Money Flow Trading Method along with Risk Management

Hello Forex Traders

I have a new student and is first name is Oliver. I opened this $50,000 FXCM UK Demo account in Turks & Caicos to get maximum leverage.

I am waiting for my associate to post here.

My goal is to double this account to $100,000 US Dollars in 28 days. I enjoy challenges.

For my students, all that they need to do is a 5% increase over 30 days for three months in a row !!! In other words bring the account to $57,5000 US Dollars


BWM - Forex Trader & Teacher

World News

https://finviz.com/news.ashx?v=2

World Futures

https://finviz.com/futures.ashx

Forex Prices

https://finviz.com/forex.ashx

Cryptocurrency Prices

https://finviz.com/crypto.ashx

Bond & Notes Charts

https://finviz.com/futures_charts.ashx?t=BONDS&p=d1

Charts 10 Year Notes

https://finviz.com/futures_charts.ashx?t=ZN&p=d1

Charts 5 Year Notes

https://finviz.com/futures_charts.ashx?t=ZF&p=d1

Charts GOLD

https://finviz.com/futures_charts.ashx?t=GC&p=m5

Charts DJIA DOW 30

https://finviz.com/futures_charts.ashx?t=YM&p=m5

Charts 2 Year Notes

https://finviz.com/futures_charts.ashx?t=ZT&p=d1

Charts USD

https://finviz.com/futures_charts.ashx?t=DX&p=m5

Charts Euro EUR/USD

https://finviz.com/forex_charts.ashx?t=EURUSD&tf=m5

Charts British Pound GBP/USD

https://finviz.com/forex_charts.ashx?t=GBPUSD&tf=m5

Charts YEN USD/JPY

https://finviz.com/forex_charts.ashx?t=USDJPY&tf=m5

Good Evening Forex Traders

I have decided because of the start of the FINANCIAL MELTDOWN during February 2020.

That I will give six Forex Traders that signs up and posts here daily and is really serious about trying to become a winning Forex trader that I am willing to consider to supply $25,000 REAL FUNDS US Dollars to be managed at FXCM UK under Limited Power of Trading Authority.

There of course are conditions. They are as follows:

(1) You must post here everyday and SEND me via email to [email protected] your personal information so that I know who you are. I need to know your name and Country and your email address and telephone number and your date of birth. We would need to talk on the telephone so that I can know my client and qualify you for this rare UNIQUE ONCE IN A LIFETIME OPPORTUNITY.

(2) YOU NEED TO TAKE MY COURSE FOR A PERIOD OF 90 DAYS AND FOLLOW ALL MY INSTRUCTIONS AS YOU DEMO TRADE. There will be a small fee for the 90 day course.

(3) If you are able to generate a profit of 15% on your demo FXCM UK TRADING ACCOUNT THEN YOU WILL QUALIFY TO GO TO THE NEXT STAGE OF MY OFFER TO YOU TODAY. That means a Net Profit of $2500 US Dollars on the $50,000 US Dollars of trading capital. That is $2500 US Dollars profit each month. Your balance needs to reach $57,500 US Dollars to qualify for the next stage of my offer.

(4) You need to open an FXCM UK trading account and register it from Turks & Caicos. That gives you 100% leverage on your FXCM UK demo Forex trading funds. You need to email me your user number and user password that is generated by FXCM UK.

To ensure delivery to your inbox, please add [email protected] to your address book & safe senders list.
https://ecp.yusercontent.com/mail?ur...uhfsG6vCgg--~C https://ecp.yusercontent.com/mail?ur...Lk_LZrTrDA--~CCan't see this email? View it in a browser

CFDs are complex instruments and come with a high risk of losing money rapidly due to leverage.
69.66% of retail investor accounts lose money when trading CFDs with this provider.
You should consider whether you understand how CFDs work and whether you can afford to take the high risk of losing your money.

(5) You need to register to post on Forex Factory in order that we can communicate daily here on this website.

Please post any questions that you may have here on my thread. Thank You.

Aviel Forex Learning Edge Corporation

Good morning

For the moment we have RISK ON as the Dow Futures are now up 667.81. I am watching CNBC.

My core positions and my 90 day Forex trading plan is go short US30 and go short SP500.

Go long Gold & go long Silver.

For US30, I short 100 units and for SP500, I short 50 units. For Gold, I go long 100 ounces of Gold and for Silver, I go long 2500 ounces of Silver.

