The controversial January 2017 intelligence community assessment (ICA) on meddling in the 2016 election was supposed to include details on Chinese hacking efforts targeting U.S. presidential campaigns in 2008 and 2012 â but it focused solely on Russia instead, and never mentioned Beijing once.
The omission of any mention of China in the publicly available versions of the January 2017 ICA is notable, given that internal emails indicate President Barack Obama ordered the ICA to include details on Chinaâs 2008 cyber campaign targeting the campaign of Obama and of his opponent, since-deceased and then-Sen. John McCain, R-Ariz.Â
Obamaâs own White House also repeatedly said after the November 2016 election that the ICA would include details on any and all malicious foreign cyber efforts during the 2008 election as well as during the 2012 face-off between Obama and former Gov. and future Sen. Mitt Romney, R-Utah.
Instead, recently-revealed CIA assessments show that the motivation driving then-CIA Director John Brennan’s shaping the 2017 assessment was to inject Hillary Clinton’s “Intelligence Plan” â an unproven smear that Trump and Putin were collaborating against her â into the public consciousness.
CCP hackers targeted Obama, McCain and Romney
Though it is a largely-overlooked saga â lacking any formal ICA detailing it â there is substantial evidence that Chinese hackers targeted Obama and McCain in 2008 and again targeted Obama and Romney in 2012.
Then-Director of National Intelligence, James Clapperâs executive assistant, sent an early December 2016 email about Obamaâs orders related to the Russian meddling assessment, saying it would also include a look at Chinaâs influence operations in the 2008 election.Â
A national intelligence officer working for ODNI then sent an email a few days later also confirming that the ICA would include details on Chinaâs efforts during the 2008 campaign. A principal deputy press secretary for the Obama White House also declared publicly in early December 2016 that the ICA would include details about all foreign malicious cyber activity aimed at U.S. elections since 2008, including the Chinese targeting of the McCain and Obama campaigns in that election cycle. They never did.Â
The publicly-available version of the January 2017 ICA included no mention of Chinese attempts at election influence. A further declassified version of the January 2017 ICA also ignored Chinese cyber efforts targeting campaigns in 2008 and 2012. The recently-declassified bombshell House Intelligence Committee report declassified last month contains no indication that the most highly-classified version of the ICA touched on China either.
Russia, Russia, Russia
Since-fired FBI Director James Comey and disgraced Deputy Director Andrew McCabe pushed in December 2016 to include British ex-spy Christopher Steele’s debunked dossier in the January 2017 ICA. A recent CIA review, referred to as the “lessons learned” memo, sharply criticized then-CIA Director John Brennan for allegedly joining with these anti-Trump forces in the FBI in pushing to include Steeleâs baseless anti-Trump dossier in the assessment.
The CIAâs recent eight-page âlessons learnedâ review â released in July by CIA Director John Ratcliffe â concluded that âthe decision by agency heads to include the Steele Dossier in the ICA ran counter to fundamental tradecraft principles and ultimately undermined the credibility of a key judgment.â In a statement, the CIA said âAgency heads at the time created a politically charged environment that triggered an atypical analytic process around an issue essential to our democracy.â Â
A recently-declassified House analysis provided further details on how Brennan made sure that the Steele Dossier â bought and paid for by the Clinton campaign â would be included in the ICA, despite objections from others in the CIA and elsewhere inside the IC with experience in Russian affairs.
Obamaâs directive and public promises ignored by the IC
The January 2017 ICA was supposed to provide details about previous Chinese election meddling, but the assessment failed to do so.
Clapperâs executive assistant sent a December 9, 2016 email to more than a dozen DNI email accounts and at least one CIA account and provided a âTasker on Russian Interference in U.S. Elections,â indicating Obama wanted the ICA to include âhow Moscowâs approach has changed over time, going back to 2008 and 2012 as reference points.â The ICA did not fully answer those questions. The email also said that the âassessment will include additional elements, such as [âŠ] a box on Chinaâs role in the 2008 election.â This never happened.
