UPDATE October 21, 2015 at 3:15 PM: Wikileaks has released six documents, allegedly from the email of CIA director John Brennan. It doesnt show any actual emails yet,but the blog post that came with it says the documents were obtained from his non-government email. Apparently even spies forward work home. <\/p>\n
Wikileaks says it has the contents of CIA Chief John Brennans email, in a tweet posted today. It doesnt specify whether the emails are from hispersonal or professional email addresses. <\/p>\n
Motherboard covered an alleged hack of the spy chiefs personal, AOL email yesterday. The group claiming credit goes by Crackas With Attitude. The link goes, supposedly, to its Twitter account, though it also appears that Twitter keeps cancelling their accounts (as it did with Vince, the Twitter user who claimed responsibility for the Patreon hack). <\/p>\n
Representatives from Wikileakswere not immediately available for comment about whether or not the data came from the hacking group or not. <\/p>\n
CWA followed the Wikileaks tweet with the following: <\/p>\n
In an interview with a member claiming to be part of the hacking group yesterday, Motherboard reported that the team used social engineering to get access to his email. In this case, the hacker claimed the team called Verizon, posing as Verizon staff, and secured Mr. Brennans social security number. Then, they went to AOL and requested a password reset, using that social security number. <\/p>\n
The team also gave numerous clues to their identity in the interview (such as being a team of very young people, some of whom know each other from school). These clues are very likely to be designed to confuse investigators, however. <\/p>\n
AOL is currently listed as one of the email providers that still does not provide two-factor authentication, on Two Factor Auth. Various news accounts reported that the company was working on it last Fall. <\/p>\n
Two-factor authentication is a way to make an account much more secure by, for example, only permitting access after the correct password has been entered and a one-time use code has been texted (as an example) to the users mobile. <\/p>\n
Its rather surprising that the nations chief intelligence officer isnt serious about security. <\/p>\n
<\/p>\n