Zuckerberg: Facebook Identified and Notified Presidential Campaigns of Russian Hacking Attempts in 2016
Facebook detected Russian government hackers targeting the Facebook accounts of campaign officials before the 2016 presidential election, Mark Zuckerberg revealed during a congressional hearing on Tuesday.
The company founder said that the company spotted the hackers’ attempts and then alerted the campaigns that the hackers were going after them. In response to a question by Sen. Dianne Feinstein about Russian interference in the US elections, Zuckerberg said Facebook thought people with political connections might get hacked, but didn’t expect a disinformation campaign.
"We expected them to do a number of more traditional cyberattacks, which we did identify and notify the campaigns that they were trying to hack into them,” Zuckerberg said.
Zuckerberg appeared Tuesday in front of the Senate Judiciary and Commerce committees for the first of two congressional hearings he’s scheduled to be at this week. The Facebook founder agreed to appear on Capitol Hill for the first time ever after the recent series of scandals involving the internet giant. Last month, news reports revealed that data mining company Cambridge Analytica had obtained the personal data of more than 50 million American Facebook users, which was originally collected with a seemingly innocuous quiz app.
In 2016, Russian hackers working for the country’s intelligence agencies broke into the email accounts of several campaign and party officials, and American politicians, including Hillary Clinton’s campaign chairman John Podesta, former George W. Bush administration official Colin Powell, and many others. The hackers targeted hundreds of email addresses with phishing links designed to trick them into stealing their passwords, and were able to break into some of them.
It’s unclear if the hackers were successful in their attempts to gain access to Facebook accounts connected with the presidential campaigns. But until today, Facebook hadn’t revealed that it detected the intrusion attempts and alerted the campaigns. Feinstein’s question was about the Russian attempts to influence elections, not Russian attempts to break into accounts. The senator did not follow-up and Zuckerberg didn’t say anything else on these hacking attempts.
A former member of the Hillary Clinton presidential campaign said they were not aware of Facebook notifying the campaign of hacking attempts.
After this story was published, Robby Mook, the former campaign manager for Clinton, confirmed that Facebook didn't alert their campaign.
"This is not true. We were never notified," Mook tweeted. "I hope Zuckerberg and Facebook correct the record."
Facebook's chief security officer replied to Mook saying that the company did contact the DNC and RNC "during this time to protect the accounts of key employees and to work together to spot potential additional malicious activity."
Facebook did not respond to multiple requests for comment.
Got a tip? You can contact this reporter securely on Signal at +1 917 257 1382, OTR chat at firstname.lastname@example.org, or email email@example.com
In September 2017, the Washington Post reported that Facebook was tracking one of the Russian government hacking groups, known as APT28 or Fancy Bear. The company alerted the FBI that the hackers were setting up fake accounts to spread disinformation and that they were working on an espionage operation.
Of course, as Johns Hopkins professor Thomas Rid pointed out on Twitter, Facebook “likely has *extraordinary* telemetry,” referring to an industry term for data about cyberattacks. Companies with large security teams and users that can be targeted by nation-state hackers have incredible amounts of information about those hackers. Google, for example, has been tracking Russian government hackers for years.