Eric Schultz, the White House Principal Deputy Press Secretary under President Obama, talked about the alleged Russian meddling during the 2016 election and said that the ICA âis going to put that activity in a greater context. That’s going to look at the pattern of this happening from foreign actors, dating all the way back to 2008.â
A reporter asked if the ICA would encompass just Russia or if it would also look at other state actors as well as non-state actors.âThe latter. ⊠In other words, the intrusion that I mentioned in 2008 was publicly attributed to the Chinese, not to the Russians. So, yes, we will be looking at all foreign actors and any attempt to interfere with the elections,â Schultz promised.
That promise was not kept. There does not appear to be any mention in the ICA of Chinaâs cyber activities targeting the 2008 and 2012 campaigns of both Republicans and Democrats, despite this promise.
The bipartisan Senate Intelligence Committee report from 2020 said that âthe direction received from the President asked for context for the 2016 election by looking at foreign interference in the 2008 and 2012 elections.â In addition, the Senate report from 2020 also said that âthe tasking [from Obama] included providing the IC’s understanding of the historical context of Russian interference in U.S. political processes, focusing on the 2008 and 2012 elections.â The Senate report also said that âthe ICA and its sources do not provide a substantial representation of Russian interference in the 2008 and 2012 presidential elections, as the Committee understands was part of the President’s [Obamaâs] original tasking.â
2008: Chinese hacking of McCain and Obama campaigns
There have been numerous reports and commentary from former campaign members, ex-intelligence officials, and others describing how Chinese government cyber actors hacked both the McCain and Obama campaigns in 2008.
It was reported by Newsweek late on the evening of November 4, 2008 â Election Day â that âthe computer systems of both the Obama and McCain campaigns were victims of a sophisticated cyberattack by an unknown âforeign entity,â prompting a federal investigation.â
âAt the Obama headquarters in midsummer, technology experts detected what they initially thought was a computer virus â a case of âphishing,â a form of hacking often employed to steal passwords or credit-card numbers,â the outlet said. âBut by the next day, both the FBI and the Secret Service came to the campaign with an ominous warning.â
A federal agent reportedly told Obamaâs team, âYou have a problem way bigger than what you understand. You have been compromised, and a serious amount of files have been loaded off your system.” The next day, Bush White House chief of staff Josh Bolten reportedly told Obama campaign chief David Plouffe that âyou have a real problem […] and you have to deal with it.”
âOfficials at the FBI and the White House told the Obama campaign that they believed a foreign entity or organization sought to gather information on the evolution of both camps’ policy positionsâinformation that might be useful in negotiations with a future administration,â Newsweek said. âThe Feds assured the Obama team that it had not been hacked by its political opponents. (Obama technical experts later speculated that the hackers were Russian or Chinese.)âÂ
Obama’s IC ignored credible reports on China’s cyber activities
It was reported by the Financial Times just a couple of days later in early November 2008 that âU.S. government cyber investigators have determined that an attack this summer on the Obama and McCain campaign computer networks also originated in China. The Secret Service warned the Obama and McCain campaigns that their networks had been [compromised]. The hackers successfully downloaded large quantities of information, which security agencies believed was an attempt to learn more about the contendersâ policy positions.â
It was also reported by the Financial Times in November 2008 that Chinese hackers had penetrated the Bush White Houseâs computer network multiple times. NBC News later reported in 2015 that Chinese hackers had accessed the private emails of many key Obama administration officials and had been doing so since at least April 2010.
As president, Obama referenced the 2008 hacking of his campaign in a 2009Â speech on cyber infrastructure policy, but he did not reveal that China was the foreign actor behind the hack, nor did he include the fact that the Chinese had hacked McCainâs campaign as well.