You can see the margin requirements on the SCREENSHOT.

If you have any questions please post them here. Thank You.


Bruce

I have closed my two shorts of US30 and SP500 so I just put on two new positions as you can see from this SCREENSHOT.

Good Forex trading.


BWM

So now I have made four Forex trades this morning before the North American stock markets are opened at 9:30 AM.

The profit is $5010.50 US Dollars.

I have two open positions of long Gold and long Silver. From my first trades at 6:28 AM this morning, as you can see on this SCREENSHOT until I closed my four positions it took just over two hours to accomplish these results.

I will leave the Gold & Silver positions open until my limit out closes them in the near future.

Have a nice weekend. I am finished my Forex trading for today.


Bruce

https://www.oftwominds.com/blog.html

https://www.oftwominds.com/25-25.gifhttps://www.oftwominds.com/CHSbanner2d.png




The Global Repricing of Assets Can't Be Stopped

March 18, 2020


The financial elites are pushing a narrative that asset prices, sales and profits will all return to January 2020 levels as soon as the Covid-19 pandemic fades. Get real, baby. Nothing is going back to January 2020 levels. Rather than the "V-shaped recovery" expected by Goldman Sachs et al., the crash in asset prices will eventually gather momentum.


Why? It's simple: for 20 years we've over-invested in speculative bubbles and squandered borrowed money on consumption and under-invested in productivity-increasing assets. To understand why the market value of assets will relentlessly reprice lower--a process sure to be interrupted with manic rallies and false dawns of hope that a return to speculative good times is just around the corner--let's start with the basics: the only sustainable way to increase broad-based wealth is to boost productivity across the entire economy.


That means producing more goods and services with less capital, less labor and fewer inputs such as energy.

Rather than boost productivity, we've lowered productivity via mal-investment and by propping up unproductive sectors with immense sums of borrowed money--money that accrues interest.


The poster child for this dynamic is higher education: rather than being pushed to innovate as costs skyrocketed, the higher education cartel passed its inefficiencies and bloated cost structure onto students, who have paid for the bloat with $1. 6 trillion in student loans few can afford. (See chart below.)

As for Corporate America squandering $4.5 trillion on stock buybacks (Wolf Richter)-- the effective gains on productivity from this stupendous sum is not just zero--it's negative, as the resulting speculative bubble suckered in institutions and individuals who'd been stripped of safe returns by the Federal Reserve's low-interest-rates-forever policy.


What could that $4.5 trillion have purchased in terms of increasing the productivity of the entire economy? Considerably more than the zero productivity generated by stock buybacks.


The net result of uneven gains in productivity and the asymmetric distribution of whatever gains have been made is stagnant wages for the bottom 90% and rising costs for everyone. Those of us who are self-employed or owners of small businesses know that healthcare insurance costs have been ratcheting higher by 10% or more annually for years.


Whatever gains in health that have been purchased with the additional trillions of dollars poured into the healthcare cartels have been offset with declining life spans, soaring addictions to opioids and numerous broad-based declines in overall health.


The widespread addiction to smartphones and social media have deranged and distracted millions, crushing productivity while greatly increasing loneliness, insecurity and a host of social ills.


Two dynamics define the economy in the 21st century:
1. We have substituted debt-driven speculation for productive investment
2. We have substituted debt for earnings


This is why the repricing of speculative-bubble assets can't be stopped: debt-driven speculation is not a sustainable substitute for investing in increasing productivity, and debt-fueled consumption masquerading as "investment" is not a sustainable substitute for limiting consumption to what we earn and save.


All bubbles pop, period. Once Corporate America's credit lines are pulled and its revenues and profits plummet, the financial manipulation of stock buybacks will end. That spells the end of the 12-year bull market in stocks.


As the tide of speculative mania ebbs and confidence wanes, the world's housing bubbles will all pop, and the $1.4 million bungalows will drift back down to their Bubble #1 highs around $400,000, and perhaps even drop from there.


As for collectibles and other play-things of the super-wealthy: the bids will soon vanish and yachts will be set adrift to avoid paying the dock fees.

https://www.oftwominds.com/photos202...-loans1-20.png

My COVID-19 Pandemic Posts




If you found value in this content, please join me in seeking solutions by becoming a $1/month patron of my work via patreon.com.






