Daily Archives: January 12, 2018

More Indictments on Uranium One Money Laundering Scandal

Posted on by
Image result for tenex russia company
Primer: December 15, 2015/Former Russian Nuclear Energy Official Sentenced to 48 Months in Prison for Money Laundering Conspiracy Involving Foreign Corrupt Practices Act Violations

U.S. Conspirators Paid More Than $2 Million to Influence Russian Nuclear Energy Official and to Secure Business with State-Owned Russian Nuclear Energy Company

Image result for tenex russia company

Department of Justice
Office of Public Affairs
FOR IMMEDIATE RELEASE
Friday, January 12, 2018

Former President of Maryland-Based Transportation Company Indicted on 11 Counts Related to Foreign Bribery, Fraud and Money Laundering Scheme

Executive Allegedly Paid Bribes to a Russian Official So His Company Could Win Highly Sensitive Nuclear Fuel Transportation Contracts

An indictment against a former co-president of a Maryland-based transportation company that provides services for the transportation of nuclear materials to customers in the United States and abroad, was unsealed today for his alleged role in a scheme that involved the bribery of an official at a subsidiary of Russia’s State Atomic Energy Corporation.

Acting Assistant Attorney General John P. Cronan of the Justice Department’s Criminal Division, Acting U.S. Attorney Stephen M. Schenning of the District of Maryland, Principal Deputy Inspector General April G. Stephenson of the U.S. Department of Energy’s Office of Inspector General (DOE-OIG) and Assistant Director in Charge Andew W. Vale of the FBI’s Washington, D.C. Field Office made the announcement.

Mark Lambert, 54, of Mount Airy, Maryland, was charged in an 11-count indictment with one count of conspiracy to violate the Foreign Corrupt Practices Act (FCPA) and to commit wire fraud, seven counts of violating the FCPA, two counts of wire fraud and one count of international promotion money laundering.  The charges stem from an alleged scheme to bribe Vadim Mikerin, a Russian official at JSC Techsnabexport (TENEX), a subsidiary of Russia’s State Atomic Energy Corporation and the sole supplier and exporter of Russian Federation uranium and uranium enrichment services to nuclear power companies worldwide, in order to secure contracts with TENEX.

The case against Lambert is assigned to U.S. District Court Judge Theodore D. Chuang of the District of Maryland.

According to the indictment, beginning at least as early as 2009 and continuing until October 2014, Lambert conspired with others at “Transportation Corporation A” to make corrupt and fraudulent bribery and kickback payments to offshore bank accounts associated with shell companies, at the direction of, and for the benefit of, a Russian official, Vadim Mikerin, in order to secure improper business advantages and obtain and retain business with TENEX.   In order to effectuate and conceal the corrupt and fraudulent bribe payments, Lambert and others allegedly caused fake invoices to be prepared, purportedly from TENEX to Transportation Corporation A, that described services that were never provided, and then Lambert and others caused Transportation Corporation A to wire the corrupt payments for those purported services to shell companies in Latvia, Cyprus and Switzerland.  Lambert and others also allegedly used code words like “lucky figures,” “LF,” “lucky numbers,” and “cake” to describe the payments in emails to the Russian official at his personal email account.  The indictment also alleges that Lambert and others caused Transportation Corporation A to overbill TENEX by building the cost of the corrupt payments into their invoices, and TENEX thus overpaid for Transportation Corporation A’s services.

In June 2015, Lambert’s former co-president, Daren Condrey, pleaded guilty to conspiracy to violate the FCPA and commit wire fraud, and Vadim Mikerin pleaded guilty to conspiracy to commit money laundering involving violations of the FCPA.  Mikerin is currently serving a sentence of 48 months in prison and Condrey is awaiting sentencing.  The indictment includes allegations against Lambert based on his role in effectuating the criminal scheme with Condrey, Mikerin, and others.

The charges in the indictment are merely allegations, and the defendant is presumed innocent unless proven guilty beyond a reasonable doubt in a court of law.

The case is being investigated by DOE-OIG and the FBI.  Assistant Chiefs Ephraim Wernick and Christopher J. Cestaro and Trial Attorney Derek J. Ettinger of the Criminal Division’s Fraud Section, as well as Assistant U.S. Attorneys David I. Salem and Michael T. Packard of the District of Maryland, are prosecuting the case.

