Guccifer 2.0

Last updated

"Guccifer 2.0" is a persona which claimed to be the hacker(s) who gained unauthorized access to the Democratic National Committee (DNC) computer network and then leaked its documents to the media, [1] [2] the website WikiLeaks, [3] [4] [5] [6] [7] and a conference event. [8] Some of the documents "Guccifer 2.0" released to the media appear to be forgeries cobbled together from public information and previous hacks, which had been mixed with disinformation. [9] [10] [11] According to indictments in February 2018, the persona is operated by Russian military intelligence agency GRU. [12] On July 13, 2018, Special Counsel Robert Mueller indicted 12 GRU agents for allegedly perpetrating the cyberattacks. [12]

Contents

The U.S. Intelligence Community assessed with high confidence that some of the genuine leaks from "Guccifer 2.0" were part of a series of cyberattacks on the DNC committed by two Russian military intelligence groups, [13] [14] [15] [16] and that "Guccifer 2.0" is actually a persona created by Russian intelligence services to cover for their interference in the 2016 U.S. presidential election. [17] [18] This conclusion is based on intelligence analysis and analyses conducted by multiple private sector cybersecurity individuals and firms, including CrowdStrike, [19] [20] Fidelis Cybersecurity, [20] [21] FireEye's Mandiant, [20] SecureWorks, [22] ThreatConnect, [23] Trend Micro, [24] and the security editor for Ars Technica . [25] The Russian government denies involvement in the theft, [26] and "Guccifer 2.0" denied links to Russia. [27] [28]

In March 2018, Special Counsel Robert Mueller took over investigation of Guccifer 2.0 from the FBI while it was reported that forensic determination had found the Guccifer 2.0 persona to be a "particular military intelligence directorate (GRU) officer working out of the agency's headquarters on Grizodubovoy Street in Moscow". [29]

Identity

On June 21, 2016, in an interview with Vice, "Guccifer 2.0" said he is Romanian, [30] [27] which is the nationality of Marcel Lazar Lehel, the Romanian hacker who originally used the "Guccifer" pseudonym. On June 30, 2016, and January 12, 2017, "Guccifer 2.0" stated that he is not Russian. [31] [32] [33] However, despite stating that he was unable to read or understand Russian, metadata of emails sent from Guccifer 2.0 to The Hill showed that a predominantly-Russian-language VPN was used. [34] When pressed to use the Romanian language in an interview with Motherboard via online chat, "he used such clunky grammar and terminology that experts believed he was using an online translator." [34] Linguistic analysis by Shlomo Engelson Argamon showed that Guccifer 2.0 is most likely "a Russian pretending to be a Romanian". [35] [36] When asked about Guccifer 2.0's leaks, WikiLeaks founder Julian Assange said "These look very much like they’re from the Russians. But in some ways, they look very amateur, and almost look too much like the Russians." [37] [38]

Some cybersecurity experts have concluded that "Guccifer 2.0" is likely a creation of the Russian state-sponsored hacking groups thought to have executed the attack, [19] [20] [21] [22] [23] [25] [18] invented to cover up Russian responsibility. [17] [18] The cybersecurity firm CrowdStrike, which was hired by the DNC to analyze the data breach, [39] "posits that Guccifer 2.0 could be 'part of a Russian Intelligence disinformation campaign'", i.e. a creation to deflect blame for the theft. [17] Russia has made use of the invention of "a lone hacker or an hacktivist to deflect blame" in the past, deploying this strategy in previous cyberattacks on the German government and the French network TV5Monde. [18] Thomas Rid of King's College London, a cybersecurity expert, says it is "'more likely than not' that the whole operation, including the Guccifer 2.0 part, was orchestrated by Russian spies." [18] The hackers responsible for the DNC email leak (a group called Fancy Bear by CrowdStrike) seem to have not been working on the DNC's servers on April 15 which in Russia is a holiday in honor of the Russian military's electronic warfare services. [40]

On July 18, 2016, Russian government spokesman Dmitry Peskov denied Russian government involvement in the DNC theft. [41]

In an October 2016 joint statement, the United States Department of Homeland Security and the Office of the Director of National Intelligence stated:

The U.S. Intelligence Community (USIC) is confident that the Russian Government directed the recent compromises of e-mails from U.S. persons and institutions, including from U.S. political organizations. The recent disclosures of alleged hacked e-mails on sites like DCLeaks.com and WikiLeaks and by the Guccifer 2.0 online persona are consistent with the methods and motivations of Russian-directed efforts. These thefts and disclosures are intended to interfere with the U.S. election process. Such activity is not new to Moscow—the Russians have used similar tactics and techniques across Europe and Eurasia, for example, to influence public opinion there. We believe, based on the scope and sensitivity of these efforts, that only Russia's senior-most officials could have authorized these activities. [42]

