Largest Dark Web Hub for Illicit Drugs, Firearms, Malware Shutdown

Largest Dark Web Marketplace for Illicit Drugs, Firearms, Malware and More Shut Down

The largest criminal marketplace on the dark web for the illicit trade of drugs, firearms, computer hacking tools and more was shut down Thursday, the US Department of Justice (DOJ) announced.

The online marketplace, called AlphaBay, operated for more than two years, allowing buyers and sellers to anonymously exchange illegal goods and services like drugs, toxic chemicals, stolen and fraudulent identification documents and malware.

SilkRoad SeizureAlert placed on the Silk Road dark web criminal marketplace’s homepage after its seizure in 2013 (Photo: FBI, Public Domain Mark 1.0)

AlphaBay was hosted on the dark web, a hidden part of the internet that users require special software to access. One of the most common ways to access the dark web is by using a browser called Tor, which prevents network surveillance and essentially renders a user anonymous online.

Financial transactions between users on AlphaBay were conducted using cryptocurrencies, namely Bitcoin, Monero and Ethereum, according to the DOJ. Authorities believe the site was used to launder hundreds of millions of dollars from such illegal transactions.

AlphaBay was also linked to multiple overdose deaths in the US as a “major source” of fentanyl and heroin, The Independent reported.

The investigations that led to Thursday’s seizure of AlphaBay and Hansa, another major criminal market on the dark web, were led by the Federal Bureau of Investigation (FBI), the US Drug Enforcement Agency and the Dutch National Police, according to Europol, which also supported the operations.

Law enforcement agencies in Thailand, Lithuania, Canada, the UK and France also cooperated in the seizure of AlphaBay and Hansa’s digital infrastructure.

“Transnational organized crime poses a serious threat to our national and economic security,” said FBI Acting Director Andrew McCabe.

“Whether they operate in broad daylight or on the dark net, we will never stop working to find and stop these criminal syndicates.”

Authorities were able to take AlphaBay down in early July when they took the site’s alleged founder Alexandre Cazes into custody, The New York Times reported.

Cazes, 25, was a Canadian citizen living in Bangkok, Thailand. A few days after being arrested, on July 12, Cazes apparently committed suicide.

He was found to have possessed millions of dollars in cryptocurrency and luxury assets around the world, including expensive vehicles, residences and a hotel in Thailand.

At the time of its takedown, AlphaBay hosted more than 250,000 listings for illegal drugs and chemicals and more than 100,000 listings for stolen or fake documents, counterfeit goods, firearms and other illicit goods and services.

By comparison, the marketplace’s scope dwarfed the former largest illegal dark web exchange called the Silk Road, which was taken down in 2013 and had about 14,000 listings.

Europol Executive Director Rob Wainwright called AlphaBay’s demise a “massive blow to the underground criminal economy.”

However, the authorities’ fight against dark web markets is likely to continue.

In the wake of AlphaBay and Hansa’s seizure, NBC News reported a spike in traffic to a former competitor of the two marketplaces called DreamMarket, which might now enjoy a corner on the illegal market.

***

The U.S. Attorney’s Office for the Eastern District of California filed a civil forfeiture complaint against Alexandre Cazes and his wife’s assets located throughout the world, including in Thailand, Cyprus, Lichtenstein, and Antigua & Barbuda. Cazes and his wife amassed numerous high value assets, including luxury vehicles, residences and a hotel in Thailand. Cazes also possessed millions of dollars in cryptocurrency, which has been seized by the FBI and the Drug Enforcement Administration (DEA).

According to publicly available information on AlphaBay prior to its takedown, one AlphaBay staff member claimed that it serviced over 200,000 users and 40,000 vendors.  Around the time of takedown, there were over 250,000 listings for illegal drugs and toxic chemicals on AlphaBay, and over 100,000 listings for stolen and fraudulent identification documents and access devices, counterfeit goods, malware and other computer hacking tools, firearms and fraudulent services. Comparatively, the Silk Road dark web marketplace, which was seized by law enforcement in November 2013, had reportedly approximately 14,000 listings for illicit goods and services at the time of seizure and was the largest dark web marketplace at the time.

“This is likely one of the most important criminal investigations of the year – taking down the largest dark net marketplace in history,” said Attorney General Jeff Sessions. “Make no mistake, the forces of law and justice face a new challenge from the criminals and transnational criminal organizations who think they can commit their crimes with impunity using the dark net.  The dark net is not a place to hide. The Department will continue to find, arrest, prosecute, convict, and incarcerate criminals, drug traffickers and their enablers wherever they are. We will use every tool we have to stop criminals from exploiting vulnerable people and sending so many Americans to an early grave. I believe that because of this operation, the American people are safer – safer from the threat of identity fraud and malware, and safer from deadly drugs.”

