As promised (or threatened), the Obama administration has just unveiled – via the US Treasury – new sanctions against Russia over election hacking allegations (that as yet have not been supported by any actual evidence). Despite president-elect Trump’s comments that “we ought to get on with our lives,” the sanctions apply to five entities and six individuals. Amusingly, one of the entities is Russia’s FSB, aka the Federal Security Service, i.e. the Russian spy service, to the list of Specially Designated Nationals and Blocked Persons. Which, perhaps, means that previously the US would look the other way when known spies would enter the US.
In announcing the sanctions, a US official was quoted by Reuters as saying that it “hopes” the Russian government reevaluates its actions which have impeded the avility and safety of US embassy personnel in Russia. It was not clear what actions the US is referring to, or what evidence there is, but as the Iraq invasion proved, one does not need such trivial as supporting evidence when launching a quasi cyberwar.
Additionally, the official said that the action is meant to impose costs on the Russian government, and hold it accountable, and are in response to the “harassment” of US diplomats in Russia, and the activities of Russian diplomats in the US that are “not consistent” with their diplomatic responsibilities.
Reuters also notes that the US will close two Russian compoounds in Maryland and New York used for intelligence-related activities; access to the compounds will be denied to all Russian diplomats as soon as Friday.
Finally, US will expel 35 Russian diplomats in Washington and San Francisco, ficing them 72 hours to leave the country.
As Bloomberg reports, among those targeted were officials of GRU, Russia’s military intelligence agency, which cybersecurity experts in the U.S. have linked to the hacking of the Democratic National Committee and party officials through a group they have nicknamed APT 28 or Fancy Bear. The U.S. also is sanctioning some Russian state institutions and cyber companies associated with them.
Issuance of Amended Executive Order 13694; Cyber-Related Sanctions Designations
Today, the President issued an Executive Order Taking Additional Steps To Address The National Emergency With Respect To Significant Malicious Cyber-Enabled Activities. This amends Executive Order 13694, “Blocking the Property of Certain Persons Engaging in Significant Malicious Cyber-Enabled Activities.” E.O. 13694 authorized the imposition of sanctions on individuals and entities determined to be responsible for or complicit in malicious cyber-enabled activities that result in enumerated harms that are reasonably likely to result in, or have materially contributed to, a significant threat to the national security, foreign policy, or economic health or financial stability of the United States. The authority has been amended to also allow for the imposition of sanctions on individuals and entities determined to be responsible for tampering, altering, or causing the misappropriation of information with the purpose or effect of interfering with or undermining election processes or institutions. Five entities and four individuals are identified in the Annex of the amended Executive Order and will be added to OFAC’s list of Specially Designated Nationals and Blocked Persons (SDN List). OFAC today is designating an additional two individuals who also will be added to the SDN List.
Specially Designated Nationals List Update
The following individual has been added to OFAC’s SDN List:
- ALEXSEYEV, Vladimir Stepanovich; DOB 24 Apr 1961; Passport 100115154 (Russia); First Deputy Chief of GRU (individual) [CYBER2] (Linked To: MAIN INTELLIGENCE DIRECTORATE).
- BELAN, Aleksey Alekseyevich (a.k.a. Abyr Valgov; a.k.a. BELAN, Aleksei; a.k.a. BELAN, Aleksey Alexseyevich; a.k.a. BELAN, Alexsei; a.k.a. BELAN, Alexsey; a.k.a. “Abyrvaig”; a.k.a. “Abyrvalg”; a.k.a. “Anthony Anthony”; a.k.a. “Fedyunya”; a.k.a. “M4G”; a.k.a. “Mag”; a.k.a. “Mage”; a.k.a. “Magg”; a.k.a. “Moy.Yawik”; a.k.a. “Mrmagister”), 21 Karyakina St., Apartment 205, Krasnodar, Russia; DOB 27 Jun 1987; POB Riga, Latvia; nationality Latvia; Passport RU0313455106 (Russia); alt. Passport 0307609477 (Russia) (individual) [CYBER2].
- BOGACHEV, Evgeniy Mikhaylovich (a.k.a. BOGACHEV, Evgeniy Mikhailovich; a.k.a. “Lastik”; a.k.a. “lucky12345”; a.k.a. “Monstr”; a.k.a. “Pollingsoon”; a.k.a. “Slavik”), Lermontova Str., 120-101, Anapa, Russia; DOB 28 Oct 1983 (individual) [CYBER2].