In March 2018, The Daily Beast , citing U.S. government sources, reported that Guccifer 2.0 is in fact a Russian GRU officer, explaining that Guccifer once forgot to use a VPN, leaving IP logs on "an American social media company" server. The IP address was used by U.S. investigators to identify Guccifer 2.0 as "a particular GRU officer working out of the agency's headquarters on Grizodubovoy Street  [ ru ] in Moscow." [29]

In April 2018, BuzzFeed reported that messages showed WikiLeaks' interest in Guccifer 2.0's emails and files. [43]

On July 13, 2018, the United States Department of Justice (DOJ) indicted 12 Russian Intelligence Officers and revealed that Guccifer 2.0 was a persona used by GRU. [44]

Twitter suspended the persona's account on July 14, 2018, for "being connected to a network of accounts previously suspended for operating in violation of our rules." The account had been dormant for at least a year and a half. [45]

Computer hacking claims

On June 14, 2016, according to The Washington Post , the DNC acknowledged a hack [46] which was claimed by Guccifer 2.0. [4] [5] [6] [7] [31] [47]

On July 18, 2016, Guccifer 2.0 provided exclusively to The Hill numerous documents and files covering political strategies, [2] including correlating the banks that received bailout funds with Republican Party and Democratic Party donations. [2]

On July 22, 2016, Guccifer 2.0 stated he hacked, then leaked, the DNC emails to WikiLeaks. [4] [5] [6] [7] [31] [47] "Wikileaks published #DNCHack docs I'd given them!!!", tweeted Guccifer 2.0. [7]

On September 13, 2016, during a conference, an unknown and remote representative of Guccifer 2.0 released almost 700 megabytes (MB) worth of documents from the DNC. [48] Forbes also obtained a copy of those. [8] On September 12, 2016, ahead of that conference, Guccifer posted a public Twitter message in which he confirmed that his representative was legitimate. [8] The Russian government denied any involvement. [48] The DNC, the DCCC, U.S. intelligence officials, and other experts speculated about Russia involvement. [48] NGP VAN, who state they are the "leading technology provider" for the Democratic campaigns, declined to comment on Guccifer 2.0's recent statements. [8]

On October 4, 2016, Guccifer 2.0 released documents and claimed that they were taken from the Clinton Foundation and showed "corruption and malfeasance" there. [49] Security experts quickly determined that the release was a hoax; the release did not contain Clinton Foundation documents, but rather consisted of documents previously released from the DNC and DCCC thefts, data aggregated from public records, and documents that were fabricated altogether as propaganda. [49] [11] Singled out as particularly unrealistic was the idea that Clinton's team would have actually named a file "Pay for Play" on their own server, as Guccifer 2.0's screenshots of the alleged "hack" show. [49] [50] [10]

Former Trump confidant Roger Stone was in contact with Guccifer 2.0 during the campaign. [51]

Communications with WikiLeaks

A week after Guccifer 2.0 appeared online, WikiLeaks sent the persona a message saying to "send any new material here for us to review and it will have a much higher impact than what you are doing." [52] After not receiving a reply, on July 6, 2016 WikiLeaks sent another message that said "if you have anything hillary related we want it in the next tweo [sic] days prefable [sic] because the DNC is approaching and she will solidify bernie supporters behind her after." Guccifer 2.0 responded "ok ... i see," and WikiLeaks added "we think trump has only a 25% chance of winning against hillary ... so conflict between bernie and hillary is interesting." [53] [54] On July 14, 2016 Guccifer 2.0 sent WikiLeaks an email with an encrypted attachment labeled "wk dnc link1.txt.gpg." [55] According to the indictment, the email explained that "the encrypted file contained instructions on how to access an online archive of stolen DNC documents." [52]

Four days later, WikiLeaks responded that it had received "the 1Gb or so archive" and would release the files that week. [52] The DNC emails were released several days later.

Post-election activities

The Guccifer 2.0 persona went dark just before the U.S. presidential election, and resurfaced on January 12, 2017, following the public release of the Steele dossier that asserted the Trump campaign was cooperating with the Russians in their interference in the 2016 presidential election. The dossier also asserted that "Romanian hackers" had performed the hacks.

The Guccifer 2.0 persona made a blog post denying that they had any relation to the Russian government, and calling the technical evidence suggesting links to the Russian government "a crude fake." [28] In the blog post, Guccifer 2.0 indicated they had gained access to the DNC servers through a vulnerability in their NGP VAN software. [56]

Timeline of Guccifer 2.0

2016
2017
2018

See also

Related Research Articles

<span class="mw-page-title-main">Andy Müller-Maguhn</span> German hacker

Andy Müller-Maguhn is a member of the German hacker association Chaos Computer Club (CCC). Having been a member since 1986, he was appointed as a spokesman for the club in 1990, and later served on its board until 2012. He runs a company that develops cryptophones.