“Transnational organized crime poses a serious threat to our national and economic security,” said Acting Director Andrew McCabe of the FBI. “Whether they operate in broad daylight or on the dark net, we will never stop working to find and stop these criminal syndicates.  We want to thank our international partners and those at the Department of Justice, the DEA and the IRS-CI for their hard work in demonstrating what we can do when we stand together.” More here.

Magnitsky Act, Facts and Putin’s Operatives in the U.S.

Bill and I have become distant buddies. I asked him for his opening statement before the Senate Judiciary Committee scheduled for July 25, 2017. He granted the request.

As a primer, current domestic spies and retired operatives have all stated that the meetings and or interactions between key Russians and those in the Trump orbit are indeed traditional tradecraft and that also includes several members of Congress meeting with the same.

Hayden told me, “My god, this is just such traditional tradecraft.” He said that he has talked to people in the intelligence community about Mowatt-Larssen’s theory and that “every case officer I’ve pushed on this” agreed with it. “This is how they do it.”

Hayden explained that the Russians would have learned several things from the approach. “Would they take the meeting?” he said. “So, then you get the willingness. No. 2, would they report the meeting?” Hayden suggested that Russian intelligence was sophisticated enough to know whether the Trump campaign reported the meeting to the F.B.I., which it didn’t. So, while Kushner claimed that the meeting was irrelevant, from a Russian intelligence perspective it would have been seen as a clear signal. “At the end, they have established that these guys are willing,” Hayden said, pausing. “How do I put this? They did not reject a relationship.” Read the full summary here.

***

Bill Browder’s Testimony to the Senate Judiciary Committee

“I hope that my story will help you understand the methods of Russian operatives in Washington and how they use U.S. enablers to achieve major foreign policy goals without disclosing those interests,” Browder writes.

The financier Bill Browder has emerged as an unlikely central player in the ongoing investigation of Russian interference in the 2016 elections. Sergei Magnitsky, an attorney Browder hired to investigate official corruption, died in Russian custody in 2009. Congress subsequently imposed sanctions on the officials it held responsible for his death, passing the Magnitsky Act in 2012. Russian President Vladimir Putin’s government retaliated, among other ways, by suspending American adoptions of Russian children.

Natalia Veselnitskaya, the Russian lawyer who secured a meeting with Donald Trump Jr., Jared Kushner, and Paul Manafort, was engaged in a campaign for the repeal of the Magnitsky Act, and raised the subject of adoptions in that meeting. That’s put the spotlight back on Browder’s long campaign for Kremlin accountability, and against corruption—a campaign whose success has irritated Putin and those around him.

Browder will testify before the Senate Judiciary Committee on Wednesday in a hearing about Foreign Agents Registration Act enforcement; what follows are the prepared remarks he submitted to the committee. The committee also called as witnesses former Trump campaign chairman Paul Manafort, Donald Trump Jr., and Glenn Simpson, the co-founder of the Fusion GPS research firm that commissioned the Trump dossier. As of Tuesday evening, only Browder is definitely scheduled to appear during that panel.

Chairman Grassley, Ranking Member Feinstein, and members of the committee, thank you for giving me the opportunity to testify today on the Russian government’s attempts to repeal the Magnitsky Act in Washington in 2016, and the enablers who conducted this campaign in violation of the Foreign Agents Registration Act, by not disclosing their roles as agents for foreign interests.

Before I get into the actions of the agents who conducted the anti-Magnitsky campaign in Washington for the benefit of the Russian state, let me share a bit of background about Sergei Magnitsky and myself.

I am the founder and CEO of Hermitage Capital Management. I grew up in Chicago, but for the last 28 years I’ve lived in Moscow and London, and am now a British citizen. From 1996 to 2005, my firm, Hermitage Capital, was one of the largest investment advisers in Russia with more than $4 billion invested in Russian stocks.

Russia has a well-known reputation for corruption; unfortunately, I discovered that it was far worse than many had thought. While working in Moscow I learned that Russian oligarchs stole from shareholders, which included the fund I advised. Consequently, I had an interest in fighting this endemic corruption, so my firm started doing detailed research on exactly how the oligarchs stole the vast amounts of money that they did. When we were finished with our research we would share it with the domestic and international media.

For a time, this naming and shaming campaign worked remarkably well and led to less corruption and increased share prices in the companies we invested in. Why? Because President Vladimir Putin and I shared the same set of enemies. When Putin was first elected in 2000, he found that the oligarchs had misappropriated much of the president’s power as well. They stole power from him while stealing money from my investors. In Russia, your enemy’s enemy is your friend, and even though I’ve never met Putin, he would often step into my battles with the oligarchs and crack down on them.