The Criminal Division’s Office of International Affairs has provided significant assistance in this matter.  The Department also thanks its law enforcement colleagues in Switzerland, Latvia and Cyprus for providing valuable assistance with the investigation and prosecution of the case.

The Criminal Division’s Fraud Section is responsible for investigating and prosecuting all FCPA matters.  Additional information about the Justice Department’s FCPA enforcement efforts can be found at www.justice.gov/criminal/fraud/fcpa.

Topic(s):
Foreign Corruption
Component(s):
Criminal Division
USAO – Maryland
Press Release Number:
18-34

UN Declaration, Regular, Constant Global Migration = Insurgency

Posted on by

Berlin A new series launched by the Global Migration Data Analysis Centre (GMDAC) of IOM, the UN Migration Agency, aims to summarize the existing evidence on migration in an accurate and accessible fashion, to support discussions and any follow-up activities of the Global Compact for Safe, Orderly and Regular Migration.

Note the words orderly and regular….if the United Nations and peacekeeping operations as well as the aid, education, construction and protection campaigns were successful, migration would not be required especially in non-war torn countries. Right? Or how about all these other global human interest organizations….they failing too? Those like the Clinton Foundation or hey how about the Gates Foundation, which is a private foundation founded by Bill and Melinda Gates. It was launched in 2000 and is said to be the largest private foundation in the US, holding $38 billion in assets, improving lives from Seattle to South Africa….ahem.

Image result for global migration

Check here for the largest 10 organizations…. if all this work and money and resources were effective, then why the migration at all?

More here.

The New York Declaration

For the first time on 19 September 2016 Heads of State and Government came together to discuss, at the global level within the UN General Assembly, issues related to migration and refugees. This sent an important political message that migration and refugee matters have become major issues in the international agenda. In adopting the New York Declaration for Refugees and Migrants, the 193 UN Member States recognized the need for a comprehensive approach to human mobility and enhanced cooperation at the global level.

What are the aims of the global compact for migration?

The global compact is framed consistent with target 10.7 of the 2030 Agenda for Sustainable Development in which member States committed to cooperate internationally to facilitate safe, orderly and regular migration and its scope is defined in Annex II of the New York Declaration. It is intended to:

  • address all aspects of international migration, including the humanitarian, developmental, human rights-related and other aspects;
  • make an important contribution to global governance and enhance coordination on international migration;
  • present a framework for comprehensive international cooperation on migrants and human mobility;
  • set out a range of actionable commitments, means of implementation and a framework for follow-up and review among Member States regarding international migration in all its dimensions;
  • be guided by the 2030 Agenda for Sustainable Development and the Addis Ababa Action Agenda; and
  • be informed by the Declaration of the 2013 High-Level Dialogue on International Migration and Development.

The development of the global compact for migration – an open, transparent and inclusive process

The Modalities Resolution for the intergovernmental negotiations of the global compact for safe, orderly and regular migration outline the key elements and timeline of the process. The global compact will be developed through an open, transparent and inclusive process of consultations and negotiations and the effective participation of all relevant stakeholders, including civil society, the private sector, academic institutions, parliaments, diaspora communities, and migrant organizations in both the intergovernmental conference and its preparatory process.

 

N Korea Nuke Sites Go Further Underground

Posted on by

“Significant tunneling” excavation is underway at North Korea’s Punggye-ri nuclear test site and shows the regime’s continued efforts to maintain the site for potential future nuclear testing, a think tank specializing in tracking North Korean activities reported Thursday.

It follows reports in October that the test site is unstable and experienced tunnel collapses that have killed several hundred North Korean laborers.

The report on the 38 North website was based on an analysis of new commercial satellite images released of Punggye-ri, where the North Koreans have conducted the last six underground nuclear tests. It said throughout December 2017, there were “mining carts and personnel” as well as what appeared to be a “spoil pile” that had been greatly expanded at the test facility’s west portal.

The test site’s north portal, used in the last five nuclear tests, “remains dormant,” but there’s new activity at the west portal, according to the 38 North, a think tank at the Johns Hopkins School of Advanced International Studies. Yet, it said there appears to be draining going on at the entrance to this portal.

Punggye-ri Nuclear Test Site
by JamesMartinCNS
on Sketchfab

The last nuclear test at Punggye-ri was conducted in September. Pyongyang claimed that blast was a miniaturized hydrogen weapon designed for an intercontinental ballistic missile.