<span class="mw-page-title-main">WikiLeaks</span> News leak publishing organisation

WikiLeaks is a media organisation and publisher that operates as a non-profit and is funded by donations and media partnerships. It has published classified documents and other media provided by anonymous sources. It was founded in 2006 by Julian Assange, an Australian editor, publisher, and activist, who is currently challenging extradition to the United States over his work with WikiLeaks. Since September 2018, Kristinn Hrafnsson has served as its editor-in-chief. Its website states that it has released more than ten million documents and associated analyses. WikiLeaks' most recent publication of original documents was in 2019 and its most recent publication was in 2021. Beginning in November 2022, many of the documents on the organisation's website could not be accessed. In 2023, Assange said that WikiLeaks was no longer able to publish due to his imprisonment and the effect that US government surveillance and WikiLeaks' funding restrictions were having on potential whistleblowers.

<span class="mw-page-title-main">Julian Assange</span> Australian editor, publisher, and activist, founder of WikiLeaks (born 1971)

Julian Paul Assange is an Australian editor, publisher and activist who founded WikiLeaks in 2006. He came to wide international attention in 2010 when WikiLeaks published a series of leaks from US Army intelligence analyst Chelsea Manning: footage of a US airstrike in Baghdad, US military logs from the Afghanistan and Iraq wars, and US diplomatic cables. Assange has won multiple awards for publishing and journalism.

<span class="mw-page-title-main">Bernd Fix</span> German hacker and computer security expert

Bernd Fix is a German hacker and computer security expert.

WikiLeaks, a whistleblowing website founded by Julian Assange, has received praise as well as criticism from the public, hacktivists, journalist organisations and government officials. The organisation has revealed human rights abuses and was the target of an alleged "cyber war". Allegations have been made that Wikileaks worked with or was exploited by the Russian government and acted in a partisan manner during the 2016 U.S. presidential election.

<span class="mw-page-title-main">Democratic National Committee cyber attacks</span> 2015-16 data breaches by Russian hackers as part of US election interference

The Democratic National Committee cyber attacks took place in 2015 and 2016, in which two groups of Russian computer hackers infiltrated the Democratic National Committee (DNC) computer network, leading to a data breach. Cybersecurity experts, as well as the U.S. government, determined that the cyberespionage was the work of Russian intelligence agencies.

The 2016 Democratic National Committee email leak is a collection of Democratic National Committee (DNC) emails stolen by one or more hackers operating under the pseudonym "Guccifer 2.0" who are alleged to be Russian intelligence agency hackers, according to indictments carried out by the Mueller investigation. These emails were subsequently leaked by DCLeaks in June and July 2016 and by WikiLeaks on July 22, 2016, just before the 2016 Democratic National Convention. This collection included 19,252 emails and 8,034 attachments from the DNC, the governing body of the United States Democratic Party. The leak includes emails from seven key DNC staff members dating from January 2015 to May 2016. On November 6, 2016, WikiLeaks released a second batch of DNC emails, adding 8,263 emails to its collection. The emails and documents showed that the Democratic Party's national committee favored Clinton over her rival Bernie Sanders in the primaries. These releases caused significant harm to the Clinton campaign, and have been cited as a potential contributing factor to her loss in the general election against Donald Trump.

The murder of Seth Rich occurred on July 10, 2016, at 4:20 a.m. in the Bloomingdale neighborhood of Washington, D.C. Rich died about an hour and a half after being shot twice in the back. The perpetrators were never apprehended; police suspected he had been the victim of an attempted robbery.

<span class="mw-page-title-main">DCLeaks</span> Hacker group

DCLeaks was a website that was established in June 2016. It was responsible for publishing leaks of emails belonging to multiple prominent figures in the United States government and military. Cybersecurity research firms determined the site is a front for the Russian cyber-espionage group Fancy Bear. On July 13, 2018, an indictment was made against 12 Russian GRU military officers; it alleged that DCLeaks is part of a Russian military operation to interfere in the 2016 U.S. presidential election.

In March 2016, the personal Gmail account of John Podesta, a former White House chief of staff and chair of Hillary Clinton's 2016 U.S. presidential campaign, was compromised in a data breach accomplished via a spear-phishing attack, and some of his emails, many of which were work-related, were hacked. Cybersecurity researchers as well as the United States government attributed responsibility for the breach to the Russian cyber spying group Fancy Bear, allegedly two units of a Russian military intelligence agency.

<span class="mw-page-title-main">Russian interference in the 2016 United States elections</span>

The Russian government interfered in the 2016 United States elections with the goals of sabotaging the presidential campaign of Hillary Clinton, boosting the presidential campaign of Donald Trump, and increasing political and social discord in the United States. According to the U.S. intelligence community, the operation—code named Project Lakhta—was ordered directly by Russian president Vladimir Putin. The 448-page Mueller report, made public in April 2019, examined over 200 contacts between the Trump campaign and Russian officials but concluded that there was insufficient evidence to bring any conspiracy or coordination charges against Trump or his associates.

<span class="mw-page-title-main">Timeline of Russian interference in the 2016 United States elections</span>

This is a timeline of events related to Russian interference in the 2016 United States elections.

