Cybersecurity companies studying the breach of the Democratic National Committee and the Democratic Congressional Campaign Committee have found evidence indicating that the same group of Russian hackers breached both groups’ computer systems. According to ThreatConnect and Fidelis Cybersecurity, two security firms that have been studying the activities of a hacker group dubbed Cozy Bear, hackers from that organization used some of the same internet infrastructure to attack the two Democratic groups. Cozy Bear hackers utilized an email address identified by German intelligence as one used by the group to register an internet domain that was then used in the attack on the DCCC. According to Justin Harvey, the chief security officer at Fidelis, the finding provides 90 percent certainty that hackers working on behalf of Russian intelligence carried out both the DNC and the DCCC attack.
In recent days, the alleged breach of DNC servers by Russian hackers — a charge vehemently denied by Moscow — and the publishing of Democratic Party emails by WikiLeaks has led Hillary Clinton’s lieutenants to accuse the Kremlin of intervening in the presidential election on behalf of her rival, Donald Trump. The real estate mogul has consistently taken a pro-Russia stance during the campaign — a jarring posture for the Republican nominee — most recently on Sunday, when he said Russia would not intervene in Ukraine, where it has had troops since 2014, when Moscow forcibly annexed the Crimean peninsula.
Private sector researchers have said they are confident that hackers working on behalf of Russian intelligence perpetrated the breach of DNC servers. The U.S. intelligence community has reportedly reached the same conclusion, but it remains unclear exactly how DNC emails ended up in the hands of WikiLeaks.