DCLeaks (also known as DC Leaks) is a website that was established in June 2016. Since its creation, it has been responsible for publishing leaks of emails belonging to multiple prominent figures in the United States government and military. Cybersecurity research firms say the site is a front for the Russian cyber-espionage group Fancy Bear. On July 13, 2018, an indictment was made against 12 Russian GRU military officers; it alleges that DC Leaks is part of a Russian military operation.
In the summer of 2016 following the murder of Seth Rich, numerous media sources, which were critical of the Democratic National Committee (DNC) and the Hillary Clinton Campaign, were implicating Rich as a source for the DNC leaks found on DCLeaks, Guccifer 2.0, and Wikileaks. Roger Stone used his Twitter account to spread many statements implicating Rich as the source while Julian Assange and others refused to stop the falsehoods from circulating. Later, WikiLeaks would neither name Rich as a source nor state that Rich was not the source.
Cybersecurity research firm ThreatConnect concluded in their analysis that the DCLeaks project shows the hallmarks of Russian intelligence, matching the attack pattern of the GRU hacker group Fancy Bear. ThreatConnect concluded that the site is likely linked to Russian persona Guccifer 2.0 and the GRU-linked hacker group Fancy Bear.
According to the DCLeaks site's "About" page, their aim is "to find out and tell you the truth about U.S. decision-making process [sic] as well as about the key elements of American political life." Of themselves, they say that they were launched by "the American hacktivists who respect and appreciate freedom of speech, human rights and government of the people."
On July 13, 2018 a federal grand jury for the District of Columbia indicted 12 members of Unit 26165 of the Russian Main Intelligence Directorate (GRU) for creating the false identity DCLeaks website, hacking the Democratic National Committee and releasing stolen data on the website.
The domain name dcleaks.com was registered on April 19, 2016, on the THCservers.com founded by Catalin Florica on a former farm near Craiova, Romania. Shinjiru Technology in Kuala Lumpur hosted the DCLeaks files during the electoral campaign. The dcleaks.com website was launched in June 2016.
On August 12, 2016, the press reported that one DNC computer had been breached for nearly a year, from the summer of 2015 and another in April 2016. The attacker was knocked out of its network during the weekend of June 11 and 12, 2016.
In late June 2016, Guccifer 2.0 informed reporters to visit the DCLeaks website for emails stolen from Democrats. With the WikiLeaks disclosure of additional stolen emails beginning on July 22, 2016, more than 150,000 stolen emails from either personal Gmail addresses or via the DNC that were related to the Hillary Clinton 2016 Presidential campaign were published on the DCLeaks and WikiLeaks websites.
On July 1, 2016, DCLeaks released the emails of four-star General Philip Breedlove, the former NATO supreme commander in Europe. The emails allegedly show that Breedlove sought to overcome President Barack Obama's reluctance to escalate military tensions with Russia over the war in Ukraine in 2014.
On August 12, 2016, DCLeaks released roughly 300 emails from Republican targets, including the 2016 campaign staff of Arizona Senator John McCain, South Carolina Senator Lindsey Graham, and 2012 presidential candidate and former Minnesota Representative Michele Bachmann. The release included 18 emails from the Illinois Republican Party.
On August 12, 2016, DCLeaks released information about more than 200 Democratic lawmakers, including their personal cellphone numbers. The numerous crank calls that Hillary Clinton received from this disclosure along with the loss of her campaign's email security caused a very severe disruption of her campaign which subsequently changed their contact information on October 7, 2016, by calling each of her contacts one at a time.
On August 15, 2016, DCLeaks released 2,576 files predominately related to George Soros' Open Society Foundation. The leak included the Foundation's internal work plans, strategies, priorities and other worldwide activities by Soros.
During November 2017, the Associated Press revealed that the FBI had failed to notify almost all of the persons in the cross hairs of the Kremlin-backed Fancy Bear's attack of 312 prominent government and defense officials who had their emails posted on DCLeaks. The FBI was in violation of its own policy of robustly informing victims of hacking.