<i>The Plot to Hack America</i> Non-fiction book by Malcolm Nance

The Plot to Hack America: How Putin's Cyberspies and WikiLeaks Tried to Steal the 2016 Election is a non-fiction book by Malcolm Nance about the Russian interference in the 2016 United States elections. It was published in paperback, audiobook, and e-book formats in 2016 by Skyhorse Publishing. A second edition was also published the same year, and a third edition in 2017. Nance researched Russian intelligence, working as a Russian interpreter and studying KGB history.

<i>Assessing Russian Activities and Intentions in Recent US Elections</i> 2017 US government report

Assessing Russian Activities and Intentions in Recent US Elections is a report issued by the United States Office of the Director of National Intelligence (ODNI) that assessed the extent and basis of Russia's interference in United States' elections in 2016. Published on January 6, 2017, the report includes an assessment by the National Security Agency, the Central Intelligence Agency, and the Federal Bureau of Investigation of the type and breadth of actions undertaken by Russia and affiliated elements during the elections. The report examines Russia's utilization of cyberspace such as hacking and the use of internet trolls and bots, and an intensive media campaign to influence public opinion in the United States. Additionally, it analyzes Russia's intentions and motivations in regards to their influence campaign. Issued in two forms, a classified version and a declassified version, the report drew its conclusions based on highly classified intelligence, an understanding of past Russian actions, and sensitive sources and methods.

<i>Democratic National Committee v. Russian Federation</i> Civil lawsuit filed by the Democratic National Committee (DNC)

Democratic National Committee v. Russian Federation, et al. was a civil lawsuit filed by the Democratic National Committee (DNC) in the United States District Court for the Southern District of New York against the Russian Federation, WikiLeaks and other entities and individuals. The case, relating to Russian interference in the 2016 United States elections, was filed on April 20, 2018. The DNC's complaint accused the Trump campaign of engaging in a racketeering enterprise in conjunction with Russia and WikiLeaks. The American Civil Liberties Union, Reporters Committee for Freedom of the Press and others filed friend-of-the-court briefs expressing concern over the lawsuit's implications for freedom of the press.

<span class="mw-page-title-main">Topical timeline of Russian interference in the 2016 United States elections</span>

This is a timeline of events related to Russian interference in the 2016 United States elections, sorted by topics. It also includes events described in investigations into the many suspicious links between Trump associates and Russian officials and spies. Those investigations continued in 2017, the first and second halves of 2018, and 2019, largely as parts of the Crossfire Hurricane FBI investigation, the Special Counsel investigation, multiple ongoing criminal investigations by several State Attorneys General, and the investigation resulting in the Inspector General report on FBI and DOJ actions in the 2016 election.

<span class="mw-page-title-main">Timeline of Russian interference in the 2016 United States elections (July 2016 – election day)</span> Major events prior to Trumps inauguration

This is a timeline of events related to Russian interference in the 2016 United States elections.

<span class="mw-page-title-main">Emma Best (journalist)</span> American journalist and whistleblower

Emma Best is an American investigative reporter and whistleblower. They gained national attention for their work with WikiLeaks and activist Julian Assange. Best is known for prolific filing of Freedom of Information Act (FOIA) requests on behalf of MuckRock and co-founding the whistleblower site Distributed Denial of Secrets (DDoSecrets) which resulted in Best being investigated by the Department of Homeland Security and temporarily banned from filing FOIA requests.

<span class="mw-page-title-main">2016 United States election leaks</span> Leaks during the 2016 U.S. elections

The 2016 United States election leaks were a series of publications of more than 150,000 stolen emails and other files during the U.S. presidential election campaigns released by Guccifer 2.0, DCLeaks and WikiLeaks. Computer hackers allegedly affiliated with the Russian military intelligence service (GRU) infiltrated information systems of the Democratic National Committee (DNC), the Democratic Congressional Campaign Committee (DCCC), and Clinton campaign officials, notably chairman John Podesta, and leaked some of the stolen materials. Emails from Guccifer 2.0 to journalists suggest a link to DCLeaks, and messages WikiLeaks exchanged with Guccifer 2.0 and DCLeaks suggest both submitted emails to WikiLeaks.

