DNC Leak

Claims of Russian hacking

 * Digital Attack on German Parliament: Investigative Report on the Hack of the Left Party Infrastructure in Bundestag - Netzpolitik.org, June 19, 2015

June 2016

 * Bears in the Midst: Intrusion into the Democratic National Committee - Dmitri Alperovitch, CrowdStrike, June 15, 2016
 * Findings from Analysis of DNC Intrusion Malware - Michael Buratowski, Threat Geek, June 20, 2016
 * Here’s What We Know About Russia and the DNC Hack - April Glaser, Wired, July 27, 2016

October 2016

 * Joint Statement from the Department Of Homeland Security and Office of the Director of National Intelligence on Election Security - US-CERT, October 7, 2016
 * The Russian Expat Leading the Fight to Protect America, Vicky Ward, Esquire, October 24, 2016

December 2016

 * Here’s The Evidence Russia Hacked The Democratic National Committee - Massimo Calabresi, TIME, December 13, 2016

Grizzly Steppe

 * GRIZZLY STEPPE – Russian Malicious Cyber Activity - US-CERT, December 29, 2016
 * JAR_16-20296A_GRIZZLY STEPPE-2016-1229.pdf - Report as PDF file

Burlington Electric Department

 * Russian operation hacked a Vermont utility, showing risk to U.S. electrical grid security, officials say - Juliet Eilperin, Washington Post, December 30, 2016
 * ''A code associated with the Russian hacking operation dubbed Grizzly Steppe by the Obama administration has been detected within the system of a Vermont utility, according to U.S. officials.
 * ''While the Russians did not actively use the code to disrupt operations, according to officials who spoke on the condition of anonymity to discuss a security matter, the discovery underscores the vulnerabilities of the nation’s electrical grid. And it raises fears in the U.S. government that Russian government hackers are actively trying to penetrate the grid to carry out potential attacks.
 * Vermont Electricity Department Finds Malware Linked to Russian Hackers - Phil Helsel, NBC News, December 31, 2016
 * ''A Vermont electricity provider said it found malware linked to an alleged Russian campaign to hack political entities in a laptop, after U.S. utilities were warned about the "Grizzly Steppe" affiliated code by the federal government.
 * Russia penetrated Vermont utility company computer - USA Today, December 31, 2016
 * ''BURLINGTON, Vt. — Malicious software believed tied to a Russian hacking group associated with attempts to influence the U.S. presidential election was found Friday within a computer that belongs to Burlington Electric, one of Vermont’s electrical utilities.
 * How The Washington Post's Defense Of Its Russian Hacking Story Unraveled Through Web Archiving - Kalev Leetaru, Forbes, January 2, 2016
 * ''How the Internet Archive’s historical snapshots of the Post’s story undermined the…

January 2017

 * 'Russian meddling doubters should wait to see report, says Brennan' (on video) - PBS, 4 January, 2017
 * (Detailed report to be provided to the US President who is to decide what and how to share...)
 * U.S. obtained evidence after election that Russia leaked emails: officials -Arshad Mohammed and Jonathan Landay, Reuters, January 5, 2017
 * ''U.S. intelligence agencies obtained what they considered to be conclusive evidence after the November election that Russia provided hacked material from the Democratic National Committee to WikiLeaks through a third party, three U.S. officials said on Wednesday.
 * Foreign Cyber Threats to the United States - US Senate Committee hearing, January 5, 2017
 * (In response to Sen. McCain question: 'we stand by our previous assessment' from October)
 * @realDonaldTrump, January 5, 2017
 * ''The Democratic National Committee would not allow the FBI to study or see its computer info after it was supposedly hacked by Russia......So how and why are they so sure about hacking if they never even requested an examination of the computer servers? What is going on?
 * Background to “Assessing Russian Activities and Intentions in Recent US Elections”: The Analytic Process and Cyber Incident Attribution, dni.gov, 6 January 2017