On July 13, 2018, Deputy Attorney General Rod Rosenstein announced that twelve Russian hackers,[a] who were operating in multiple units including Units 26165 and 74455 with the Main Intelligence Directorate of the General Staff (GRU), were named on an 11-count indictment for obtaining access and distributing information from data about 500,000 voters from a state election board website as well as the email accounts of John Podesta, Hillary Clinton, and volunteers and employees of the Unites States Presidential Campaign of Hillary Clinton (Clinton Campaign), the Democratic Congressional Campaign Committee (DCCC) and the Democratic National Committee (DNC). Following Donald Trump's request on July 27, 2016, during a rally in Florida that Vladimir Putin should have Russia hack into Trump's opponents networks, servers, and emails to make Hillary Clinton's 30,000 missing emails made public, Russian hackers tried for the first time to hack into Hillary Clinton's personal offices. The GRU mined Bitcoins to later purchase the DCLeaks domain and operate both the DCLeaks server and Guccifer 2.0 server to distribute information obtained from these hackers in order to discredit and disrupt the Clinton Campaign, the DCCC, and the DNC so that the Bernie Sanders Presidential Campaign, Republican candidates and the Donald Trump Presidential Campaign would benefit during the 2016 election cycle. They obtained the data about 500,000 voters by breaking into voter verification software and targeting local and state election officials. Although Roger Stone did not know the names of the Russian's sources, he had publicly stated that these Russians were in contact with the Trump Campaign and that he had communicated with them. Russians had passed embarrassing information from these hacks to Wikileaks, too. This damaging information about Hillary Clinton, John Podesta, the Clinton Campaign, the DCCC, and the DNC led to the resignation of the DNC Chairwoman Debbie Wasserman-Schultz in July, 2016. Using peer-to-peer exchanges and pre-paid cards, the Russians mined and used Bitcoins with public Blockchain recorded transactions using hundreds of emails with fictitious names to prevent monitoring by United States authorities on traditional financial transaction networks. The Internet Research Agency in Saint Petersburg spearheaded the operation.
- 2016 Democratic National Committee email leak
- Guccifer 2.0
- Seth Rich, an individual that was falsely implicated in the email leaks
- These twelve were Viktor Borisovich Netyksho, Boris Alekseyevich Antonov, Dmitriy Sergeyevich Badin, Ivan Sergeyevich Yermakov, Aleksey Viktorovich Lukashev, Sergey Aleksandrovich Morgachev, Nikolay Yuryevich Kozachek, Pavel Vyacheslavovich Yershov, Artem Andreyevich Malyshev, Aleksandr Vladimirovich Osadchuk, Aleksey Aleksandrovich Potemkin, and Anatoliy Sergeyevich Kovalev.
- Weigel, David (May 20, 2017). "The Seth Rich conspiracy shows how fake news still works". The Washington Post. Retrieved May 21, 2017.
- Kiely, Eugene (May 22, 2017). "Gingrich Spreads Conspiracy Theory". FactCheck.org. Annenberg Public Policy Center. Retrieved May 23, 2017.
At this point in the investigation, it is believed that Seth Rich was the victim of an attempted robbery. The assertions put forward by Mr. Wheeler are unfounded.
- Carroll, Lauren (May 23, 2017). Sanders, Katie (ed.). "The baseless claim that slain DNC staffer Seth Rich gave emails to WikiLeaks". PolitiFact.com. Tampa Bay Times.
There is no trustworthy evidence supporting the theory that Rich was WikiLeaks' source for thousands of DNC emails. The police believe his death was the result of a botched robbery, not a political assassination.
- "Cyber-spying: Bear on bear". The Economist. September 22, 2016. Retrieved May 21, 2017.
- Nuzzi, Olivia (May 28, 2017). "'Is This Even About Seth Rich at All?'". New York.
- Collier, Kevin (April 5, 2018). "These Messages Show Julian Assange Talked About Seeking Hacked Files From Guccifer 2.0". BuzzFeed News. Retrieved April 7, 2018.
- Nieuwsuur (August 9, 2016). "Assange belooft nieuwe onthullingen over Clinton" (in Dutch). Nieuwsuur – via YouTube.
- Nieuwsuur (August 9, 2016). "Julian Assange on Seth Rich" – via YouTube.
- Morton, Joseph (August 10, 2016). "WikiLeaks offers $20,000 reward for help finding Omaha native Seth Rich's killer". Omaha World-Herald. Retrieved February 11, 2018.
- "Does a BEAR Leak in the Woods?". Threat Connect. August 12, 2016.
- Riley, Michael (2016-08-11). "Russian Hackers of DNC Said to Nab Secrets From NATO, Soros". Bloomberg.com. Bloomberg News. Retrieved 2016-08-30.
- Meyer, Josh (2016-08-27). "Experts: Same Russians hacked Olympic whistleblower, Democrats". nbcnews.com. NBC News. Retrieved 2016-08-30.
- Paletta, Damian (2016-08-15). "Democrats Brace for More Leaks From Hackers". Wall Street Journal. ISSN 0099-9660. Retrieved 2016-08-30.
- DuVall, Eric (2016-08-13). "Suspected Russian hackers release lawmakers' personal information". upi.com. United Press International. Retrieved 2016-08-30.
- "Joint Statement from the Department Of Homeland Security and Office of the Director of National Intelligence on Election Security". Department of Homeland Security. October 7, 2016. Retrieved January 19, 2017.
