The account for a link shortening service connected to the Obama support organization Organizing for Action (OfA) was reportedly compromised today. Shortened links in President Obama’s Facebook and Twitter postings were in turn briefly redirecting readers to a video with pro-Syrian regime propaganda. The pro-Assad hacking group Syrian Electronic Army claimed credit for the attack.
From AllThingsD:
A handful of sites affiliated with the President’s campaign organization, Organizing for Action, were compromised by a group of hackers on Monday morning, according to a number of Facebook and Twitter posts sent from the President’s accounts.
Multiple tweets sent from the @BarackObama handle linked to YouTube videos hosted by the Syrian Electronic Army, the hacking outfit claiming responsibility, as well as some links sent through the President’s Facebook fan page. The President’s campaign page was also hacked last night for a matter of hours.
In order to send the false links, the SEA targeted some members of OFA, which manages President Obama’s Twitter and Facebook accounts, along with his campaign efforts. From there, the hackers took over the site’s custom URL shortener, redirecting any links sent out from the President’s social channels to the SEA YouTube links.
As AllThingsD and others have pointed out, this seems the most sensible explanation, as the content of Obama’s social media messages doesn’t seem to have strayed from its typical messaging. Only the links seem to have been impacted, not necessarily the social media accounts themselves.
In an exclusive email obtained by Mashable, a representative believed to be with the SEA explains the attack was supposedly achieved by gaining access to OfA staffer(s) email accounts.
“All the the links that Barack Obama account tweeted it and post it on Facebook was redirected to a video showing the truth about Syria,” an SEA spokesperson wrote.
[…]
It took eight hacked email accounts to pull of this attack, according to the person operating the SEA email address. From screenshots sent by the SEA, it appears the group used information from the hacked email accounts to gain access to two digital service provides — Blue State Digital and URL shortener ShortSwitch — which is how the SEA managed to set up the redirect.
The official SEA Twitter account posted screen shots of the allegedly compromised services.
We are watching you, Obama Bin Laden #SEA #SyrianElectronicArmy pic.twitter.com/N0M7cGIOwq
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
Obama spent so much money ravaging #Syria with terror, he can't even pay his bills pic.twitter.com/dMEj8uFGGI
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
SEA also posted a tweet containing a screen shot of what it implied was an OfA staffer’s email account.
We accessed many Obama campaign emails accounts to assess his terrorism capabilities. They are quite high #SEA pic.twitter.com/ARgGLX8IjN
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
An OfA staffer earlier offered a comment to the website Quartz:
“We’ve taken measures to correct it,” says Suzanne Snurpus. “And we’ve all changed our passwords and added an extra layer of login security.” That “extra layer” is Google’s two-step authentication, which helps prevent unauthorized logins by linking an email address to an existing cell phone number.
Snurpus says she isn’t sure what damage the hackers managed to do before they were detected and shut down, but today all the shortened links in Obama’s Twitter account (with 39 million followers) managed by Organizing for Action were for a time redirecting to a video created by the Syrian Electronic Army. It’s not clear what, if any, sensitive information the SEA was able to access by hacking into the email accounts of volunteers for a not-for-profit campaign organization, even if it’s associated with Obama.
In a tweet from Sam Stein of the Huffington Post, an OfA representative commented that “An account with our link shortener was hacked. [But] at no point did they have access to the twitter handle.”
Other SEA tweets about the incident can be seen below. (I would not advise clicking on any links in the tweets).
Thank you Obama for redirecting people to the #SEA website http://t.co/y9o9y6uU5t #SyrianElectronicArmy
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
Obama doesn't have any ethical issues with spying on the world, so we took it upon ourselves to return the favor. #SEA
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
Thanks to our operation, Twitter now blocks Obama's dangerous propaganda links. #SEA pic.twitter.com/6V8g0j5jzL
— SyrianElectronicArmy (@Official_SEA16) October 28, 2013
There still seems to be much confusion in the reporting out there on what exactly occurred, as some are reporting that the social media accounts themselves were taken over. That doesn’t appear to be what I’ve observed thus far, but if anything changes, I will try to update the post with additional information.
Read more about the Syrian Electronic Army here.
DONATE
Donations tax deductible
to the full extent allowed by law.
Comments
Does anyone REALLY believe that their personal information will be safe on Healthcare.gov?
All it would take is some foreign government to hack the site, and then use that information to smear, extort, bribe or cajol any potential political adversary.
The whole Obama electronic frontier is rife with potential pitfalls.
Yet another reason that I will not comply with the PPACA.
Obama ended up being light on them because we the people told him to back off…surprised they would want to provoke Mr. Narcissist into possibly doing something rash.
When I first saw this story a light bulb went off in my head.
The whole idea is to totally destroy healthcare, and from this the general principle:
“What is the difference between a Democrat and a Republican?”[1]
They both want everyone to be equal. The difference that Republicans want people to be equally rich and democrats to be equally poor. Except for themselves of course.
[1] Actually that should be liberal and conservative, but there is no distinction in the eyes of a lot of nonpolitical people.
They tried to crash the ObamaCare website – but it was never up enough for them to tell if they were successful.