That all changed in July 2003, when Putin arrested Russia’s biggest oligarch and richest man, Mikhail Khodorkovsky. Putin grabbed Khodorkovsky off his private jet, took him back to Moscow, put him on trial, and allowed television cameras to film Khodorkovsky sitting in a cage right in the middle of the courtroom. That image was extremely powerful, because none of the other oligarchs wanted to be in the same position. After Khodorkovsky’s conviction, the other oligarchs went to Putin and asked him what they needed to do to avoid sitting in the same cage as Khodorkovsky. From what followed, it appeared that Putin’s answer was, “Fifty percent.” He wasn’t saying 50 percent for the Russian government or the presidential administration of Russia, but 50 percent for Vladimir Putin personally. From that moment on, Putin became the biggest oligarch in Russia and the richest man in the world, and my anti-corruption activities would no longer be tolerated.

The results of this change came very quickly. On November 13, 2005, as I was flying into Moscow from a weekend away, I was stopped at Sheremetyevo airport, detained for 15 hours, deported, and declared a threat to national security.

Eighteen months after my expulsion a pair of simultaneous raids took place in Moscow. Over 25 Interior Ministry officials barged into my Moscow office and the office of the American law firm that represented me. The officials seized all the corporate documents connected to the investment holding companies of the funds that I advised. I didn’t know the purpose of these raids so I hired the smartest Russian lawyer I knew, a 35-year-old named Sergei Magnitsky. I asked Sergei to investigate the purpose of the raids and try to stop whatever illegal plans these officials had.

Sergei went out and investigated. He came back with the most astounding conclusion of corporate identity theft: The documents seized by the Interior Ministry were used to fraudulently re-register our Russian investment holding companies to a man named Viktor Markelov, a known criminal convicted of manslaughter. After more digging, Sergei discovered that the stolen companies were used by the perpetrators to misappropriate $230 million of taxes that our companies had paid to the Russian government in the previous year.

I had always thought Putin was a nationalist. It seemed inconceivable that he would approve of his officials stealing $230 million from the Russian state. Sergei and I were sure that this was a rogue operation and if we just brought it to the attention of the Russian authorities, the “good guys” would get the “bad guys” and that would be the end of the story.

We filed criminal complaints with every law enforcement agency in Russia, and Sergei gave sworn testimony to the Russian State Investigative Committee (Russia’s FBI) about the involvement of officials in this crime.

However, instead of arresting the people who committed the crime, Sergei was arrested. Who took him? The same officials he had testified against. On November 24, 2008, they came to his home, handcuffed him in front of his family, and threw him into pre-trial detention.

Sergei’s captors immediately started putting pressure on him to withdraw his testimony. They put him in cells with 14 inmates and eight beds, leaving the lights on 24 hours a day to impose sleep deprivation. They put him in cells with no heat and no windowpanes, and he nearly froze to death. They put him in cells with no toilet, just a hole in the floor and sewage bubbling up. They moved him from cell to cell in the middle of the night without any warning. During his 358 days in detention he was forcibly moved multiple times.

They did all of this because they wanted him to withdraw his testimony against the corrupt Interior Ministry officials, and to sign a false statement that he was the one who stole the $230 million—and that he had done so on my instruction.

Sergei refused. In spite of the grave pain they inflicted upon him, he would not perjure himself or bear false witness.

After six months of this mistreatment, Sergei’s health seriously deteriorated. He developed severe abdominal pains, he lost 40 pounds, and he was diagnosed with pancreatitis and gallstones and prescribed an operation for August 2009. However, the operation never occurred. A week before he was due to have surgery, he was moved to a maximum security prison called Butyrka, which is considered to be one of the harshest prisons in Russia. Most significantly for Sergei, there were no medical facilities there to treat his medical conditions.

At Butyrka, his health completely broke down. He was in agonizing pain. He and his lawyers wrote 20 desperate requests for medical attention, filing them with every branch of the Russian criminal justice system. All of those requests were either ignored or explicitly denied in writing.

imgarcade

After more than three months of untreated pancreatitis and gallstones, Sergei Magnitsky went into critical condition. The Butyrka authorities did not want to have responsibility for him, so they put him in an ambulance and sent him to another prison that had medical facilities. But when he arrived there, instead of putting him in the emergency room, they put him in an isolation cell, chained him to a bed, and eight riot guards came in and beat him with rubber batons.

That night he was found dead on the cell floor.

Sergei Magnitsky died on November 16, 2009, at the age of 37, leaving a wife and two children.

I received the news of his death early the next morning. It was by far the most shocking, heart-breaking, and life-changing news I’ve ever received.

Sergei Magnitsky was murdered as my proxy. If Sergei had not been my lawyer, he would still be alive today.

That morning I made a vow to Sergei’s memory, to his family, and to myself that I would seek justice and create consequences for the people who murdered him. For the last seven and a half years, I’ve devoted my life to this cause.