Recent entries:
The Global Repricing of Assets Can't Be Stopped March 18, 2020
Covid-19 Helicopter Money: Go Big Now or Go Home March 17, 2020
The Covid-19 Dominoes Fall: The World Is Insolvent March 16, 2020
I'm Looking for Ten Readers Willing to Pony Up $1 for the Crazy-Valuable Content Here March 14, 2020
Goodbye to All That: The Demise of Globalization and Imperial Pretensions March 12, 2020
And Then Came the Lawsuits: Pandemic in a Litigious Society March 10, 2020
What the Fed Can Do: Print and Buy, Buy, Buy March 8, 2020
The Gathering Storm: Could Covid-19 Overwhelm Us in the Months Ahead? March 5, 2020
Could China's Overlapping Crises Spiral Out of Control? March 4, 2020
Did Covid-19 Just Pop All the Global Financial Bubbles? March 3, 2020
The Limits of Force: A Bayonet in the Back Will Not Restore China's Economy March 2, 2020
Could the Covid-19 Pandemic Collapse the U.S. Healthcare System? February 27, 2020


January 2020 entries February 2020 entries
Archives 2005-2019

http://www.whatdoesitmean.com/index3163.htm

March 21, 2020

Doomsday Planes Race Into American Skies As Historic Military Orders And Atmospheric Explosion Warnings Issued

By: Sorcha Faal, and as reported to her Western Subscribers

Yet another gravely concerning new Ministry of Defense (MoD) report circulating in the Kremlin today discussing issues involving the global coronavirus pandemic, states that Aerospace Forces have successfully delivered over 100,000 coronavirus COVID-19 test kits to 13 nations, including Iran and North Korea—test kits not needed in the Russian Federation at this time as only 253 people are confirmed infected with the coronavirus, of whom only 11 patients contracted the coronavirus inside Russia, while some 90% of cases were brought from abroad—thus holding this crisis from a military perspective well within the bounds of acceptable norms—the same of which, however, cannot be said about what is currently evolving in the United States with their military forces—who just hours ago officially cancelled their massive military exercise Defender Europe 2020 that would have seen tens-of-thousands of combat ready US Army troops flooding into the European Union—an official cancellation following what occurred 48-hours prior, on 19 March, when the United States Strategic Command suddenly ordered all of its “Doomsday Planes” to immediately evacuate from their Offutt Air Force Base location in Nebraska and deploy into the skies over America—strategic war time aircraft of various types designed to ensure the communication integrity of the entire US government and its leaders in a time of a declared national emergency—and when taking to the air, then saw US Air Force General Joseph Lengyel abruptly announcing that tens-of-thousands of his nation’s frontline National Guard troops were standing by ready to be deployed to fight the coronavirus pandemic—and then for the first time in the modern history of the United States, saw the Department of Defense being given standby orders to ensure the “continuity of government” in response to the coronavirus pandemic—all of which culminated with a shock global alert being issued by the National Aeronautics and Space Administration (NASA) warning that two incoming asteroids could cause atmospheric explosions over the next few days—atmospheric explosions that, without any doubt, would put an already strained-to-the-limit world in the crossfire of a nuclear retaliation strike if they’re perceived even in the slightest to have a manmade cause. [Note: Some words and/or phrases appearing in quotes in this report are English language approximations of Russian words/phrases having no exact counterpart.]

http://www.whatdoesitmean.com/off21.jpg

http://www.whatdoesitmean.com/off23.jpg

http://www.whatdoesitmean.com/off22.jpg

Radar systems from around the world capture US military “Doomsday Planes” fleeing from their Offutt Air Force Base location on 19 March 2020 (top photo) while NASA issues shock alert warning of possible atmospheric explosions (middle photo) and US Department of Defense enacts for the first in history its “continuity of government” war time plan (bottom photo).

According to this report, as the world continues reeling out of control because of the coronavirus pandemic, questions remaining unanswered as to what is really now occurring include why just three days after taking power on 20 January 2017, President Donald Trump ordered a raid on CDC headquarters in Atlanta-Georgia—and what exactly occurred 12-months later, in December-2017, when a large convoy of heavily guarded vehicles left the CDC to travel to a closed down Atlanta airport where they were placed on the only aircraft authorized to leave.


