Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Bitcoin Crime Government United States

Bitcoin Couldn't Hide Russia's Operatives From Mueller's Investigation (cnn.com) 143

"Russian operatives used cryptocurrency at almost every stage in their online efforts to interfere in the 2016 U.S. presidential election, according to Special Counsel Robert Mueller's final report on his investigation." So says CNN, adding that "Systems used in the hacking of the Democratic Party were paid for using Bitcoin, as were online hosting services that supported websites which published hacked materials and were used in the targeting of disinformation at American voters."

The Russian operatives (a.k.a. the Fancy Bear team) withdrew funds from both the CEX.io and BTC-e.com cryptocurrency exchanges to fund domain purchases, server rentals, and VPN services, reports Draconi, Slashdot reader #38,078. He's correlated the Mueller report with the Bitcoin blockchain addresses referenced (indirectly) in two indictments brought by America's Department of Justice -- one for interference in the 2016 U.S. Presidential Election, and one for the public leak of Olympic drug-testing results -- and shared the results of his investigation with CNN.

CNN reports:

Russian agents, including those from the GRU, Russia's military intelligence agency, had sought to, as the Mueller indictment of GRU agents last July outlined, "capitalize on the perceived anonymity of cryptocurrencies." But while Bitcoin allowed Russians to "avoid direct relationships with traditional financial institutions, allowing them to evade greater scrutiny of their identities and sources of funds," according to the same indictment, it wasn't enough to evade Mueller's investigation.

Tim Cotten, a blockchain developer and security researcher who has done extensive work in tracking Russian Bitcoin accounts unearthed by Mueller's team, noted in an interview with CNN Business that trading Bitcoins on exchanges usually requires users to set up Bitcoin wallets that are tied to an email address. Federal investigators were able to access at least some of the email accounts used in the operation, which, Cotten says, would have made tracing Bitcoin transactions a lot easier. Investigators' access to the "the other side of the blockchain equation," as he described it, was important because, "Rather than having to search the blockchain for clues, they already had all of the receipts demonstrating which accounts were under the GRU's control."

The Russians used stolen and false identities in setting up some of these accounts, according to Mueller's team, but had used some of the same accounts to purchase servers and website domains involved in the hacking of the Democratic Party and the publishing of the hacked materials, Mueller's indictment outlines. That, Cotten said, would have made it easier for investigators to tie the case together.

"The purchase trails are fully exposed in the Bitcoin blockchain as funds are used, consolidated, and deposited into secondary online wallets such as SpectroCoin.com and Xapo.com," Cotten writes on his site. "Anyone can follow along and trace the payment chains to see exactly how the Russians were spending their money, when, and on what."
This discussion has been archived. No new comments can be posted.

Bitcoin Couldn't Hide Russia's Operatives From Mueller's Investigation

Comments Filter:
  • Couldn't hide? (Score:5, Informative)

    by DontBeAMoran ( 4843879 ) on Sunday April 21, 2019 @02:43AM (#58466314)

    The blockchain is public.

    How many fucking times do we need to repeat that? Even the fucking article and summary says that.

    With that in mind, how can any fucker expect to "hide" by using bitcoin?
    The only thing you can do is try and make sure a wallet number cannot be traced back to you.

    • by Anonymous Coward

      It is the same for all types of privacy. You could be using the best tools in the world (let's say if I am hiding behind TOR) but if I say my name is xyz and I live at xyz location then my privacy will still be compromised. It is the same for bitcoin.

      If the Russians wanted to really conceal their actions then they would have needed to probably acquire the bitcoins through mining or buying them with cash.

      If anything it shows that even the best "security professionals" are vulnerable to human weaknesses.

      • Re: Couldn't hide? (Score:5, Interesting)

        by reanjr ( 588767 ) on Sunday April 21, 2019 @08:55AM (#58467014) Homepage

        I wonder if their concern was more about not being able to be cutoff by the international American banking cartel, rather than anonymity.

        It's not too hard for BTC to be effectively private (if you've got spare BTC to burn anonymizing).

        It strains credibility that these are A) professional intelligence operatives and B) they don't know how to cover up small BTC transactions.

        More likely they were not professionals (perhaps being chosen for the English skills or knowledge of American culture) or anonymity wasn't important to the operation, as long as they couldn't be shut down.

        • It strains credibility that these are A) professional intelligence operatives and B) they don't know how to cover up small BTC transactions.

          Not really, in 2017 the FBI had seized the servers of BTC-e, a Russian based BTC exchange. That *greatly* assists the US linking transactions to persons.

          • So, now you know Dmitry Kolonov bought some BTC from BTC-e. Then you also know those bitcoins were send to a remixing service for anonymity. But at that point, you lose track unless the volumes are so great you can track heuristically (on this day, $20k was sent to remix and one wallet gets a $19k payout the following day; that sort of thing). If the transaction volumes are small (like for renting servers) it's effectively impossible to track.

            Again, assuming Russian intelligence professionals are competent

    • Re:Couldn't hide? (Score:5, Insightful)

      by CptJeanLuc ( 1889586 ) on Sunday April 21, 2019 @03:53AM (#58466446)

      The blockchain is public.

      How many fucking times do we need to repeat that?

      You know the blockchain is public. I know the blockchain is public. Lots of people out there do not know, and it will take this type of "major news" to perhaps shake a few of them out of their stupor. Do not underestimate the need for constant enlightenment on obvious topics in The Age of Stupid.