Even though this case was characterized by injustice all the way through, the circumstances of Sergei’s torture and death were so extreme that I was sure some people would be prosecuted. Unlike other deaths in Russian prisons, which are largely undocumented, Sergei had written everything down. In his 358 days in detention, Sergei wrote over 400 complaints detailing his abuse. In those complaints he described who did what to him, as well as where, how, when, and why. He was able to pass his hand-written complaints to his lawyers, who dutifully filed them with the Russian authorities. Although his complaints were either ignored or rejected, copies of them were retained. As a result, we have the most well-documented case of human rights abuse coming out of Russia in the last 35 years.

When I began the campaign for justice with this evidence, I thought that the Russian authorities would have no choice but to prosecute at least some of the officials involved in Sergei Magnitsky’s torture and murder. It turns out I could not have been more wrong. Instead of prosecuting, the Russian authorities circled the wagons and exonerated everybody involved. They even went so far as to offer promotions and state honors to those most complicit in Sergei’s persecution.

It became obvious that if I was going to get any justice for Sergei Magnitsky, I was going to have to find it outside of Russia.

But how does one get justice in the West for a murder that took place in Russia? Criminal justice is based on jurisdiction: One cannot prosecute someone in New York for a murder committed in Moscow. As I thought about it, the murder of Sergei Magnitsky was done to cover up the theft of $230 million from the Russian Treasury. I knew that the people who stole that money wouldn’t keep it in Russia. As easily as they stole the money, it could be stolen from them. These people keep their ill-gotten gains in the West, where property rights and rule of law exist. This led to the idea of freezing their assets and banning their visas here in the West. It would not be true justice but it would be much better than the total impunity they enjoyed.

In 2010, I traveled to Washington and told Sergei Magnitsky’s story to Senators Benjamin Cardin and John McCain. They were both shocked and appalled and proposed a new piece of legislation called The Sergei Magnitsky Rule of Law Accountability Act. This would freeze assets and ban visas for those who killed Sergei as well as other Russians involved in serious human rights abuse.

Despite the White House’s desire to reset relations with Russia at the time, this case shined a bright light on the criminality and impunity of the Putin regime and persuaded Congress that something needed to be done. In November 2012 the Magnitsky Act passed the House of Representatives by 364 to 43 votes and later the Senate 92 to 4 votes. On December 14, 2012, President Obama signed the Sergei Magnitsky Act into law.

Putin was furious. Looking for ways to retaliate against American interests, he settled on the most sadistic and evil option of all: banning the adoption of Russian orphans by American families.

This was particularly heinous because of the effect it had on the orphans. Russia did not allow the adoption of healthy children, just sick ones. In spite of this, American families came with big hearts and open arms, taking in children with HIV, Down syndrome, Spina Bifida and other serious ailments. They brought them to America, nursed them, cared for them and loved them. Since the Russian orphanage system did not have the resources to look after these children, many of those unlucky enough to remain in Russia would die before their 18th birthday. In practical terms, this meant that Vladimir Putin sentenced his own, most vulnerable and sick Russian orphans to death in order to protect corrupt officials in his regime.

Why did Vladimir Putin take such a drastic and malicious step?

For two reasons. First, since 2012 it’s emerged that Vladimir Putin was a beneficiary of the stolen $230 million that Sergei Magnitsky exposed. Recent revelations from the Panama Papers have shown that Putin’s closest childhood friend, Sergei Roldugin, a famous cellist, received $2 billion of funds from Russian oligarchs and the Russian state. It’s commonly understood that Mr. Roldugin received this money as an agent of Vladimir Putin. Information from the Panama Papers also links some money from the crime that Sergei Magnitsky discovered and exposed to Sergei Roldugin. Based on the language of the Magnitsky Act, this would make Putin personally subject to Magnitsky sanctions.

This is particularly worrying for Putin, because he is one of the richest men in the world. I estimate that he has accumulated $200 billion of ill-gotten gains from these types of operations over his 17 years in power. He keeps his money in the West and all of his money in the West is potentially exposed to asset freezes and confiscation. Therefore, he has a significant and very personal interest in finding a way to get rid of the Magnitsky sanctions.

The second reason why Putin reacted so badly to the passage of the Magnitsky Act is that it destroys the promise of impunity he’s given to all of his corrupt officials.

There are approximately ten thousand officials in Russia working for Putin who are given instructions to kill, torture, kidnap, extort money from people, and seize their property. Before the Magnitsky Act, Putin could guarantee them impunity and this system of illegal wealth accumulation worked smoothly. However, after the passage of the Magnitsky Act, Putin’s guarantee disappeared. The Magnitsky Act created real consequences outside of Russia and this created a real problem for Putin and his system of kleptocracy.

For these reasons, Putin has stated publicly that it was among his top foreign policy priorities to repeal the Magnitsky Act and to prevent it from spreading to other countries. Since its passage in 2012, the Putin regime has gone after everybody who has been advocating for the Magnitsky Act.