On December 28, 2017, large numbers of personnel are observed at the Southern Support Area, located south of the Command Center Area.

DigitalGlobe | 38 North | Getty Images
On December 28, 2017, large numbers of personnel are observed at the Southern Support Area, located south of the Command Center Area.

In October, Japan’s Asahi TV reported that as many as 200 North Korean workers may have been killed in a tunnel collapse at the nuclear test site. Also, at least four defectors from North Korea have shown signs of radiation exposure, Reuters reported last month.

In Thursday’s report, 38 North said about 100 to 200 people were observed in satellite images taken Dec. 28 in a “Southern Support Area,” which it said rarely has such activity. And it said “the purpose of their activities is unknown.”

The new analysis of the Punggye-ri satellite imagery was done by Frank Pabian, Joseph Bermudez Jr. and Jack Liu, the 38 North website said. They concluded that the recent activity is a sign that the regime will maintain the facility.

The recent activity at the Punggye-ri nuclear test site comes on the heels of North and South Korean negotiators meeting Tuesday at the Demilitarized Zone. It was the first high-level talks between the two countries since late 2015.

The negotiations resulted in Pyongyang agreeing to send a delegation of athletes to the upcoming Winter Olympic Games in PyeongChang, South Korea. The two sides also agreed to reinstate a military hotline and to hold future talks, although no deal was reached on denuclearization.

Also, South Korea’s Yonhap news agency reported Thursday that Chinese President Xi Jinping had a 30-minute phone conversation with South Korean President Moon Jae-in and they jointly agreed “to continue working together to peacefully resolve the North Korean nuclear issue.”

US Treasury to Publish Russian Oligarch Corruption Index

Posted on by

Image result for GRU cyber operations

In December of 2015, Obama took aggressive action expelling Russian diplomats over hacking and political intrusion.

Image result for GRU cyber operations photo

“In addition, the Russian Government has impeded our diplomatic operations by, among other actions — forcing the closure of 28 American corners which hosted cultural programs and English-language teaching; blocking our efforts to begin the construction of a new, safer facility for our Consulate General in St Petersburg; and rejecting requests to improve perimeter security at the current, outdated facility in St Petersburg.” Some additional actions and those expelled include:

Two Russian intelligence agencies, the GRU and the FSB, four GRU officers and three companies “that provided material support to the GRU’s cyber operations”.

The White House named Igor Valentinovich Korobov, the current chief of the GRU; Sergey Aleksandrovich Gizunov, deputy chief of the GRU; Igor Olegovich Kostyukov, a first deputy chief of the GRU; and Vladimir Stepanovich Alexseyev, also a first deputy chief of the GRU. The Obama Executive Order is here.

Image result for GRU cyber operations

White House Fact Sheet on Russian malicious behavior

Slide presentation on Fancy Bear, hacking

Russia’s Oligarchs Brace for U.S. List of Putin Friends

(Bloomberg) — The U.S. Treasury Department is finishing its first official list of “oligarchs” close to President Vladimir Putin’s government, setting off a flurry of moves by wealthy Russians to shield their fortunes and reputations.

Some people who think they’re likely to land on the list have stress-tested the potential impact on their investments, two people with knowledge of the matter said. Others are liquidating holdings, according to their U.S. advisers.

Russian businessmen have approached former Treasury and State Department officials with experience in sanctions for help staying off the list, said Dan Fried, who previously worked at the State Department and said he turned down such offers.

Some Russians sent proxies to Washington in an attempt to avoid lobbying disclosures, according to one person that was contacted.

The report is expected to amount to a blacklist of Russia’s elite. It was mandated by a law President Donald Trump reluctantly signed in August intended to penalize the Kremlin for its alleged meddling in the 2016 election.

A rare piece of legislation passed with a bipartisan veto-proof margin, the law gave Treasury, the State Department and intelligence agencies 180 days to identify people by “their closeness to the Russian regime and their net worth.”

That deadline is Jan. 29.

Shamed Oligarchs

The list has also become a headache within Treasury, where some officials are concerned it will be conflated with sanctions, a person familiar with the matter said.

Treasury officials are considering keeping some portions of the report classified — which the law allows — and issuing it in the form of a letter from a senior official, Sigal Mandelker, instead of releasing it through the Office of Foreign Assets Control, which issues sanctions.

That would help distinguish it from separate lists of Russians subject to U.S. economic penalties, said the person, who spoke on condition of anonymity.