References

  1. Uchill, Joe (July 13, 2016). "Guccifer 2.0 releases new DNC docs". The Hill. Archived from the original on July 29, 2016. Retrieved July 27, 2016.
  2. 1 2 3 Uchill, Joe (July 18, 2016). "New Guccifer 2.0 dump highlights 'wobbly Dems' on Iran deal". The Hill. Archived from the original on July 29, 2016. Retrieved July 27, 2016.
  3. Savage, Charlie (July 26, 2016). "Assange, Avowed Foe of Clinton, Timed Email Release for Democratic Convention". NYT. Archived from the original on March 8, 2018. Retrieved August 4, 2016.
  4. 1 2 3 Uchill, Joe (July 22, 2016). "WikiLeaks posts 20,000 DNC emails". The Hill. Archived from the original on July 25, 2016. Retrieved July 24, 2016.
  5. 1 2 3 "'Lone Hacker' Claims Responsibility for Cyber Attack on Democrats". NBC News. June 16, 2016. Archived from the original on July 28, 2016. Retrieved July 27, 2016.
  6. 1 2 3 Biddle, Sam (July 22, 2016). "New Leak: Top DNC Official Wanted to Use Bernie Sanders's Religious Beliefs Against Him". The Intercept. Archived from the original on October 6, 2021. Retrieved July 24, 2016.
  7. 1 2 3 4 Cox, Joseph (July 22, 2016). "Guccifer 2.0 Claims Responsibility for WikiLeaks DNC Email Dump". Motherboard. Archived from the original on July 26, 2016. Retrieved July 27, 2016.
  8. 1 2 3 4 Fox-Brewster, Thomas (September 13, 2016). "Democrat Hacker Guccifer 2.0 'Appears' At London Show—Here's What Was Said". Forbes . Archived from the original on September 23, 2016. Retrieved September 23, 2016.
  9. "The Clinton Foundation hack is likely fake". The Daily Dot. October 4, 2016. Archived from the original on August 12, 2022. Retrieved July 27, 2022.
  10. 1 2 Williams, Katie Bo (October 4, 2016). "Alleged Guccifer 2.0 hack of Clinton Foundation raises suspicions". The Hill . Archived from the original on October 8, 2016. Retrieved October 8, 2016.
  11. 1 2 Gallagher, Sean (October 4, 2016). "Guccifer 2.0 posts DCCC docs, says they're from Clinton Foundation". Ars Technica. Archived from the original on October 20, 2016. Retrieved October 21, 2016.
  12. 1 2 "12 Russians indicted in Mueller investigation". CNN.com. July 13, 2018. Archived from the original on July 14, 2018. Retrieved July 14, 2018.
  13. "Spy Agency Consensus Grows That Russia Hacked D.N.C." New York Times. Archived from the original on May 2, 2019. Retrieved July 26, 2016.
  14. Shieber, Jonathan; Conger, Kate (July 26, 2016). "Did Russian government hackers leak the DNC emails?". TechCrunch. Archived from the original on November 10, 2021. Retrieved July 26, 2016.
  15. Rid, Thomas (July 25, 2016). "All Signs Point to Russia Being Behind the DNC Hack". Motherboard. Archived from the original on December 20, 2016. Retrieved July 25, 2016.
  16. "DNC email leak: Russian hackers Cozy Bear and Fancy Bear behind breach". The Guardian. July 26, 2016. Archived from the original on August 5, 2016. Retrieved August 7, 2016.
  17. 1 2 3 Rob Price, Yes, Russia really did hack the Democratic National Committee Archived August 19, 2022, at the Wayback Machine , Business Insider (June 21, 2016).
  18. 1 2 3 4 5 Lorenzo Franceschi-Bicchierai, 'Guccifer 2.0' Is Likely a Russian Government Attempt To Cover Up Their Own Hack Archived January 30, 2017, at the Wayback Machine , VICE News (June 16, 2016).
  19. 1 2 Dmitri Alperovitch, Bears in the Midst: Intrusion into the Democratic National Committee Archived May 24, 2019, at the Wayback Machine , Crowdstrike (June 15, 2016).
  20. 1 2 3 4 Ellen Nakashima, Cyber researchers confirm Russian government hack of Democratic National Committee Archived August 3, 2016, at the Wayback Machine , Washington Post (June 20, 2016).
  21. 1 2 Michael Kan, Russian hackers were behind DNC breach, says Fidelis Cybersecurity Archived February 16, 2019, at the Wayback Machine , IDG News Service (June 20, 2016).
  22. 1 2 SecureWorks Counter Threat Unit Threat Intelligence, Threat Group-4127 Targets Hillary Clinton Presidential Campaign Archived July 20, 2016, at the Wayback Machine , SecureWorks (June 16, 2016).
  23. 1 2 Threatconnect Research Team, Shiny Object? Guccifer 2.0 and the DNC Breach Archived August 12, 2022, at the Wayback Machine , Threatconnect (June 29, 2016).
  24. Hacquebord, Feike (2017). Two Years of Pawn Storm—Examining an Increasingly Relevant Threat (PDF) (Report). Trend Micro. Archived (PDF) from the original on July 5, 2017. Retrieved April 27, 2017. This makes it very likely that Guccifer 2.0 is a creation of the Pawn Storm actor group.