One of my main partners in this effort was Boris Nemtsov. Boris testified in front of the U.S. Congress, the European Parliament, the Canadian Parliament, and others to make the point that the Magnitsky Act was a “pro-Russian” piece of legislation because it narrowly targeted corrupt officials and not the Russian people. In 2015, Boris Nemtsov was murdered on the bridge in front of the Kremlin.

Boris Nemtsov’s protégé, Vladimir Kara-Murza, also traveled to law-making bodies around the world to make a similar case. After Alexander Bastrykin, the head of the Russian Investigative Committee, was added to the Magnitsky List in December of 2016, Vladimir was poisoned. He suffered multiple organ failure, went into a coma and barely survived.

The lawyer who represented Sergei Magnitsky’s mother, Nikolai Gorokhov, has spent the last six years fighting for justice. This spring, the night before he was due in court to testify about the state cover up of Sergei Magnitsky’s murder, he was thrown off the fourth floor of his apartment building. Thankfully he survived and has carried on in the fight for justice.

I’ve received many death threats from Russia. The most notable one came from Russian Prime Minister Dmitry Medvedev at the World Economic Forum in Davos, Switzerland, in 2013. When asked by a group of journalists about the death of Sergei Magnitsky, Medvedev replied, “It’s too bad that Sergei Magnitsky is dead and Bill Browder is still alive and free.” I’ve received numerous other death threats from Russian sources through text messages, emails, and voicemails. U.S. government sources have warned me about a planned Russian rendition against me. These threats were in addition to numerous unsuccessful attempts that the Russian government has made to arrest me using Interpol or other formal legal assistance channels.

The Russian government has also used its resources and assets to try to repeal the Magnitsky Act. One of the most shocking attempts took place in the spring and summer of last year when a group of Russians went on a lobbying campaign in Washington to try to repeal the Magnitsky Act by changing the narrative of what had happened to Sergei. According to them, Sergei wasn’t murdered and he wasn’t a whistle-blower, and the Magnitsky Act was based on a false set of facts. They used this story to try to have Sergei’s name taken off of the Global Magnitsky Act that passed in December 2016. They were unsuccessful.

Who was this group of Russians acting on behalf of the Russian state? Two men named Pyotr and Denis Katsyv, a woman named Natalia Veselnitskaya, and a large group of American lobbyists, all of whom are described below.

Pyotr Katsyv, father to Denis Katsyv, is a senior Russian government official and well-placed member of the Putin regime; Denis Katsyv was caught by U.S. law enforcement using proceeds from the crime that Sergei Magnitsky uncovered to purchase high-end Manhattan real estate (the case recently settled with the Katsyv’s paying $6 million to the U.S. government). Natalia Veselnitskaya was their lawyer.

In addition to working on the Katsyv’ s money laundering defense, Ms. Veselnitskaya also headed the aforementioned lobbying campaign to repeal the Magnitsky Act. She hired a number of lobbyists, public relations executives, lawyers, and investigators to assist her in this task.

Her first step was to set up a fake NGO that would ostensibly promote Russian adoptions, although it quickly became clear that the NGO’s sole purpose was to repeal the Magnitsky Act. This NGO was called the Human Rights Accountability Global Initiative Foundation (HRAGI). It was registered as a corporation in Delaware with two employees on February 18, 2016. HRAGI was used to pay Washington lobbyists and other agents for the anti-Magnitsky campaign. (HRAGI now seems to be defunct, with taxes due.)

Through HRAGI, Rinat Akhmetshin, a former Soviet intelligence officer naturalised as an American citizen, was hired to lead the Magnitsky repeal effort. Mr. Akhmetshin has been involved in a number of similar campaigns where he’s been accused of various unethical and potentially illegal actions like computer hacking.

Veselnitskaya also instructed U.S. law firm Baker Hostetler and their Washington, D.C.-based partner Marc Cymrot to lobby members of Congress to support an amendment taking Sergei Magnitsky’s name off the Global Magnitsky Act. Mr. Cymrot was in contact with Paul Behrends, a congressional staffer on the House Foreign Affairs Committee at the time, as part of the anti-Magnitsky lobbying campaign.

Veselnitskaya, through Baker Hostetler, hired Glenn Simpson of the firm Fusion GPS to conduct a smear campaign against me and Sergei Magnitsky in advance of congressional hearings on the Global Magnitsky Act. He contacted a number of major newspapers and other publications to spread false information that Sergei Magnitsky was not murdered, was not a whistle-blower, and was instead a criminal. They also spread false information that my presentations to lawmakers around the world were untrue.

As part of Veselnitskaya’s lobbying, a former Wall Street Journal reporter, Chris Cooper of the Potomac Group, was hired to organize the Washington, D.C.-based premiere of a fake documentary about Sergei Magnitsky and myself. This was one the best examples of Putin’s propaganda.

