromised access credentials, including some with administrative privileges.
  • Rasputin offered to sell an unpatched system vulnerability to a Middle Eastern government broker.
  • Recorded Future successfully attributed the EAC breach to Rasputin.

 

For more information visit https://www.recordedfuture.com/rasputin-eac-breach/.