  25. 1 2 Dan Goodin, "Guccifer" leak of DNC Trump research has a Russian's fingerprints on it: Evidence left behind shows leaker spoke Russian and had affinity for Soviet era Archived July 25, 2016, at the Wayback Machine , Ars Technica (June 16, 2016).
  26. Moscow denies Russian involvement in U.S. DNC hacking Archived October 18, 2020, at the Wayback Machine , Reuters (June 14, 2016).
  27. 1 2 Franceschi-Bicchierai, Lorenzo (June 21, 2016). "We Spoke to DNC Hacker 'Guccifer 2.0'". Motherboard. Vice News. Archived from the original on July 29, 2016. Retrieved July 29, 2016.
  28. 1 2 Franceschi-Bicchierai, Lorenzo (January 12, 2017). "Alleged Russian Hacker 'Guccifer 2.0' Is Back After Months of Silence". Motherboard. VICE News. Archived from the original on January 22, 2017. Retrieved January 13, 2017.
  29. 1 2 Ackerman, Spencer; Poulsen, Kevin (March 22, 2018). "EXCLUSIVE: 'Lone DNC Hacker' Guccifer 2.0 Slipped Up and Revealed He Was a Russian Intelligence Officer". The Daily Beast. Archived from the original on March 23, 2018. Retrieved March 23, 2018. But on one occasion (...) Guccifer failed to activate the VPN client before logging on. As a result, he left a real, Moscow-based Internet Protocol address in the server logs of an American social media company. (...) Working off the IP address, U.S. investigators identified Guccifer 2.0 as a particular GRU officer working out of the agency's headquarters on Grizodubovoy Street in Moscow.
  30. Franceschi-Bicchierai, Lorenzo (June 21, 2016). "Here's the Full Transcript of Our Interview With DNC Hacker 'Guccifer 2.0'". Motherboard. Vice News. Archived from the original on August 3, 2016. Retrieved August 3, 2016.
  31. 1 2 3 Guccifer 2.0 (June 30, 2016). "FAQ from Guccifer 2.0". Guccifer 2.0. Archived from the original on July 25, 2016. Retrieved July 24, 2016.{{cite web}}: CS1 maint: numeric names: authors list (link)
  32. McBride, Jessica (July 25, 2016). "Guccifer 2.0: 5 Fast Facts You Need to Know". Heavy. Archived from the original on July 26, 2016. Retrieved July 27, 2016.
  33. Guccifer 2.0 (January 12, 2017). "Here I am Again, My Friends!". GUCCIFER 2.0. Archived from the original on March 12, 2017. Retrieved February 25, 2017.{{cite web}}: CS1 maint: numeric names: authors list (link)
  34. 1 2 Joe Uchill, Evidence mounts linking DNC email hacker to Russia Archived November 10, 2021, at the Wayback Machine , The Hill (July 26, 2016).
  35. Savage, Charlie; Perlroth, Nicole (July 27, 2016). "Is D.N.C. Email Hacker a Person or a Russian Front? Experts Aren't Sure". The New York Times. Archived from the original on August 19, 2022. Retrieved October 3, 2018.
  36. "Multa Verba: Guccifer 2.0: Russian, not Romanian". July 27, 2016. Archived from the original on August 19, 2022. Retrieved October 3, 2018.
  37. Uchill, Joe (December 15, 2016). "Assange: Some leaks may have been Russian". The Hill. Archived from the original on July 27, 2022. Retrieved July 27, 2022.
  38. "What the Latest Mueller Indictment Reveals About WikiLeaks' Ties to Russia—and What It Doesn't". The New Yorker. Condé Nast. July 24, 2018. Archived from the original on April 22, 2019. Retrieved July 27, 2022.
  39. "Russian government hackers penetrated DNC, stole opposition research on Trump". Washington Post. Archived from the original on May 22, 2019. Retrieved December 14, 2016.
  40. "Bear on bear". Economist. September 24, 2016. Archived from the original on May 20, 2017. Retrieved October 25, 2016.
  41. "Hacker Guccifer 2.0 claims new DNC data leak | Fox News". Fox News. July 18, 2016. Archived from the original on June 30, 2018. Retrieved July 25, 2016.
  42. Joint Statement from the Department of Homeland Security and Office of the Director of National Intelligence on Election Security Archived December 10, 2016, at the Wayback Machine , U.S. Department of Homeland Security (October 7, 2016).
  43. "These Messages Show Julian Assange Talked About Seeking Hacked Files From Guccifer 2.0". BuzzFeed . April 5, 2018. Archived from the original on April 7, 2018. Retrieved April 13, 2018. Less than an hour after WikiLeaks's last message ... Guccifer 2.0 tweeted that it had handed those documents over.
  44. Ewing, Philip; Johnson, Carrie (July 13, 2018). "Justice Department Charges Russian Cyberspies With Attack On 2016 Election". National Public Radio. Archived from the original on July 13, 2018. Retrieved July 13, 2018.
  45. Sommerfeldt, Chris (July 14, 2018). "Twitter finally suspends Guccifer 2.0 and DCLeaks in light of Mueller indicting 12 Russian agents who used the accounts". San Diego Tribune. Archived from the original on July 15, 2018. Retrieved July 15, 2018.
