The former secretary of states server held nearly 2,200 emails containing information now deemed classified, and another 22 at the Top Secret level.
The 44-year-old Lazar said he first compromised Clinton confidant Sidney Blumenthal's AOL account, in March 2013, and used that as a stepping stone to the Clinton server. He said he accessed Clintons server like twice, though he described the contents as not interest[ing] to him at the time.
I was not paying attention. For me, it was not like the Hillary Clinton server, it was like an email server she and others were using with political voting stuff," Guccifer said.
The hacker spoke freely with Fox News from the detention center in Alexandria, Va., where hes been held since his extradition to the U.S. on federal charges relating to other alleged cyber-crimes. Wearing a green jumpsuit, Lazar was relaxed and polite in the monitored secure visitor center, separated by thick security glass.
In describing the process, Lazar said he did extensive research on the web and then guessed Blumenthals security question. Once inside Blumenthal's account, Lazar said he saw dozens of messages from the Clinton email address.
Asked if he was curious about the address, Lazar merely smiled. Asked if he used the same security question approach to access the Clinton emails, he said no then described how he allegedly got inside.
For example, when Sidney Blumenthal got an email, I checked the email pattern from Hillary Clinton, from Colin Powell from anyone else to find out the originating IP.
When they send a letter, the email header is the originating IP usually, Lazar explained.
He said, then I scanned with an IP scanner."
Lazar emphasized that he used readily available web programs to see if the server was alive and which ports were open. Lazar identified programs like netscan, Netmap, Wireshark and Angry IP, though it was not possible to confirm independently which, if any, he used.
In the process of mining data from the Blumenthal account, Lazar said he came across evidence that others were on the Clinton server.
"As far as I remember, yes, there were
up to 10, like, IPs from other parts of the world, he said.
With no formal computer training, he did most of his hacking from a small Romanian village.
Lazar said he chose to use "proxy servers in Russia," describing them as the best, providing anonymity.
Cyber experts who spoke with Fox News said the process Lazar described is plausible. The federal indictment Lazar faces in the U.S. for cyber-crimes specifically alleges he used "a proxy server located in Russia" for the Blumenthal compromise.
Facebook
Twitter