- GIZUNOV, Sergey (a.k.a. GIZUNOV, Sergey Aleksandrovich); DOB 18 Oct 1956; Passport 4501712967 (Russia); Deputy Chief of GRU (individual) [CYBER2] (Linked To: MAIN INTELLIGENCE DIRECTORATE).
- KOROBOV, Igor (a.k.a. KOROBOV, Igor Valentinovich); DOB 03 Aug 1956; nationality Russia; Passport 100119726 (Russia); alt. Passport 100115101 (Russia); Chief of GRU (individual) [CYBER2] (Linked To: MAIN INTELLIGENCE DIRECTORATE).
- KOSTYUKOV, Igor (a.k.a. KOSTYUKOV, Igor Olegovich); DOB 21 Feb 1961; Passport 100130896 (Russia); alt. Passport 100132253 (Russia); First Deputy Chief of GRU (individual) [CYBER2] (Linked To: MAIN INTELLIGENCE DIRECTORATE).
The following entities have been added to OFAC’s SDN List:
- AUTONOMOUS NONCOMMERCIAL ORGANIZATION PROFESSIONAL ASSOCIATION OF DESIGNERS OF DATA PROCESSING SYSTEMS (a.k.a. ANO PO KSI), Prospekt Mira D 68, Str 1A, Moscow 129110, Russia; Dom 3, Lazurnaya Ulitsa, Solnechnogorskiy Raion, Andreyevka, Moscow Region 141551, Russia; Registration ID 1027739734098 (Russia); Tax ID No. 7702285945 (Russia) [CYBER2].
- FEDERAL SECURITY SERVICE (a.k.a. FEDERALNAYA SLUZHBA BEZOPASNOSTI; a.k.a. FSB), Ulitsa Kuznetskiy Most, Dom 22, Moscow 107031, Russia; Lubyanskaya Ploschad, Dom 2, Moscow 107031, Russia [CYBER2].
- MAIN INTELLIGENCE DIRECTORATE (a.k.a. GLAVNOE RAZVEDYVATEL’NOE UPRAVLENIE (Cyrillic: ??????? ???????????????? ??????????); a.k.a. GRU; a.k.a. MAIN INTELLIGENCE DEPARTMENT), Khoroshevskoye Shosse 76, Khodinka, Moscow, Russia; Ministry of Defence of the Russian Federation, Frunzenskaya nab., 22/2, Moscow 119160, Russia [CYBER2].
- SPECIAL TECHNOLOGY CENTER (a.k.a. STC, LTD), Gzhatskaya 21 k2, St. Petersburg, Russia; 21-2 Gzhatskaya Street, St. Petersburg, Russia; Website stc-spb.ru; Email Address firstname.lastname@example.org; Tax ID No. 7802170553 (Russia) [CYBER2].
- ZORSECURITY (f.k.a. ESAGE LAB; a.k.a. TSOR SECURITY), Luzhnetskaya Embankment 2/4, Building 17, Office 444, Moscow 119270, Russia; Registration ID 1127746601817 (Russia); Tax ID No. 7704813260 (Russia); alt. Tax ID No. 7704010041 (Russia) [CYBER2].
* * *
Additionally – potentially unrelated:
- U.S. TO CLOSE TWO RUSSIAN COMPOUNDS IN MARYLAND AND NEW YORK — USED FOR INTELLIGENCE-RELATED ACTIVITIES – U.S. OFFICIAL
- U.S. EXPELS 35 RUSSIAN DIPLOMATS IN WASHINGTON AND SAN FRANCISCO, GIVES THEM 72 HOURS TO LEAVE – U.S. OFFICIAL
Bloomberg reports that The FBI and Homeland Security Department will release a report Thursday with technical evidence intended to prove Russia’s military and civilian intelligence services were behind hacking attacks during this year’s presidential campaign, according to a U.S. official.
The documentation will be offered in tandem with sanctions that the Obama administration announced Thursday in retaliation for the breach of Democratic National Committee e-mails as Democrat Hillary Clinton and Republican Donald Trump were campaigning for the White House. The Russian government, which has denied responsibility for the hacking, has vowed to respond to any new sanctions with unspecified counter-measures.
The joint report will include newly declassified information exposing the internet infrastructure that Russia used in the cyberattacks, including malware and computer addresses, according to the official who asked asked not to be identified before the report is made public.
The release is intended to serve two purposes: to help prove the Russian government carried out the hacking while also frustrating officials in Moscow by exposing some of their most sensitive hacking infrastructure, the official said.
And now we await as Putin retaliates, which he will momentarily, just as promised.
Obama’s executive order is below.