“You’re going to have people getting shamed. It’s a step below a sanction because it doesn’t actually block any assets, but has the same optics as sanctions — you’re on a list of people who are engaged in doing bad things,” said Erich Ferrari, who founded Ferrari & Associates in Washington and has helped people get removed from the sanctions designation list.

Corruption Index

The report must include “indices of corruption” with the oligarch’s names and list any foreign assets they may own. Lawmakers expect the list to provide a basis for future punitive actions against Russia.

“Because of the nervousness that the Russian business community is facing, a number of oligarchs are already beginning to wind back businesses, treating them as if they are already designated, to stay ahead of it,” said Daniel Tannebaum, head of Pricewaterhousecoopers LLP’s global financial sanctions unit.

He advises a handful of wealthy Russian individuals and some businesses who he declined to identify.

Treasury’s terrorism and financial intelligence unit is working with the State Department and Office of National Intelligence to complete the report, said a spokesman who declined to elaborate on the criteria for the list or whether it would be made public.

“It should be released in the near future,” Treasury Secretary Steve Mnuchin said at a White House briefing. ‘It’s something we’re very focused on.”

‘Allows Mischief’

The list’s impact will depend on how it’s released, said Adam Smith, a former senior adviser in Treasury’s sanctions unit and now a partner at Gibson, Dunn & Crutcher LLP in Washington.

The law is “written in a way that it allows mischief if the administration wanted to go a different way,” Smith said. “If the president wanted to provide little or a lot and be very selective, he has the ability to do that.”

That discretion partly flows from the criteria used to assemble the list, which Congress left up to Treasury.

Senator Ben Cardin of Maryland, the ranking Democrat on the committee on foreign relations, said he would like to see “as much transparency as possible” from Treasury when it finishes the list.

Russia has sought to defend its elites. Putin warned of worsening U.S. sanctions last month and introduced a capital amnesty program to encourage wealthy nationals to repatriate some of their overseas assets.

He also approved a plan to issue special bonds designed to give the wealthy a way to hold their dollar assets out of reach of the U.S. Treasury.

‘Disgusting’ Relations

While compilation of the list doesn’t mean there’ll be a new round of tit-for-tat sanctions, Russia will react to any punitive measures against its business people, Kremlin spokesman Dmitry Peskov told reporters on a conference call Friday.

“The principle of reciprocity remains,” and it would be for Putin to decide on the best response, he said.

Prime Minister Dmitry Medvedev, a Putin lieutenant for two decades, called the state of the relationship “disgusting” in November.

Congress has also requested that Treasury submit an impact analysis of potential sanctions on Russian sovereign bonds. A Treasury spokesman said its international affairs office is working on the analysis.

U.S. sanctions on the bonds would deal a major blow to Russia’s finances, raising the prospect of a selloff in the bond market, posing a risk to the ruble and the potential for higher borrowing costs.

The Russian Finance Ministry relies on debt to cover budget shortfalls and is seeking to borrow $18 billion domestically in 2018.

APT 28 Fancy Bear Espionage Target US Senate

Posted on by

While Robert Mueller continues his robust investigation into all things Russia and his team is under critical pushback, one must consider that his work could and should produce a report on the constant and critical threat of cyber hacking by Russia. The United States does not have a cyber policy but it does have a CyberCommand. Congress cannot draft any legislation on global cyber policy and consequence.

Image result for u.s. cyber command

Beginning in June 2017, phishing sites were set up mimicking the ADFS (Active Directory Federation Services) of the U.S. Senate. By looking at the digital fingerprints of these phishing sites and comparing them with a large data set that spans almost five years, we can uniquely relate them to a couple of Pawn Storm incidents in 2016 and 2017. The real ADFS server of the U.S. Senate is not reachable on the open internet, however phishing of users’ credentials on an ADFS server that is behind a firewall still makes sense. In case an actor already has a foothold in an organization after compromising one user account, credential phishing could help him get closer to high profile users of interest. More here from:

Update on Pawn Storm: New Targets and Politically Motivated Campaigns

 

PARIS (AP) — The same Russian government-aligned hackers who penetrated the Democratic Party have spent the past few months laying the groundwork for an espionage campaign against the U.S. Senate, a cybersecurity firm said Friday.

The revelation suggests the group often nicknamed Fancy Bear, whose hacking campaign scrambled the 2016 U.S. electoral contest, is still busy trying to gather the emails of America’s political elite.