  46. Nakashima, Ellen (June 15, 2016). "'Guccifer 2.0' claims credit for DNC hack". Washington Post. Archived from the original on April 17, 2018. Retrieved July 25, 2016.
  47. 1 2 Mackey, Robert (July 26, 2016). "If Russian Intelligence Did Hack the DNC, the NSA Would Know, Snowden Says". The Intercept. Archived from the original on November 21, 2021. Retrieved July 27, 2016.
  48. 1 2 3 Winter, Tom (September 13, 2016). "'Guccifer 2.0' releases more DNC docs, including Tim Kaine's cell number". NBCNews.com. Archived from the original on September 22, 2016. Retrieved September 23, 2016.
  49. 1 2 3 Lily Hay Newman, Even a Fake Clinton Foundation Hack and Can Do Serious Damage Archived August 19, 2022, at the Wayback Machine , Wired (October 7, 2016).
  50. Vankin, Jonathan (October 4, 2016). "READ: Guccifer 2.0 Clinton Foundation Hacked Documents". Heavy.com. Archived from the original on October 7, 2016. Retrieved October 8, 2016.
  51. Borger, Gloria; Korade, Matt (March 12, 2017). "Trump associate plays down Twitter contact with Guccifer 2.0". CNN. Archived from the original on May 8, 2019. Retrieved December 29, 2017.
  52. 1 2 3 Lee, Micah (July 18, 2018). "What Mueller's Latest Indictment Reveals About Russian and U.S. Spycraft". The Intercept. Archived from the original on August 16, 2022. Retrieved July 27, 2022.
  53. Nilsen, Ella (July 13, 2018). "The Mueller indictments reveal the timing of the DNC leak was intentional". Vox. Archived from the original on September 1, 2022. Retrieved July 27, 2022.
  54. 1 2 3 4 5 6 7 8 Bump, Philip (July 13, 2018). "Timeline: How Russian agents allegedly hacked the DNC and Clinton's campaign". The Washington Post . Archived from the original on February 16, 2021. Retrieved July 15, 2018.
  55. 1 2 Poulsen, Kevin (April 18, 2019). "Mueller Report: Assange Smeared Seth Rich to Cover for Russians". The Daily Beast . Archived from the original on April 19, 2019. Retrieved April 22, 2019. Julian Assange not only knew that a murdered Democratic National Committee staffer wasn't his source for thousands of hacked party emails, he was in active contact with his real sources in Russia's GRU months after Seth Rich's death. At the same time he was publicly working to shift blame onto the slain staffer "to obscure the source of the materials he was releasing," Special Counsel Robert Mueller asserts in his final report on Russia's role in the 2016 presidential election.
  56. "Here I am Again, My Friends!". WordPress. January 12, 2017. Archived from the original on March 12, 2017. Retrieved January 13, 2017.
  57. Rich, Steven. "Netyksho Et Al Indictment". www.documentcloud.org. Archived from the original on July 13, 2018. Retrieved August 12, 2019.
  58. Nakashima, Ellen (June 15, 2016). "'Guccifer 2.0' claims credit for DNC hack". The Washington Post . Archived from the original on April 17, 2018. Retrieved March 14, 2018.
  59. Biddle, Sam; Bluestone, Gabrielle (June 15, 2016). "This Looks Like the DNC's Hacked Trump Oppo File". Gawker . Archived from the original on July 24, 2018. Retrieved July 15, 2018.
  60. "Trumpocalypse and other DNC plans for July". WordPress. Archived from the original on July 6, 2016. Retrieved March 14, 2016 via Internet Archive.
  61. 1 2 Uchill, Joe (July 13, 2016). "Guccifer 2.0 releases new DNC docs". The Hill . Archived from the original on July 29, 2016. Retrieved March 14, 2018.
  62. "Counterintelligence Threats and Vulnerabilities" (PDF). senate.gov. Senate Intelligence Committee. Archived (PDF) from the original on January 22, 2021. Retrieved December 12, 2021. WikiLeaks actively sought, and played, a key role in the Russian intelligence campaign and very likely knew it was assisting a Russian intelligence influence effort.
  63. Uchill, Joe (July 18, 2016). "New Guccifer 2.0 dump highlights 'wobbly Dems' on Iran deal". The Hill . Archived from the original on July 29, 2016. Retrieved July 27, 2016.
  64. Goodman, Ryan (September 28, 2017). "How Roger Stone Interacted with Russia's Guccifer and WikiLeaks". Newsweek . Archived from the original on February 16, 2021. Retrieved March 15, 2018.
  65. 1 2 Blake, Andrew (March 10, 2017). "Roger Stone, Trump confidant, acknowledges 'innocuous' Twitter conversation with DNC hackers". The Washington Times . Archived from the original on February 16, 2021. Retrieved March 15, 2018.