What is known, though, this report continues, is that in the days just prior to President Trump being sworn into office, he was directly threatened by top socialist Democrat Party US Senate Minority Leader Chuck Schumer who warned him: “Let me tell you, you take on the intelligence community, they have six ways from Sunday at getting back at you”—a grave warning immediately followed by the US intelligence community dragging Trump and his top aides into what they called a table-top-exercise to show him how the United States could be destroyed by a pandemic “worse than the Spanish Flu pandemic of 1918”—after which then saw an enraged Trump directly confronting President Barack Obama—a confrontation resulting in “some sort of agreement” being made between Trump and Obama—the most visible result of which saw Obama signing an order to protect Trump against the US intelligence community—an order signed by Obama on 17 January 2017, just three-days before Trump was sworn into office, to deal with all events occurring “before, during, and in the aftermath of a catastrophic emergency”—and titled U.S. Department of Homeland Security Federal Emergency Management Agency Federal Continuity Directive 1.

http://www.whatdoesitmean.com/off24.png

Mystery surrounds why President Barack Obama protected President Donald Trump with Federal Continuity Directive 1—though many believe Trump agreed not to prosecute Obama in exchange for it.

Being protected from his own US intelligence community by Federal Continuity Directive 1 the very second he was sworn into office, this report notes, President Trump was able to swiftly use its provisions to build a wartime government—a Trump-led wartime government that has now unleashed CONPLAN 3600 to implement “military operations in the National Capital Region and continuation of government, under which the most-secret plans to support continuity are nested”—CONPLAN 3500 for “the defense support of civil authorities," where the military assists in an emergency short of armed attack on the nation”—and CONPLAN 3400 that is “the military's plan for ‘homeland defense,’ if America itself is a battlefield”—along with other more top-secret CONPLAN actions that remain highly-classified.


In a further move using his Federal Continuity Directive 1 powers, this report details, President Trump, on 1 February, had US Defense Secretary Mark T. Esper sign orders directing NORTHCOM to execute nationwide pandemic plans—while at the same time, Esper secretly signed Warning Orders (the WARNORD as it's called) alerting NORTHCOM and a host of East Coast US military units to “prepare to deploy” in support of potential extraordinary missions—thus throwing into immediate action previously prepared US military operations going under such names as Granite Shadow, The Atlas Plan, RESEM (Rescue & Evacuation of the Occupants of the Executive Mansion), the Joint Emergency Evacuation Plan—as well as the most secret of them codenamed Octagon, Freejack and Zodiac—which MoD analysts believe are US military operations to round up and imprison subversive political leaders and journalists.

http://www.whatdoesitmean.com/off25.jpg

While the fake news outlet CNN is now blasting President Trump for “daring to offer unsubstantiated hope” to the American people, while their leftist mainstream propaganda cable new comrades are calling for them all to cut off access to Trump so he can’t talk directly to his nation’s citizens in this time of crisis, this report concludes, being apparently left unnoticed by all of these deranged leftists is that now wartime leader President Trump is using his war powers to fully enact his America First agenda to “achieve peace through strength”—best exampled this week when Trump used his war powers to suspend visa services across the world while closing his nation’s southern border with Mexico—and his ordering a vital natural gas pipeline to be built over the objections of leftist government leaders in the State of Oregon—all occurring at the same time the coronavirus pandemic has ground the US court system to a halt preventing leftist judges from interfering with what Trump is doing—and in a week that saw Trump becoming his Republican Party’s nominee for president due to the historic and crushing amount of votes he received in his nation’s primary voting process—which makes it no surprise why all of the polls today are showing that the majority of the American people approve of Trump’s handling of this coronavirus pandemic—as all normal and sane peoples always support those calling for hope and calm—and detest insane leftist cries that everyone is going to die and the chaos they’ve caused.

http://www.whatdoesitmean.com/off26.jpg

March 21, 2020 EU and US all rights reserved. Permission to use this report in its entirety is granted under the condition it is linked to its original source at WhatDoesItMean.Com. Freebase content licensed under CC-BY and GFDL.

[Note: Many governments and their intelligence services actively campaign against the information in these reports so as not to alarm their citizens about the many catastrophic Earth changes and events to come, a stance that the Sisters of Sorcha Faal strongly disagree with in believing that it is every human being’s right to know the truth. Due to our mission’s conflicts with that of those governments, the responses of their ‘agents’ has been a longstanding misinformation/misdirection campaign designed to discredit us, and others like us, that is exampled in numerous places, including HERE.]