      • Re:Couldn't hide? (Score:5, Insightful)

        by gweihir ( 88907 ) on Sunday April 21, 2019 @05:03AM (#58466568)

        Do not underestimate the need for constant enlightenment on obvious topics in The Age of Stupid.

        An excellent point. But is is not only stupidity, even in professionals it is a lack of experience and that it is really difficult to estimate how much you actually know. For example, one of my students in my infoSec lecture wrote on the evaluation that in his view the main purpose of the lecture was to make it clear how difficult it is actually to get this right and that it warns away people from trying this by themselves. That is extremely insightful. Of course, I do expect a few students to actually become security experts themselves eventually, but for the majority this is just about warning them of pitfalls again and again to allow the to get a realistic self-evaluation of their respective skills.

        The worst failure of the IT and applied CS field is that is has collectively forgotten (or never learned) about KISS. You cannot be a competent engineer that way, you can at best be a gifted amateur and on average you will be a dangerous hack.

      • by zifn4b ( 1040588 ) on Sunday April 21, 2019 @06:52AM (#58466766)

        Do not underestimate the need for constant enlightenment on obvious topics in The Age of Stupid.

        Carl Sagan predicted this in 1995 in his book The Demon-Haunted world:

        The dumbing down of American is most evident in the slow decay of substantive content in the enormously influential media, the 30 second sound bites (now down to 10 seconds or less), lowest common denominator programming, credulous presentations on pseudoscience and superstition, but especially a kind of celebration of ignorance.

        • Who the fuck can focus for a whole 10 seconds to listen to a soundbite?

        • As did Asimov in 1980:

          There is a cult of ignorance in the United States, and there always has been. The strain of anti-intellectualism has been a constant thread winding its way through our political and cultural life, nurtured by the false notion that democracy means that âoemy ignorance is just as good as your knowledge.â

          https://media.aphelis.net/wp-content/uploads/2012/04/ASIMOV_1980_Cult_of_Ignorance.pdf [aphelis.net] (PDF of his article from Newsweek)

        • by rtb61 ( 674572 )

          Why do we continue to have to repeat in this age, Innocent until proven guilty. That idiot Mueller who spent 2 years to find a dozen Russian click baiters, can save what ever the fuck he wants. Nobody did nothing until it is proven in court.

          Hey Mueller you dickhead, want to say something say it to a judge, try them in absentia and prove your case in court, otherwise shut the fuck up with your bullshit claims of GUILTY UNTIL PROVEN INNOCENT, you lying fuck.

    • by gweihir ( 88907 )

      The blockchain is public.

      How many fucking times do we need to repeat that? Even the fucking article and summary says that.

      With that in mind, how can any fucker expect to "hide" by using bitcoin?
      The only thing you can do is try and make sure a wallet number cannot be traced back to you.

      Indeed. The amount of stupidity needed to think Bitcoin is anonymous is staggering.

    • e.g. you buy currencies with dirty money and they come out the other end clean. It's now been shown somewhat definitively that that theory was just plain wrong. But it's still a bit of a surprise. You'd think with anonymous wallets from multiple currencies you could pull it off without a hitch.
    • The blockchain is public.

      How many fucking times do we need to repeat that? Even the fucking article and summary says that. With that in mind, how can any fucker expect to "hide" by using bitcoin? The only thing you can do is try and make sure a wallet number cannot be traced back to you.

      Yes the blockchain is public but identifying an individual is still not a sure thing. In this particular case the FBI seized the servers of the Russian bitcoin exchange BTC-e. That is likely how Russians were identified as being behind the websites and ads.

      In short, to be identified some exchange or some vendor has to identify a person. Assuming they don't have your computer or phone with your wallet.

  • different goal (Score:3, Interesting)

    by ThePangolino ( 1756190 ) on Sunday April 21, 2019 @03:27AM (#58466392)
    The blockchain Bitcoin is based on is by design public. It's not used to hide transactions.In this case it is used to bypass cumbersome banking regulations which would have blocked the payments.
  • by Anonymous Coward

    Sorry, Trump traitors.

  • How about the US company that actually interfered with elections in the United States and not even a slap on the wrist.

    https://www.nytimes.com/2018/1... [nytimes.com]
  • I thought Trump was to be led out in handcuffs. And Her Royal Thighness, "saint" Hillary was to be installed as godqueen?

  • If this was ever a real investigation, the first thing Mueller would have done is subpoena the DNC servers for a proper investigation.

    The Russian operatives (a.k.a. the Fancy Bear team)

    Aka a term and group that Crowdstrike pulled out of their asses. It should bother Russiagaters most of all that Mueller never did a proper examination, given the fact that the FBI is a high level intelligence organization and knows perfectly well that there could be exploits not contained in the storage images taken by Crowd

  • by Plugh ( 27537 )
    Should Have Used Monero [slashdot.org]
  • ... do people start to wise up and realize that weaponizing the FBI against your domestic political opponents is a bad idea?

    Yeah, I know, you hate Trump. Somehow that magically justifies this. But it may be hard to put this genie back in the bottle.

    • oh no those evil Russians posted on facebook and somehow where going to say its a crime. this has litterly been there entire argument.
  • Hospitals, businesses, all kinds of places have been held up for bitcoin. So is anyone tracing these down to get to the criminals?
    In some cases people have been denied life saving help from hospitals for ransom that wasn't met in time.

  • An entire THREAD of posts is gone here, just vanished.... check the posts that are attached to... NOTHING [slashdot.org]. Slashdot just dropping posts when some favored posters get proven to be ignorant?

Genius is ten percent inspiration and fifty percent capital gains.

Working...