  66. 1 2 Loffredo, Nicholas (August 13, 2016). "'Guccifer 2.0' Suspended From Twitter After Latest Hack of Democrats". Newsweek . Archived from the original on February 16, 2021. Retrieved July 15, 2018.
  67. Collier, Kevin (April 5, 2018). "These Messages Show Julian Assange Talked About Seeking Hacked Files From Guccifer 2.0". Buzzfeed News . Archived from the original on April 7, 2018. Retrieved April 6, 2018.
  68. 1 2 3 Bastone, William (March 8, 2017). "Roger Stone's Russian Hacking "Hero"". The Smoking Gun . Archived from the original on July 15, 2018. Retrieved July 14, 2018.
  69. Sweet, Lynn (June 7, 2017). "Illinois' chapter in the Russian hacking saga". Chicago Sun Times . Archived from the original on April 23, 2019. Retrieved April 23, 2019.
  70. Sweet, Lynn (April 18, 2019). "Mueller report confirms Russians 'compromised' Illinois State Board of Elections". Chicago Sun Times . Archived from the original on April 19, 2019. Retrieved April 23, 2019.
  71. Stone, Roger (August 16, 2016). "Can the 2016 election be rigged? You bet". The Hill . Archived from the original on February 16, 2021. Retrieved July 13, 2018.
  72. Helderman, Rosalind S.; Roig-Franzia, Manuel (July 13, 2018). "Charges against Russian intelligence officers intensify spotlight on Trump adviser Roger Stone". The Washington Post . Archived from the original on July 13, 2018. Retrieved July 13, 2018.
  73. Glaser, April (July 13, 2018). "What the Latest Mueller Indictment Reveals About Guccifer 2.0". Slate . Archived from the original on April 23, 2019. Retrieved April 22, 2019.
  74. Gallagher, Sean (May 25, 2017). "Florida GOP consultant admits he worked with "Guccifer 2.0", analyzing hacked data". Ars Technica . Archived from the original on July 13, 2018. Retrieved July 15, 2018.
  75. Uchill, Joe (August 31, 2016). "Guccifer 2.0 leaks docs from 'Pelosi's PC'". The Hill . Archived from the original on March 16, 2018. Retrieved March 15, 2018.
  76. "DCCC Docs from Pelosi's PC". Guccifer 2.0. August 31, 2016. Archived from the original on August 31, 2016. Retrieved March 15, 2018 via Internet Archive.
  77. 1 2 Skiba, Katherine; Heinzmann, David; Lighty, Todd (July 13, 2017). "Peter W. Smith, GOP operative who sought Clinton's emails from Russian hackers, committed suicide, records show". Chicago Tribune . Archived from the original on July 14, 2017. Retrieved March 15, 2018.
  78. Bertrand, Natasha (October 16, 2017). "Mueller has interviewed the cybersecurity expert who said he was 'recruited to collude with the Russians'". Business Insider . Archived from the original on October 18, 2017. Retrieved August 12, 2019.
  79. 1 2 3 Schreckinger, Ben (July 11, 2017). "GOP Researcher Who Sought Clinton Emails Had Alt-Right Help". Politico . Archived from the original on November 20, 2017. Retrieved August 13, 2018.
  80. The Minority Members of the House Permanent Select Committee on Intelligence (March 26, 2018). "Minority Views" (PDF). Archived (PDF) from the original on March 22, 2019. Retrieved April 24, 2019.
  81. Mayer, Jane (October 1, 2018). "How Russia Helped Swing the Election for Trump". NewYorker.com . Archived from the original on July 18, 2019. Retrieved September 24, 2018.
  82. "Joint Statement from the Department Of Homeland Security and Office of the Director of National Intelligence on Election Security". Department of Homeland Security. October 7, 2016. Archived from the original on December 10, 2016. Retrieved April 10, 2017.
  83. Nakashima, Ellen. "U.S. government officially accuses Russia of hacking campaign to interfere with elections". The Washington Post . Archived from the original on January 25, 2017. Retrieved October 7, 2016.
  84. "Here I am Again, My Friends!". Guccifer 2.0. January 12, 2017. Archived from the original on March 12, 2017. Retrieved July 15, 2018.
  85. Raju, Manu; Schleifer, Theodore; Killough, Ashley (March 14, 2017). "Justice department asks for more time to collect evidence on Trump wiretap claims". CNN. Archived from the original on March 20, 2018. Retrieved March 19, 2018.
  86. Poulsen, Kevin; Ackerman, Spencer (March 22, 2018). "EXCLUSIVE: 'Lone DNC Hacker' Guccifer 2.0 Slipped Up and Revealed He Was a Russian Intelligence Officer". The Daily Beast . Archived from the original on March 23, 2018. Retrieved March 23, 2018.
  87. Hsu, Spencer S.; Barrett, Devlin (August 10, 2018). "Judge holds Roger Stone associate in contempt for refusing to testify in Russia investigation". The Washington Post . Archived from the original on August 10, 2018. Retrieved August 10, 2018.