“They’re still very active — in making preparations at least — to influence public opinion again,” said Feike Hacquebord, a security researcher at Trend Micro Inc., which published the report . “They are looking for information they might leak later.”

The Senate Sergeant at Arms office, which is responsible for the upper house’s security, declined to comment.

Hacquebord said he based his report on the discovery of a clutch of suspicious-looking websites dressed up to look like the U.S. Senate’s internal email system. He then cross-referenced digital fingerprints associated with those sites to ones used almost exclusively by Fancy Bear, which his Tokyo-based firm dubs “Pawn Storm.”

Trend Micro previously drew international attention when it used an identical technique to uncover a set of decoy websites apparently set up to harvest emails from the French presidential candidate Emmanuel Macron’s campaign in April 2017. The sites’ discovery was followed two months later by a still-unexplained publication of private emails from several Macron staffers in the final days of the race.

Hacquebord said the rogue Senate sites — which were set up in June and September of 2017 — matched their French counterparts.

“That is exactly the way they attacked the Macron campaign in France,” he said.

Attribution is extremely tricky in the world of cybersecurity, where hackers routinely use misdirection and red herrings to fool their adversaries. But Tend Micro, which has followed Fancy Bear for years, said there could be no doubt.

“We are 100 percent sure that it can attributed to the Pawn Storm group,” said Rik Ferguson, one of the Hacquebord’s colleagues.

Like many cybersecurity companies, Trend Micro refuses to speculate publicly on who is behind such groups, referring to Pawn Storm only as having “Russia-related interests.” But the U.S. intelligence community alleges that Russia’s military intelligence service pulls the hackers’ strings and a months-long Associated Press investigation into the group, drawing on a vast database of targets supplied by the cybersecurity firm Secureworks, has determined that the group is closely attuned to the Kremlin’s objectives.

If Fancy Bear has targeted the Senate over the past few months, it wouldn’t be the first time. An AP analysis of Secureworks’ list shows that several staffers there were targeted between 2015 and 2016.

Among them: Robert Zarate, now the foreign policy adviser to Florida Senator Marco Rubio; Josh Holmes, a former chief of staff to Senate Majority Leader Mitch McConnell who now runs a Washington consultancy; and Jason Thielman, the chief of staff to Montana Senator Steve Daines. A Congressional researcher specializing in national security issues was also targeted.

Fancy Bear’s interests aren’t limited to U.S. politics; the group also appears to have the Olympics in mind.

Trend Micro’s report said the group had set up infrastructure aimed at collecting emails from a series of Olympic winter sports federations, including the International Ski Federation, the International Ice Hockey Federation, the International Bobsleigh & Skeleton Federation, the International Luge Federation and the International Biathlon Union.

The targeting of Olympic groups comes as relations between Russia and the International Olympic Committee are particularly fraught. Russian athletes are being forced to compete under a neutral flag in the upcoming Pyeongchang Olympics following an extraordinary doping scandal that has seen 43 athletes and several Russian officials banned for life. Amid speculation that Russia could retaliate by orchestrating the leak of prominent Olympic officials’ emails, cybersecurity firms including McAfee and ThreatConnect have picked up on signs that state-backed hackers are making moves against winter sports staff and anti-doping officials.

On Wednesday, a group that has brazenly adopted the Fancy Bear nickname began publishing what appeared to be Olympics and doping-related emails from between September 2016 and March 2017. The contents were largely unremarkable but their publication was covered extensively by Russian state media and some read the leak as a warning to Olympic officials not to press Moscow too hard over the doping scandal.

Whether any Senate emails could be published in such a way isn’t clear. Previous warnings that German lawmakers’ correspondence might be leaked by Fancy Bear ahead of last year’s election there appear to have come to nothing.

On the other hand, the group has previously dumped at least one U.S. legislator’s correspondence onto the web.

One of the targets on Secureworks’ list was Colorado State Senator Andy Kerr, who said thousands of his emails were posted to an obscure section of the website DCLeaks — a web portal better known for publishing emails belonging to retired Gen. Colin Powell and various members of Hillary Clinton’s campaign — in late 2016.

Kerr said he was still bewildered as to why he was targeted. He said that while he supported transparency, “there should be some process and some system to it.

“It shouldn’t be up to a foreign government or some hacker to say what gets released and what shouldn’t.”