They hired Howard Schweitzer of Cozzen O’Connor Public Strategies and former Congressman Ronald Dellums to lobby members of Congress on Capitol Hill to repeal the Magnitsky Act and to remove Sergei’s name from the Global Magnitsky bill.

On June 13, 2016, they funded a major event at the Newseum to show their fake documentary, inviting representatives of Congress and the State Department to attend.

While they were conducting these operations in Washington, D.C., at no time did they indicate that they were acting on behalf of Russian government interests, nor did they file disclosures under the Foreign Agent Registration Act.

United States law is very explicit that those acting on behalf of foreign governments and their interests must register under FARA so that there is transparency about their interests and their motives.

Since none of these people registered, my firm wrote to the Department of Justice in July 2016 and presented the facts.

I hope that my story will help you understand the methods of Russian operatives in Washington and how they use U.S. enablers to achieve major foreign policy goals without disclosing those interests. I also hope that this story and others like it may lead to a change in the FARA enforcement regime in the future.

Thank you.

 


Secret Service has Large Quiet Office in Hoover, Alabama

Primer: The U.S. Secret Service maintains Electronic Crimes Task Forces, which focus on identifying and locating international cyber criminals connected to cyber intrusions, bank fraud, data breaches, and other computer-related crimes. The Secret Service’s Cyber Intelligence Section has directly contributed to the arrest of transnational cyber criminals responsible for the theft of hundreds of millions of credit card numbers and the loss of approximately $600 million to financial and retail institutions. The Secret Service also runs the National Computer Forensic Institute, which provides law enforcement officers, prosecutors, and judges with cyber training and information to combat cyber crime.

HOOVER, Ala. — The classrooms, tucked above a municipal court here in the Birmingham suburbs, are a long way from the White House. But walk through a set of secured doors and into the futuristic-looking work space, and you will find an important wager by the agency best known for protecting presidents, the Secret Service.

Only it has almost nothing to do with earpiece-wearing agents or armored cars.

Though the Secret Service may be better known for keeping government executives safe, it also has a mandate to investigate and fight financial and other cybercrimes. And in an era of overworked protection details and nonstop cybercrime, it could use some help.

So here at the National Computer Forensics Institute, the pupils are hardened police officers, prosecutors and, occasionally, a judge. Instruction mimics what the agency teaches its own special agents. And tuition is not only free, but the Secret Service throws in travel, room, board and, for police officers, tens of thousands of dollars of technology to set up their own forensics labs back home.

Data is extracted from mobile phones for use in a class on prosecution in Hoover. Kevin D. Liles for The New York Times

In exchange, the Secret Service has quietly empowered a network of thousands of law enforcement officers across the country capable of processing digital evidence and indebted to the agency that taught them.

“The threat nature has increased in the world, and the threats are all more and more integrated with the digital world,” said Ben Bass, the special agent in charge of the institute. “So assimilating that into what we do is really important.”

The institute opened in 2008 as a partnership between the Secret Service and the state of Alabama, which contributed space and money for its construction. At the time, few state and local law enforcement agencies had the capability to process digital evidence found on computers and cellphones, even as it was exploding in volume and importance. That left agencies heavily reliant on the Secret Service and the F.B.I. for processing and created a years long backlog in many cases.

The Secret Service reasoned that it would be critical to the future of its mission — not to mention the effectiveness of local and state law enforcement — to try to change that. The program remains the only one of its kind and scale in the country.

Though its protective mission occupies the public’s attention, the Secret Service has been investigating crimes since 1865, when President Lincoln saw the need to create a small force of investigators within the Treasury Department to combat counterfeit currency that was undermining American markets. That mandate has changed and widened in the decades since, along with threats to the country’s financial systems, and the agency now investigates bank fraud, credit card fraud, identity theft, child exploitation as well as counterfeiting.

It does so with a reasonably small force. The majority of the Secret Service’s 3,300 agents work out of field offices. The F.B.I., by comparison, has more than 13,000. To amplify its effect, the agency relies on dozens of electronic and financial crimes task forces across the country, where local and state law officers and people in academia and businesses work alongside its own agents.

The help has arrived at the right time for the agency, where in recent years low morale, high attrition and more people to protect in more places have conspired to pinch resources. Because protection is a nonnegotiable task, investigations often take the hit.

The effect can be significant. In the 2016 fiscal year, the agency spent 65 percent of its time on protection and 35 percent on investigative work, according to calculations it shared with members of the House Oversight Committee. That was an election year, when protection demands are highest. But it appears the ratio for this fiscal year — which only included the last month or so of the campaign — has not changed much, with 60 percent of time going to protection through the end of May. Typically it would be about 40 percent for a post-campaign fiscal year.