- "About". dcleaks.com. DCLeaks. 2016-08-29. Retrieved 2016-08-30.
- "Russians indicted over US election hack". BBC. July 13, 2018. Retrieved July 13, 2018.
- Polantz, Katelyn; Collinson, Stephen (July 13, 2018). "12 Russians indicted in Mueller investigation". CNN. Retrieved July 13, 2018.
- "Indictment image" (PDF). CNN. July 13, 2018. Retrieved July 13, 2018.
- "DcLeaks.com WHOIS, DNS, & Domain Info - DomainTools". whois.domaintools.com. DomainTools. 2016-04-19. Retrieved 2016-08-30.
- Satter, Raphael; Donn, Jeff; Butler, Desmond (2017-11-28). "FBI gave heads-up to fraction of Russian hackers' U.S. targets". Associated Press. Retrieved 2018-07-13.
- Bennett, Cory (2016-08-13). "Suspected Russian DNC hackers also hit GOP, researchers say". politico.com. Politico. Retrieved 2016-08-30.
- Uchill, Joe (2016-08-12). "Report: Russia tried to start own WikiLeaks". thehill.com. The Hill. Retrieved 2016-08-30.
- Satter, Raphael; Donn, Jeff; Day, Chad (2017-11-04). "Inside Story: How Russians Hacked the Democrats' Emails: How did Russian hackers pry into Clinton campaign emails? Huge effort made quick work". US News. Associated Press. Retrieved 2017-11-28.
- Fang, Lee; Jilani, Zaid (2016-07-01). "Hacked Emails Reveal NATO General Plotting Against Obama on Russia Policy". theintercept.com. The Intercept. Retrieved 2016-08-30.
- Hannon, Elliot (2016-08-11). "Russian Hackers Reportedly Tried "DCLeaks" Site to Leak Emails Before Moving on to WikiLeaks". Slate. ISSN 1091-2339. Retrieved 2016-08-30.
- "Official: FBI told Illinois GOP of possible email hacking". McClatchy DC. December 11, 2016.
- Hattem, Julian (2016-08-15). "Thousands of Soros docs released by alleged Russian-backed hackers". thehill.com. The Hill. Retrieved 2016-08-30.
- Kaplan, Rachel (2016-08-16). "George Soros hacked, documents posted online". israelnationalnews.com. Arutz Sheva. Retrieved 2016-08-30.
- "FBI gave heads-up to fraction of Russian hackers' U.S. targets". Star-Advertiser. Honolulu. 2017-11-26. Retrieved 2018-07-13.
- "FBI deviated from its policy on alerting hacking victims". VOA. Associated Press. 2017-11-28. Retrieved 2018-07-13.
- Satter, Raphael; Donn, Jeff; Butler, Desmond (2017-11-29). "FBI deviated from its policy on alerting hacking victims". Associated Press. Retrieved 2018-07-13.
- Sullivan, Eileen; Benner, Katie (July 13, 2018). "12 Russian Agents Indicted in Mueller Investigation". New York Times. Retrieved July 13, 2018.
- "United States of America vs. Viktor Borisovich Netyksho, Boris Alekseyevich Antonov, Dmitriy Sergeyevich Badin, Ivan Sergeyevich Yermakov, Aleksey Viktorovich Lukashev, Sergey Aleksandrovich Morgachev, Nikolay Yuryevich Kozachek, Pavel Vyacheslavovich Yershov, Artem Andreyevich Malyshev, Aleksandr Vladimirovich Osadchuk, Aleksey Aleksandrovich Potemkin, and Anatoliy Sergeyevich Kovalev" (PDF). New York Times. United States District Court for the District of Columbia. July 13, 2018. Retrieved July 13, 2018.
- Schoenberg, Tom; Farrell, Greg (July 13, 2018). "Mueller Indicts 12 Russian Officials for 2016 Election Hacking". Bloomberg. Retrieved July 13, 2018.
- Swaine, Jon; Roth, Andrew (July 13, 2018). "US indicts 12 Russians for hacking DNC emails during the 2016 election: Deputy attorney general Rod Rosenstein announces that 12 individuals have been charged as part of the investigation into Russian interference". The Guardian. Retrieved July 13, 2018.
- Ewing, Philip; Johnson, Carrie (July 13, 2018). "Justice Department Charges Russian Cyberspies With Attack On 2016 Election". NPR. Retrieved July 13, 2018.
- Crowley, Michael; Nelson, Louis (July 13, 2018). "Mueller: Russians entered U.S. to plot election meddling. Democrats say the indictment proves Russian meddling is no 'hoax,' while Trump allies say charges of Trump campaign collusion with the Kremlin remain baseless". Politico. Retrieved July 13, 2018.