âBetween August and October, hackers gained access to emails and a range of campaign files, from policy position papers to travel plans,â Obama said in a 2009Â speech. âAnd we worked closely with the CIA â with the FBI and the Secret Service and hired security consultants to restore the security of our systems.â
An article by NBC News in 2013 â half a decade after the hacking of Obama and McCain â appears to be the first to provide more granular detail about the Chinese hacking. The outlet said that âthe intrusions and some details of what was targeted have been previously reported, but not publicly attributed to government-backed Chinese hackersâ and noted that âneither the president [Obama] nor his top aides publicly spoke about the identity of the hackers, or the depth and gravity of the attack.â
NBCÂ cited âU.S. intelligence officialsâ when reporting that âthe U.S. secretly traced a massive cyber espionage operation against the 2008 presidential campaignsâ of Obama and McCain âto hacking units backed by the Peopleâs Republic of China, prompting high-level warnings to Chinese officials to stop such activities.â
Beijing’s cyber-campaign reported by media but ignored by Feds
NBC also said this was part of âBeijingâs aggressive, orchestrated campaign to pierce Americaâs national security armor at any weak point â in this case the computers and laptops of top campaign aides and advisers who received high-level briefingsâ and that âthe goal of the campaign intrusion, according to the officials: to export massive amounts of internal data from both campaignsâincluding internal position papers and private emails of key advisers in both camps.â
The outlet said that U.S. government officials and former campaign officials ânow acknowledge ⊠that the security breach was far more serious than has been publicly known, involving the potential compromise of a large number of internal files.â
The network also said that former FBI official Shawn Henry âheaded up the FBIâs probe of the 2008 attacks as the bureauâs chief of cyber-investigationsâ and that âhe is now president of Crowdstrike.â Henryâs Crowdstrike is the same company which the DNC reached out to in 2016 and which first attributed the hack of the DNC to the Russians.
âThereâs been successful exfiltration of data from government agencies (by the Chinese) up and down Pennsylvania Avenue,â Henry told the outlet in 2013 when speaking about the Chinese hack of Obama’s systems. âItâs stealing of information and there should be outrage.â
Alan Brill, the senior managing director of Kroll Solutions, which investigated the Chinese hack of the Obama campaign in 2008, told the outlet that the malware was âas sophisticated as anything we had seenâ and was part of an âan infection chainâ which replicated itself throughout the Obama campaignâs computer system. Brill said the Chinese hacking efforts continued for months in 2008, saying, âIt was like a firefight. This was starting every day knowing that you didnât know what they were going to throw at you.â
NBC also reported that the Chinese hack âincluded the apparent theft of private correspondence from McCain to the President of Taiwanâ â an âincident that caused concern among U.S. intelligence officials.â The Chinese hackers gained access to private correspondence between McCain and Ma Ying-jeou, who at that time was the newly-elected president of Taiwan, the outlet said.
The outlet said that in late July 2008 âMcCain had signed a personal letter â drafted on campaign computers â pledging his support for the U.S.âTaiwanese relationship and Maâs efforts to modernize the countryâs military.â
It was also reported by Time in 2013 that the Chinese hack was aimed at âtargeting memos on national security and economic policy, apparently with the hope of getting a leg up on the new administrationâs thinking.â The outlet said that âthe revelation in the days following Obamaâs historic victory was largely overlooked, and it was just a taste of what was to follow.â
It was reported by The New York Times in December 2016 â after Trumpâs win â that the Chinese hack of Obama and McCain was believed to have been carried out by âChinese intelligence.â
The Chinese knew that we knew
âBefore the letter had even been delivered, a top McCain foreign policy adviser got a phone call from a senior Chinese diplomat in Washington complaining about the correspondence,â the outlet said. Randall Schriver, a former State Department official who had been a top Asian policy adviser for the McCain campaign, told the outlet that the Chinese official âwas putting me on notice that they knew this was going onâ and that it âcertainly struck me as odd that they would be so well-informed.â
The Clapper-led ODNI in May 2016 released a post-November 2008 election briefing document which the intelligence community had seemingly drafted for incoming Obama administration officials and which seemed to at least in part be about the Chinese hack against the Obama and McCain campaigns. It was first reported on by The Intercept, and the ODNI link no longer fully works.
The ODNI-authored document was titled, âUnlocking the Secrets: How to Use the Intelligence Community.â The document strongly hinted at the Chinese hack, and emphasized that it had been a significant action taken by China (although the country wasnât named).
âForeign intelligence services have been tracking this election cycle like no other. Foreign intelligence services targeted the campaigns,â the ODNI document from just after the 2008 election said. âThey: Met with campaign contacts and staff, Used human source networks for policy insights, Exploited technology to get otherwise sensitive data, [and] Engaged in perception management to influence policy. This exceeded traditional lobbying and public diplomacy.â
Thomas Bossert, who had been Bushâs deputy homeland security adviser and later was Trumpâs homeland security adviser in 2017 and early 2018, spoke with Yahoo News in July 2018, telling the outlet that âhe was the official designated to personally informâ Obamaâs campaign that âChinese hackers had infiltrated its computers during the 2008 election.â The outlet noted that âthe Chinese had penetrated the computersâ of McCainâs campaign too.