June 2017

 * TOP-SECRET NSA REPORT DETAILS RUSSIAN HACKING EFFORT DAYS BEFORE 2016 ELECTION - The Intercept, June 5 2017

Denials and rebuttals

 * Reality Check: 5 Problems with CIA Claim That Russia Hacked DNC/Podesta emails - Ben Swann, CBS, December 16, 2016 (video)
 * Spy Film Thriller: Obama’s attributions of the Clinton hacks to Russia’s GRU and FSB don’t add up - Alexander Mercouris, The Duran, December 30, 2016
 * Why Crowdstrike’s Russian Hacking Story Fell Apart- Say Hello to Fancy Bear - George Eliason, January 3, 2017
 * Emails were leaked, not hacked - William Binney, Ray McGovern, Baltimore Sun, January 5, 2017
 * New Cracks in Russia-gate ‘Assessment’, Robert Parry, 23 May 2017
 * ''Yet, as any intelligence expert will tell you, if you “hand-pick” the analysts, you are really hand-picking the conclusion.
 * Answer at St. Petersburg forum, June 2017 - long transcript, Eng. video (also: 'horror-fied' translation in a video clip by Wasington Post; 'Putin is ruthlessly trolling the Democrats' - NY Post editorial, etc.).
 * Megyn Kelly: ...''And what they say in response to the question of “Where is the proof?” is that this type of disinformation campaign is intentionally difficult to find hardcore proof of. It is other factors. And what the experts say is that this couldn’t have been faked – that it’s not one factor, it is a hundred factors that point to Russia. They say it is the forensics, it’s the digital fingerprints, it’s the IP addresses, the malware, the encryption keys, the specific pieces of code – that all of them, all of them, point to Russia and none of them points to anyone other than Russia.
 * Vladimir Putin: ''What fingerprints? Hoof prints, horn prints? Whose fingerprints are these?
 * IP addresses can be simply made up. Do you know how many such specialists there are? They will make it look like it was sent from your home address by your children – your three-year old kid, they will organise everything to look like it was your three-year old daughter who carried out the attack. There are such IT specialists in the world today and they can arrange anything and then blame it on whoever ...
 * ''The other team lost. They are reluctant to acknowledge the mistake. They do not want to admit that they did not get it, that they miscalculated. It is easier to say, “We are not to blame, the Russians are to blame, they interfered in our election, but we are good.” It reminds me of anti-Semitism: the Jews are to blame for everything. The halfwit cannot do anything but the Jews are the ones who are to blame.
 * (part of longer answer, and returning to the issue several more times)
 * Vladimir Putin Tells Megyn Kelly: U.S. Hackers Could Have Framed Russia - NBC trailer, June 2, 2017

Wordfence

 * US Govt Data Shows Russia Used Outdated Ukrainian PHP Malware - Mark Maunder, Wordfence, December 30, 2016
 * ''The IP addresses that DHS provided may have been used for an attack by a state actor like Russia. But they don’t appear to provide any association with Russia. They are probably used by a wide range of other malicious actors, especially the 15% of IP addresses that are Tor exit nodes.
 * ''The malware sample is old, widely used and appears to be Ukrainian. It has no apparent relationship with Russian intelligence and it would be an indicator of compromise for any website.
 * Is “Grizzly Steppe” Really a Russian Operation? - Power Line, December 31, 2016
 * Grizzly Misstep: Security Experts Call Russia Hacking Report “Poorly Done,” “Fatally Flawed” - David Z. Morris, Fortune, December 31, 2016
 * New Russian Hacks? No, Old Ukrainian Malware Found. - ''Moon of Alabama, December 31, 2016
 * U.S. Intelligence Got the Wrong Cyber Bear - Leonid Bershidsky, Bloomberg, January 2, 2017
 * Did a Ukrainian University Student Create Grizzly Steppe? - Petri Krohn, SAFKA, January 3, 2017

Guccifer 2.0

 * ‘Guccifer 2.0’ Is Likely a Russian Government Attempt to Cover Up Its Own Hack - Lorenzo Franceschi-Bicchierai, Motherboard, June 16 2016
 * We Spoke to DNC Hacker 'Guccifer 2.0' - Lorenzo Franceschi-Bicchierai, Motherboard, June 21 2016
 * ''Last week, a mysterious hacker using the handle "Guccifer 2.0" emerged to claim responsibility for the data breach at the Democratic National Committee, which democrats and several cybersecurity firms attributed to two groups of Russian hackers, likely working for Vladimir Putin's government.
 * "Did the Russians really hack the DNC or is this another Sony Pictures moment? You decide" - The Register, July 27, 2016 + threatconnect
 * ''We're told Team Guccifer used AOL France's webmail to exchange messages with journalists; these messages, sent from guccifer20@aol.fr, were stamped with a French IP address – 95.130.15.34 – by AOL's infrastructure, meaning the sender was using that network address at the time
 * ''...It is important to note that the IP address seen in the Guccifer 2.0 AOL communications – 95.130.15.34 – is not listed as an option within Elite VPN Service, although it has an identical SSH fingerprint and has the exact same port (1723, PPTP) open as the listed options. This demonstrates the server was cloned from the same server image as all the Elite VPN servers but may be a private or dedicated version of the service." ThreatConnect also notes that the 95.130.15.34 IP address has been used in a few swindles, including a Russian mail-order bride scam in 2014 and attacks against WordPress blogs last year. The IP address also crops up in a Russian-language text message proxy service and a node list for crypto-currency EDR
 * ''Russian foreign minister Sergey Lavrov gave a simple reply when asked about the matter by the press. "I don't want to use four-letter words," he said.