[Note: The WhatDoesItMean.com website was created for and donated to the Sisters of Sorcha Faal in 2003 by a small group of American computer experts led by the late global technology guru Wayne Green(1922-2013) to counter the propaganda being used by the West to promote their illegal 2003 invasion of Iraq.]
[Note: The word Kremlin (fortress inside a city) as used in this report refers to Russian citadels, including in Moscow, having cathedrals wherein female Schema monks (Orthodox nuns) reside, many of whom are devoted to the mission of the Sisters of Sorcha Faal.]

You WERE Warned About The Coronavirus “Telephone Disease”—But Lies Won Out Over Truth

They Died For The Crime Of What They Knew—Where Is Your Name On The Death List?

“KatyDid” Ends Democrat Reign Of Terror As Impeachment Enters “Game Over” Phase

Return To Main Page

https://www.zerohedge.com/economics/...ops+to+zero%29


Authored by William Anderson via The Mises Institute,
In slashing its key interest rate to zero in response to the economic calamities imposed by all levels of government ostensibly to fight the coronavirus, the Federal Reserve System is trying to regenerate the crashing stock market.


At opening bell right afterward, however, the market continued to crash, and those results perhaps should be telling us that the Fed’s one-trick solution to economic crises is just that: a trick.


https://zh-prod-1cc738ca-7d3b-4a72-b...es/bfmDFA3.jpg




Please understand that the central bank is doing what it always does when it seems there is an emergency: print money. Now, this is not like what we see in Venezuela, with wads of printed money lying in gutters or even what was seen in Weimar Germany in the fall of 1923. In contrast, the Fed wants us to see Very Serious Central Bankers ensuring that an imploding economy has plenty of “liquidity.”

When a proposed congressional bill caused the October 1987 stock market crash, newly appointed Fed chairman Alan Greenspan immediately promised to provide “liquidity” to Wall Street banks. When the Y2K scare loomed, the Fed was there to “provide liquidity.”

When the Housing Bubble burst in 2008, something Austrians had predicted more than a year before, Greenspan’s successor, Ben “Helicopter” Bernanke, made good on his promise to backstop the entire financial system with “liquidity” as the Fed went on an unprecedented spree of buying near-worthless securities in order to try to prop up the system (see diagram below).

https://zh-prod-1cc738ca-7d3b-4a72-b.../anderson1.png

Despite the attempt by Time to beatify Bernanke by putting him of the cover with the title “The Man Who Saved the World,” he didn’t save anything except for the existence of those very securities that had been the guts of the financial bubble and that the market itself already had declared near worthless. From valueless mortgage securities to long-term US Treasury bonds (part of “Operation Twist”), Bernanke’s Fed supposedly breathed life into the entire economy. (Here is a more current snapshot of the trend of Fed purchases, although the diagram does not break down the various assets.)

In reality, Bernanke was depressing the economy by propping up the economic sectors featuring massive malinvestments and keeping resources from moving from lower-valued to higher-valued uses by tying up about a fifth of GDP with underperforming assets. That most financial journalists and academic economists failed to recognize what Bernanke was actually doing is an indictment upon their various professions and speaks volumes about the willful ignorance in newsrooms and in the halls of academe.


(Fed chairs from Bernanke’s successor, Janet Yellen, to current Fed chairman Jerome Powell all have imbibed from the same spiked Kool-Aid and there certainly is no threat of the current crop of financial journalists and economics/finance professors exposing the scam. The beat goes on.)
So, now we have yet another “exit stage right” performance by the central bank that is part of the long line of Fed interventions that do little more than kick the proverbial can down the road. The reasoning goes like this: the huge work stoppage imposed by various governments means that people cannot pay their bills, and ultimately that winds up depressing banking assets, and depressed banking assets threaten the entire financial system and can bring down an economy.



What to do? Just substitute the Fed’s funny money for real payments so that at least on paper, the bank balance sheets are in the black. It is another chapter of the “Perception Over Reality” work of fiction in which virtual printed money carries the same weight and value as money earned through real live economic activity. As economist Joseph T. Salerno recently wrote:

Printing up paper money and giving it or lending it to domestic businesses or to India will not bring about a miraculous replacement of the lost goods and services or repair broken supply chains. However, the “pandemic shock” may, and probably will, have repercussions on the demand side of the economy, likely precipitating a financial crisis. But this is due to the designed fragility of a financial system based on fractional reserve banking and propped up by governmental policies such as deposit insurance and the too-big-to-fail doctrine.

It is both discouraging and encouraging to see the market’s response. Like all of us who have thousands (and, really, hundreds of thousands) of dollars invested, we are taking a financial hit, and I have no idea if when this crisis passes my investment portfolio is going to resemble Berlin in 1945 or not. (I suspect I will be among the walking wounded.)

