Security firm determines Russian hackers breached Podesta's account in phishing scam

Independent cybersecurity firm SecureWorks has confirmed that Russian hackers broke into Hillary Clinton campaign chairman John Podesta's Gmail account after he fell for a phishing scam, a report by Motherboard published Thursday revealed. Politico reported Podesta "unwittingly gave hackers access to his account by clicking a Bitly link that redirected him to a fake Google login page, where he entered his credentials."

SecureWorks determined Podesta was likely hacked by the same group, known as Fancy Bear, that is thought to be behind the recent breaches of the Democratic National Committee and the Democratic Congressional Campaign Committee. Fancy Bear is believed to be connected to Russia's military intelligence agency, and the Bitly account is just the latest piece of evidence linking the hacks to the Kremlin.

The hacks of Podesta's email, former Secretary of State Colin Powell's email, and other groups "were done using the same tool: malicious short URLS hidden in fake Gmail messages. And those URLs ... were created with a Bitly account linked to a domain under the control of Fancy Bear," Motherboard explained. Read their full report here.

Subscribe to The Week

Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

SUBSCRIBE & SAVE

Sign up for The Week's Free Newsletters

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

Sign up