Was Guccifer 2.0 a cover-up?

 * The Seth Rich Case - JimmysLlama, May 19, 2017
 * ''Guccifer2 was created by the DNC to do two things: Make it appear that the Russians hacked their shiz so nobody knew it came from an inside source and use it as cover for the murder of Seth Rich.
 * Guccifer 2.0: Game Over - ADAM CARTER
 * ''Metadata suggests it took only 30 minutes to go from a DNC tech/data strategy consultant creating documents to Guccifer2.0 tainting them - all occurring on a date that Guccifer2.0 claimed to be after he was locked out of the DNC Network - occurring on the same day that Guccifer2.0 emerged.
 * ''Data found deeper in files now also demonstrates there was a misdirection effort, that, in its larger scope - seems to have been intended to discredit leaks by having leaks blamed on Russian hackers
 * Russia and WikiLeaks: The Case of the Gilded Guccifer - /u/tvor_22, February 17, 2017
 * ''d) Guccifer2 was a CIA disinformation campaign to frame the Russians, while thumbing their noses (obvious deception,) before an assumed Hillary Clinton win could provide an appropriate and ‘pragmatic’ response. Had to have assumed a Clinton win, but in the event of a Trump win would be (and is) greatly advantageous. May imply apt28 itself was a false-flag pwn-job.
 * Proof that DNC manufactured the Russian controversy in June 2016 - byecomey on Reddit, May 25, 2017
 * Day 217.17. Hillary's Leakers, Hackers, and Henchmen - George Webb, May 28, 2017

Craig Murray

 * The CIA’s Absence of Conviction 329 - Craig Murray, December 11, 2016
 * Craig Murray Radio Interview, Scott Horton Show, December 13, 2016
 * Craig Murray claims to have 'rather more direct information' on the source, not just what Assange told him, 'which relates to the visit' he (Craig Murray) 'paid to Washington in September of this year' (2016). His claim is not really clarified past that above statement. He also stresses that DNC and Podesta cases are different but characterize both as 'leaks, not hacks'.
 * WikiLeaks operative claims Russia did NOT provide Hillary Clinton emails - Daily Mail. December 14, 2016
 * Exit Obama in a Cloud of Disillusion, Delusion and Deceit - Craig Murray, December 30, 2016

Seth Rich?

 * Come On, We All Know It Was Seth Rich - Caitlin Johnstone, December 18, 2016
 * Family of slain DNC staffer Seth Rich blasts detective over report of WikiLeaks link - Malia Zimmerman, Fox News, May 16, 2017
 * ''The federal investigator, who requested anonymity, said 44,053 emails and 17,761 attachments between Democratic National Committee leaders, spanning from January 2015 through late May 2016, were transferred from Rich to MacFadyen before May 21.
 * Murdered DNC staffer Seth Rich had sent 44,000 internal emails to WikiLeaks: Report - Kyle Feldscher, Washington Examiner, May 16, 2017

Crowdstrike?
A theory (number ****) by conspiracy journalist Georg Webb (starts around 9:30 here). He claims that McAfee/Networks Associates in the early days bought a company of Russian hackers, kept 12 of them to keep writing viruses, while in another office  the anti-viruses were produced (veracity of this is entirely on George Webb). With Alperovich coming from McAffe, he thinks it might go along similar lines with Crowdstrike. (No real evidence for that, of course, but a curious thought).

Now, from John McAfee interview:
 * ''“When the FBI or when any other agency says the Russians did it or the Chinese did something or the Iranians did something – that's a fallacy,”
 * “Any hacker capable of breaking into something is extraordinarily capable of hiding their tracks. If I were the Chinese and I wanted to make it look like the Russians did it I would use Russian language within the code.
 * “This is what the FBI and other agencies want us to believe so that they can manipulate our opinions, but I can promise you – if it looks like the Russians did it, then I can guarantee you it was not the Russians.”

Other sources

 * 2016 Democratic National Committee email leak - Wikipedia
 * Russia-Wiretapping hypotheses only timeline - RulerOfSlides