However, the encouraging part—and this is a bit of a stretch—is that markets may finally—FINALLY—have recognized that a real economy with real production is different than the house of paper that the Fed has been creating the past few decades. Whether or not Americans are willing to take a hard look at our economy is another matter. With socialists claiming that they can create paradise via fiat and higher taxes and Trump supporters saying that the market surge (at least until the coronavirus hit) was “proof” that we had a great economy, there is plenty of delusion out there. It is time to pull back the curtain and expose the Fed for the humbug it truly is.

https://www.zerohedge.com/political/...ops+to+zero%29


Authored by Larry Johnson via Sic Semper Tyrannis blog,
Here is the bottom-line - despite being hired in late April (or early May) of 2016 to stop an unauthorized intrusion into the DNC, CrowdStrike, the cyber firm hired by the DNC's law firm to solve the problem, failed abysmally. More than 30,000 emails were taken from the DNC server between 22 and 25 May 2016 and given to Wikileaks. Crowdstrike blamed Russia for the intrusion but claimed that only two files were taken. And CrowdStrike inexplicably waited until 10 June 2016 to reboot the DNC network.

CrowdStrike, a cyber-security company hired by a Perkins Coie lawyer retained by the DNC, provided the narrative to the American public of the alledged hack of the DNC, But the Crowdstrike explanation is inconsistent, contradictory and implausible. Despite glaring oddities in the CrowdStrike account of that event, CrowdStrike subsequently traded on its fame in the investigation of the so-called Russian hack of the DNC and became a publicly traded company. Was CrowdStrike’s fame for “discovering” the alleged Russian hack of the DNC a critical factor in its subsequent launch as a publicly traded company?


https://zh-prod-1cc738ca-7d3b-4a72-b...1_14-02-59.jpg




The Crowdstrike account of the hack is very flawed. There are 11 contradictions, inconsistencies or oddities in the public narrative about CrowdStrike’s role in uncovering and allegedly mitigating a Russian intrusion (note--the underlying facts for these conclusions are found in Ellen Nakashima's Washington Post story, Vicki Ward's Esquire story, the Mueller Report and the blog of Crowdstrike founder Dmitri Alperovitch):

 

1. Two different dates—30 April or 6 May—are reported by Nakashima and Ward respectively as the date CrowdStrike was hired to investigate an intrusion into the DNC computer network.
2. There are on the record contradictions about who hired Crowdstrike. Nakashima reports that the DNC called Michael Sussman of the law firm, Perkins Coie, who in turn contacted Crowdtrike’s CEO Shawn Henry. Crowdstrike founder Dmitri Alperovitch tells Nakashima a different story, stating our “Incident Response group, was called by the Democratic National Committee (DNC).
3. CrowdStrike claims it discovered within 24 hours the “Russians” were responsible for the “intrusion” into the DNC network.
4. CrowdStrike’s installation of Falcon (its proprietary software to stop breaches) on the DNC on the 1st of May or the 6th of May would have alerted to intruders that they had been detected.
5. CrowdStrike officials told the Washington Post’s Ellen Nakashima that they were, “not sure how the hackers got in” and didn’t “have hard evidence.”
6. In a blog posting by CrowdStrike’s founder, Dmitri Alperovitch, on the same day that Nakashima’s article was published in the Washington Post, wrote that the intrusion into the DNC was done by two separate Russian intelligence organizations using malware identified as Fancy Bear (APT28) and Cozy Bear (APT29).
7. But, Alperovitch admits his team found no evidence the two Russian organizations were coordinating their “attack” or even knew of each other’s presence on the DNC network.
8. There is great confusion over what the “hackers” obtained. DNC sources claim the hackers gained access to the entire database of opposition research on GOP presidential candidate Donald Trump. DNC sources and CrowdStrike claimed the intruders, “read all email and chat traffic.” Yet, DNC officials insisted, “that no financial, donor or personal information appears to have been accessed or taken.” However, CrowdStrike states, “The hackers stole two files.”
9. Crowdstrike’s Alperovitch, in his blog posting, does not specify whether it was Cozy Bear or Fancy Bear that took the files.
10. Wikileaks published DNC emails in July 2016 that show the last message taken from the DNC was dated 25 May 2016. This was much more than “two files.”
11. CrowdStrike, in complete disregard to basic security practice when confronted with an intrusion, waited five weeks to disconnect the DNC computers from the network and sanitize them.