Robert Novy, the deputy assistant director for investigations, said the task forces help ensure that cases continue to move forward regardless of protection demands. He also said that they have begun to free the Secret Service’s own staff to focus on larger-scale cyberthreats and high-dollar financial crimes.

“By elevating their capacities and capabilities, it allows us to focus on finding ways to counter more significant financial threats,” Mr. Novy said.

Still, building the program has proved challenging. A decade after it first opened its doors, the institute trains about 1,100 people a year. But it is running at between 30 percent and 40 percent of capacity because of a shortage of federal funds. For some programs, would-be enrollees can wait as long as three years.

Its financial outlook remains uncertain. President Trump’s 2018 budget proposal zeroed out the program, though Randolph D. Alles, the agency’s new director, told lawmakers last month that he considered it “critical” to the agency and would move money from elsewhere in his budget to pay for it if need be. At the same time, lawmakers in the House and Senate have introduced legislation that could stabilize its funding.

The institute’s finances appeared to be on few minds on a recent early summer day in Hoover, where a class of two dozen prosecutors sat in neat classroom rows, computers humming beside their feet, as data from the cellphone of a fictitious drug smuggler flashed onto their computer screens. The evidence was all there in ordered folders: call logs, texts, even compromising photographs of a would-be drug dealer, made visible by powerful software and a few patient instructors.

One room away and a few hours later, two dozen police officers packed into a wood-trimmed mock courtroom listened to another instructor hold forth from the witness stand on the ins and outs of being a good forensics witness. The key, he said, is balancing the use of technical details like “master boot records” and “disk partitions” with the bigger picture a less tech-savvy jury can more easily grasp.

“I need to be able to understand it so I can translate it when I go before a panel of 12 people,” said Jennifer Eugene, a prosecutor from New Jersey, describing her experience in front of a jury. “The law has not caught up with where the technology is.”

A five-week course for police on the basics of computer evidence recovery is the most popular, and graduates of the course leave here with $28,000 worth of technology and the ability to search seized computers for evidence of a crime. A similar course on mobile devices is growing in popularity. And more advanced courses cover network intrusion.

Prosecutors and judges can take shorter courses meant to familiarize them with digital evidence, which is still relatively new to many courtrooms.

But the mutual benefits of the program were on display, too. Frank Garibay, a detective with the San Antonio Police Department who had returned to the institute as a proctor after taking coursework himself, said his training here had transformed what his department could do.

It had also meant that when officials from the Texas Rangers and Homeland Security Investigations zeroed in on an illegal gambling ring in Texas, they could turn to the Secret Service’s San Antonio-based electronic crimes task force, including Mr. Garibay, for help.

The Secret Service paid for members of its task force to travel to the small South Texas town of Falfurrias for a weekend to set up a war room to process digital evidence.

The operation ended up taking down about a dozen illegal casinos, recovered almost $6 million, exposed drug and human trafficing rings, and ultimately public corruption.

 

July 27th the Next N. Korea Missile Launch?

US sees more signs North Korea is preparing another missile test

(CNN)North Korea appears to be preparing for another missile test, according to a US Defense official. The official said that transporter vehicles carrying ballistic missile launching equipment were seen arriving in Kusong, North Korea on Friday.

Infographic: Here's how missiles send deadly explosive payloads to targets around the world.
Source SPACE.com: All about our solar system, outer space and exploration

The official said that when such equipment is seen, a launch could occur within six days, which would coincide with the upcoming July 27 North Korean Holiday celebrating the armistice which ended the Korean War.
Last Wednesday, CNN reported that US intelligence indicated that North Korea is making preparations for another intercontinental ballistic missile (ICBM) or intermediate range missile test. Two administration officials familiar with the latest intelligence confirmed they’d seen indicators of test preparations. US satellites have detected new imagery and satellite-based radar emissions indicating that North Korea may be testing components and missile control facilities for another ICBM or intermediate launch, officials say.

(CNN)Hawaii is set to become the first state in the US to test an “attack- warning” system in the event of a North Korean nuclear missile strike.