Bossert also attended the Aspen Security Forum that month, where he spoke at a panel session on confronting global cyber threats and revealed some more details about the 2008 Chinese hack, which he said had been a serious influence effort.
âWhen I handed the baton from Bush to Obama, I handed it to Lisa [Monaco] ⊠and to John Brennan,â Bossert said. âAnd just a little level setting. At that time, the phone call I got was from then-FBI Director [Robert] Mueller with then chief of staff Lisa Monaco saying the Chinese have hacked⊠the McCain campaign and the Obama campaign. That was a foreign government using cyber tools directly, right? Very similar [to 2016], but this happened then.â
The moderator, David Sanger of The New York Times, interrupted Bossert to say that âthey [the Chinese] didnât make it public â they were doing it as an espionage operation.â Monaco also jumped in to argue that âas I recall, other people made it public.â
âWe did a good job of keeping that quiet, and we did what we needed to do to get the campaign staff to understand the threat,â Bossert continued. âI donât agree with your contention that they kept it quiet. I donât know what they did with it. In fact, I donât know what they mightâve done with it. And in fact, if you or any of you were on the short list to be a senior executive in that administration and that was kept in an electronic fashion in those databases, your house was subject to surveillance, your life was subject to some invasion prior to you even knowing you were being considered.â
Bossert added that âI think there was a significant influence effort going on there. I think there was a significant influence risk there.â
2012: Chinese hacking of Romney and Obama campaigns
There were multiple contemporaneous articles describing how Chinese government cyber actors hacked both the Romney and Obama campaigns in 2012, including commentary from former campaign officials about the cyberattacks.
It was reported by Time in 2013 that âneither campaign official would confirm which nation states were responsible, but one Obama campaign staffer said she was warned about the threat from China in particular.â The Obama staffer reportedly âsaid phishing emails often appeared to be press releases or news reports close to her area of responsibility â and usually related to breaking political newsâ and quoted her as saying that the phishing attempts âlooked a lot like my real email.â
An excerpt from the book “DOUBLE DOWN: Game Change 2012″ published by Time in 2013 provided more details about the Chinese efforts targeting the Romney campaign. The book said that Beth Myers was selected to lead the search for Romneyâs vice presidential pick, and that the campaign had to operate with secrecy and in code, in part to avoid Chinese espionage efforts.
âMyers set up her operation in a third-floor office on Bostonâs Commercial Street that became known as âthe clean room.â Because the Romney campaignâs servers were under continual assault by Chinese hackers, the computers in the clean room were not connected to the Internet,â the book excerpt recounted.Â
Matt Rhoades, Romneyâs 2012 campaign manager, also later spoke about the impact of the Chinese hacking efforts on the Romney campaign. âWhen I was Mittâs campaign manager, we were actually hacked in the fall of 2011, and we were told by the FBI that the Chinese had hacked into our campaign,â Rhoades told CBS in 2017.Â
âWhat the problem was, and we didnât make a big to-do about it, but we had to spend precious campaign dollars to up our cybersecurity network. That was money that when we got to actual campaign elections â the primary with Newt Gingrich and Rick Santorum â those were resources we couldnât use.â
When asked why the campaign hadnât talked about this during the 2012 campaign, Rhoades replied, âIt wasnât going to move the ball down the field in winning the Republican nomination. We talked about it after the election, and so it just didnât get as much coverage.â
Rhoades wrote a piece for Politico in 2018 explaining that, as Romneyâs 2012 campaign manager, âI experienced cyberattacks firsthand when China tried to infiltrate our servers, forcing us to spend precious campaign resources on improved cybersecurity. Every cent we spent on protection could have been used addressing votersâ concerns, and that meant even unsuccessful cyberattacks ultimately weakened our campaign.â
The former Romney campaign manager expounded on this a bit more in a 2020Â interview, where he also pointed out that the post-2016 focus had been exclusively on Russia-related cyber efforts, despite what China and other adversaries had done and likely planned to do.