Let us start with the very contradictory public accounts attributed to Crowdstrke’s founder, Dmitri Alperovitch. The 14 June 2016 story by Ellen Nakashima of the Washington Post and the October 2016 piece by Vicki Ward in Esquire magazine offer two different dates for the start of the investigation:

When did the DNC learn of the “intrusion”?

Ellen Nakashima claims it was the end of April:

“DNC leaders were tipped to the hack in late April. Chief executive Amy Dacey got a call from her operations chief saying that their information technology team had noticed some unusual network activity... That evening, she spoke with Michael Sussmann, a DNC lawyer who is a partner with Perkins Coie in Washington. Soon after, Sussmann, a former federal prosecutor who handled computer crime cases, called Henry, whom he has known for many years. Within 24 hours, CrowdStrike had installed software on the DNC’s computers so that it could analyze data that could indicate who had gained access, when and how.

Ward’s timeline, citing Alperovitch, reports the alert came later, on 6 May 2016:

At six o'clock on the morning of May 6, Dmitri Alperovitch woke up in a Los Angeles hotel to an alarming email. . . . late the previous night, his company had been asked by the Democratic National Committee to investigate a possible breach of its network. A CrowdStrike security expert had sent the DNC a proprietary software package, called Falcon, that monitors the networks of its clients in real time. Falcon "lit up," the email said, within ten seconds of being installed at the DNC: Russia was in the network.

This is a significant and troubling discrepancy because it marks the point in time when CrowdStrike installed its Falcon software on the DNC server. It is one thing to confuse the 30th of April with the 1st of May. But Alperovitch gave two different reporters two different dates.

What did the “hackers” take from the DNC?

Ellen Nakashima's reporting is contradictory and wrong. Initially, she is told that the hackers got access to the entire Donald Trump database and that all emails and chats could be read. But then she is assured that only two files were taken. This was based on Crowdstrike's CEO's assurance, which was proven subsequently to be spectacularly wrong when Wikileaks published 35,813 DNC emails. How did Crowdstrike miss that critical detail? Here is Nakashima's reporting:

Russian government hackers penetrated the computer network of the Democratic National Committee and gained access to the entire database of opposition research on GOP presidential candidate Donald Trump, according to committee officials and security experts who responded to the breach.

The intruders so thoroughly compromised the DNC’s system that they also were able to read all email and chat traffic, said DNC officials and the security experts. . . .
The DNC said that no financial, donor or personal information appears to have been accessed or taken, suggesting that the breach was traditional espionage, not the work of criminal hackers.

One group, which CrowdStrike had dubbed Cozy Bear, had gained access last summer (2015) and was monitoring the DNC’s email and chat communications, Alperovitch said.
The other, which the firm had named Fancy Bear, broke into the network in late April and targeted the opposition research files. It was this breach that set off the alarm. The hackers stole two files, Henry said. And they had access to the computers of the entire research staff — an average of about several dozen on any given day. . . .

CrowdStrike is continuing the forensic investigation, said Sussmann, the DNC lawyer. “But at this time, it appears that no financial information or sensitive employee, donor or voter information was accessed by the Russian attackers,” he said.

The DNC emails that are posted on the Wikileaks website and the metadata shows that these emails were removed from the DNC server starting the late on the 22nd of May and continuing thru the 23rd of May. The last tranche occurred late in the morning (Washington, DC time) of the 25th of May 2016. Crowdstrike’s CEO, Shawn Henry, insisted on the 14th of June 2016 that “ONLY TWO FILES” had been taken. This is demonstrably not true. Besides the failure of Crowdstrike to detect the removal of more than 35,000 emails, there is another important and unanswered question—why did Crowdstrike wait until the 10th of June 2016 to start disconnecting the DNC server when they allegedly knew on the 6th of May that the Russians had entered the DNC network?

Crowdstrike accused Russia of the DNC breach but lacked concrete proof.

Ellen Nakashima’s report reveals that Crowdstrike relied exclusively on circumstantial evidence for its claim that the Russian Government hacked the DNC server. According to Nakashima:

CrowdStrike is not sure how the hackers got in. The firm suspects they may have targeted DNC employees with “spearphishing” emails. These are communications that appear legitimate — often made to look like they came from a colleague or someone trusted — but that contain links or attachments that when clicked on deploy malicious software that enables a hacker to gain access to a computer. “But we don’t have hard evidence,” Alperovitch said.