âIn 2011, when I was managing Mitt Romneyâs presidential campaign. We discovered that our campaign had been hacked by the Chinese government during the primaries, and cybersecurity became a very real issue, very quickly. Unfortunately, this forced us to use precious campaign dollars on higher levels of network security rather than on winning votes,â Rhoades said in 2020.
Rhoades also said, âAfter the 2016 elections, the focus was exclusively on Russia. This attention was warranted, but it left us blind to possibly even more serious threats in China, Iran, North Korea, and even here domestically. Weâve learned that cybersecurity threats can come from anywhere, and anyone can be a target. Nation states and domestic hackers donât care if youâre a liberal or conservative â they care about creating chaos and discord in our country. Thatâs the type of problem Americans can only solve if itâs united.â
“Playing Politics”: Chinese targeting of Trump suppressed in 2020
Just the News published a story earlier this year revealing that a confidential human source told FBI counter-intelligence in the summer of 2020 that Chinaâs communist government was seeking to meddle in the impending election to help then-candidate Joe Biden. That report was confirmed by a review by Just the News of a raw intelligence report distributed to federal agencies.Â
Last month, Senate Judiciary Committee Chairman Chuck Grassley, R-Iowa, released FBI emails appearing to show the bureau did not pursue intelligence indicating Communist China was looking to hijack the 2020 presidential election with a potential mail-in ballot scheme to assist then-Democratic nominee Joe Biden.Â
Grassley said he released the emails ârevealing the FBI suppressed intelligence of alleged Chinese interference in the 2020 electionâ to âinsulateâ then-FBI Director Christopher Wray âfrom criticism, after Wray provided inaccurate and contradictory testimony to Congress.â
FBI Director Kash Patel and Deputy Director Dan Bongino alleged this summer that the bureau’s prior leadership “chose to play politics” and hide evidence from the American people regarding a Chinese plot to hijack the 2020 U.S. election with fake mail-in ballots for Biden.
This was by no means the only example of the U.S. intelligence community potentially burying evidence pointing to China’s malicious foreign influence efforts tied to the 2020 election.
Then-DNI John Ratcliffe, who is now Trumpâs CIA director, revealed in early January 2021 that he had found evidence about the politicization of Chinese election influence analysis inside the IC and of undue pressure being brought to bear against the analysts who had assessed that China had worked to stop Trump from being reelected.
âI am adding my voice in support of the stated minority view â based on all available sources of intelligence, with definitions consistently applied, and reached independent of political considerations or undue pressure â that the Peopleâs Republic of China sought to influence the 2020 U.S. federal elections,â Ratcliffe said in January 2017.
An intelligence community analytic ombudsman found in an early January 2021 report that U.S. intelligence analysts appeared to hold back information on Chinese meddling efforts because those analysts disagreed with the Trump administrationâs policies.
Christopher Porter, the national intelligence officer for cyber during the 2020 election, tweeted on Friday that âfive years ago at this time, a group of senior cyber and counterintelligence analysts joined me in dissenting on the Intelligence Community assessment on Chinaâs interference in the [2020] Presidential election. CIA, NSA, and ODNI management blocked that dissent for political reasons.â
âWeâve been fighting for the truth about what they did to @POTUS [Trump] ever since,â Porter said. âSoon, everyone will get to see what we knew: that China was using its entire state apparatus to block Trumpâs reelection.â
ICA buried election influence threats posed by other countries
The ICA refused to focus on any foreign meddling other than Russiaâs in 2016. A whistleblower who served as the deputy national intelligence officer for cyber issues from 2015 to 2019Â alleged that during the drafting of the January 2017 ICA, âI noted other nations’ efforts to influence the 2016 Presidential election, but this critical context was omitted from the 2017 ICA.â
AÂ recently-declassified September 2016 assessment was titled âCyber Threats to the 2016 U.S. Presidential Electionâ and touched on the potential challenges posed by China, Iran, North Korea, and others, as well. âWe judge that Russia, China, Iran, and North Korea can execute a variety of disruptive cyber attacks, including data corruption, distributed denial of service, and even data modification on some election infrastructure,â the ICA from September 2016 stated.
Mentions of these other countries â including China â were entirely eliminated in the January 2017 assessment, titled âAssessing Russian Activities and Intentions in Recent U.S. Elections.â