There is a word in English for the phrases, "Not sure" and "No hard evidence”--that word is, "assumption." Assuming that the Russians did it is not the same as proving, based on evidence, that the Russians were culpable. But that is exactly what CrowdStrike did.




The so-called "proof" of the Russian intrusions is the presence of Fancy Bear and Cozy Bear?
At first glance, Dmitri Alperovitch’s blog posting describing the Fancy Bear and Cozy Bear “intrusions” appears quite substantive. But cyber security professionals quickly identified a variety of shortcomings with the Alperovitch account. For example, this malware is not unique nor proprietary to Russia. Other countries and hackers have access to APT28 and have used it.
Skip Folden offers one of the best comprehensive analyses of the problems with the Alperovitch explanation:

No basis whatsoever:

APT28, aka Fancy Bear, Sofacy, Strontium, Pawn Storm, Sednit, etc., and APT29, aka Cozy Bear, Cozy Duke, Monkeys, CozyCar,The Dukes, etc., are used as ‘proof’ of Russia ‘hacking’ by Russian Intelligence agencies GRU and FSB respectively.
There is no basis whatsoever to attribute the use of known intrusion elements to Russia, not even if they were once reverse routed to Russia, which claim has never been made by NSA or any other of our IC.

On June 15, 2016 Dmitri Alperovitch himself, in an Atlantic Council article, gave only “medium-level of confidence that Fancy Bear is GRU” and “low-level of confidence that Cozy Bear is FSB.” These assessments, from the main source himself, that either APT is Russian intelligence, averages 37%-38% [(50 + 25) / 2].

Exclusivity:
None of the technical indicators, e.g., intrusion tools (such as X-Agent, X-Tunnel), facilities, tactics, techniques, or procedures, etc., of the 28 and 29 APTs can be uniquely attributed to Russia, even if one or more had ever been trace routed to Russia. Once an element of a set of intrusion tools is used in the public domain it can be reverse-engineered and used by other groups which precludes the assumption of exclusivity in future use. The proof that any of these tools have never been reverse engineered and used by others is left to the student - or prosecutor.

Using targets:
Also, targets have been used as basis for attributing intrusions to Russia, and that is pure nonsense. Both many state and non-state players have deep interests in the same targets and have the technical expertise to launch intrusions. In Grizzly Steppe, page 2, second paragraph, beginning with, “Both groups have historically targeted ...,” is there anything in that paragraph which can be claimed as unique to Russia or which excludes all other major state players in the world or any of the non-state organizations? No.

Key-Logger Consideration:
On the subject of naming specific GRU officers initiating specific actions on GRU Russian facilities on certain dates / times, other than via implanted ID chips under the finger tips of these named GRU officers, the logical assumption would be by installed key logger capabilities, physical or malware, on one or more GRU Russian computers.

The GRU is a highly advanced Russian intelligence unit. It would be very surprising were the GRU open to any method used to install key logger capabilities. It would be even more surprising, if not beyond comprehension that the GRU did not scan all systems upon start-up and in real time, including key logger protection and anomalies of performance degradation and data transmissions.

Foreign intelligence source:
Other option would be via a foreign intelligence unit source with local GRU access. Any such would be quite anti-Russian and be another nail in the coffin of any chain of evidence / custody validity at Russian site.

Stated simply, Dmitri Alperovitch's conclusion that "the Russians did it" are not supported by the forensic evidence. Instead, he relies on the assumption that the presence of APT28 and APT29 prove Moscow's covert hand. What is even more striking is that the FBI accepted this explanation without demanding forensic evidence.

Former FBI Director James Comey and former NSA Director Mike Rogers testified under oath before Congress that neither agency ever received access to the DNC server. All information the FBI used in its investigation was supplied by CrowdStrike. The Hill reported:

The FBI requested direct access to the Democratic National Committee’s (DNC) hacked computer servers but was denied, Director James Comey told lawmakers on Tuesday.

The bureau made “multiple requests at different levels,” according to Comey, but ultimately struck an agreement with the DNC that a “highly respected private company” would get access and share what it found with investigators.

The foregoing facts raise major questions about the validity of the Crowdstrike methodology and conclusions with respect to what happened on the DNC network. This is not a conspiracy theory. It is a set of facts that, as of today, have no satisfactory explanation. The American public deserve answers.