Starting in November, Hawaii’s disaster warning plan will include a new protocol in case of a nuclear attack, CNN affiliate KNHL reports. But some are concerned the announcement will scare off tourists from visiting the island.
A “guidance summary” from the Hawaii Emergency Management Agency says residents will be alerted of nuclear detonation through siren alarms and flashing white lights. An Emergency Alert System will broadcast over television and radio frequencies as well. More here.
Kusong has been the site of North Korean missile tests in the past, including a May test of a KN-17 intermediate range missile which traveled almost 500 miles before splashing down in the Sea of Japan/East Sea, hitting the water about 60 miles from Vladivostok in eastern Russia, according to US officials.
The last major North Korean missile test took place on July 4, when Pyongyang launched what the US assessed to be an intercontinental ballistic missile.
***
The US military has grown increasingly concerned about the increased pace of North Korean missile testing while simultaneously underscoring that the US is capable of defending itself and its allies from North Korean missiles.
“They’re clearly on a path to develop an intercontinental ballistic missile that can reach the reach the United States and to match that with a nuclear weapon,” the Chairman of the Joint Chiefs of Staff, Gen. Joseph Dunford, told an audience Saturday at the Aspen Security Forum.
“What the North Koreans are capable of today is limited missile attack and we are capable of defending against a limited missile attack for our forces in South Korea, our South Korean allies, our Japanese allies, our forces in Okinawa, our forces in Guam and the American homeland,” Dunford added.
On Thursday, CIA Director Mike Pompeo offered some of the most aggressive comments yet from the Trump administration with regard to North Korean dictator Kim Jong Un.
“It would be a great thing to denuclearize the peninsula, to get those weapons off of that, but the thing that is most dangerous about it is the character who holds the control over them today,” Pompeo said at the Aspen Security Forum.
“As for the regime, I am hopeful we will find a way to separate that regime from this system,” Pompeo said. “The North Korean people I’m sure are lovely people and would love to see him go.”

Kushner’s Testimony to Senate Senate Intel Committee Staffers

Jared Kushner tells Congress: “I did not collude”

Axios: Giving his version of his Russia contacts for the first time, Jared Kushner says in an 11-page statement to congressional committees that he had “hardly any” contacts with Russians during the campaign, and regarded the meeting with a Russian lawyer at Trump Tower as “a waste of our time.”

  • Key quote: “I did not collude, nor know of anyone else in the campaign who colluded, with any foreign government. I had no improper contacts. I have not relied on Russian funds to finance my business activities in the private sector. I have tried to be fully transparent with regard to the filing of my SF-86 [security clearance] form, above and beyond what is required.”
  • Why it matters: The stakes for the congressional interviews are high for Kushner because the Trump son-in-law is of acute interest to special counsel Bob Mueller, and prosecutors can be expected to pick apart today’s statement.
  • Kushner has a 10 a.m.appointment with staff of the Senate Intelligence Committee, and his meeting tomorrow with the House Intelligence Committee. Both sessions are behind closed doors.

The most colorful passage: “[I]n looking for a polite way to leave and get back to my work,” he says in the statement, “I actually emailed an assistant from the meeting after I had been there for ten or so minutes and wrote ‘Can u pls call me on my cell? Need excuse to get out of meeting.’ I had not met the attorney before the meeting nor spoken with her since. I thought nothing more of this short meeting until it came to my attention recently.”

Another highlight: “With respect to my contacts with Russia or Russian representatives during the campaign, there were hardly any. … [T]he day after the election, I could not even remember the name of the Russian Ambassador. … I sent an email asking [Dmitri Simes of the Center for the National Interest, which hosted a Trump foreign policy speech], ‘What is the name of the Russian ambassador?'”

Other key points:

  • “When it became apparent that my father-in-law was going to be the Republican nominee for President, as normally happens, a number of officials from foreign countries attempted to reach out to the campaign. My father-in-law asked me to be a point of contact with these foreign countries. … [O]ver the course of the campaign, I had incoming contacts with people from approximately 15 countries.”
  • “I called on a variety of people with deep experience, such as Dr. Henry Kissinger, for advice on policy for the candidate, which countries/representatives with which the campaign should engage, and what messaging would resonate.”
  • “The first [campaign contact] that I can recall was at the Mayflower Hotel in Washington, D.C. in April 2016. … [T]he host of the event, Dimitri Simes, … introduced me to several guests, among them four ambassadors, including Russian Ambassador Sergey Kislyak. With all the ambassadors, including Mr. Kislyak, we shook hands, exchanged brief pleasantries.”
  • “Reuters news service has reported that I had two calls with Ambassador Kislyak at some time between April and November of 2016. While I participated in thousands of calls during this period, I do not recall any such calls with the Russian Ambassador. We have reviewed the phone records available to us and have not been able to identify any calls to any number we know to be associated with Ambassador Kislyak and I am highly skeptical these calls took place.”
  • “I had no ongoing relationship with the Ambassador before the election, and had limited knowledge about him.”
  • “The only other Russian contact during the campaign is one I did not recall at all until I was reviewing documents and emails in response to congressional requests for information.”
  • That was the Trump Tower meeting, and he said the invitation from Donald Trump Jr. “was on top of a long [email] back and forth that I did not read at the time. … Documents confirm my memory that this was calendared as ‘Meeting: Don Jr.| Jared Kushner.’ No one else was mentioned.”
  • “There was one more possible contact that I will note. On October 30, 2016, I received a random email from the screenname ‘Guccifer400.’ This email, which I interpreted as a hoax, was an extortion attempt and threatened to reveal candidate Trump’s tax returns and demanded that we send him 52 bitcoins in exchange for not publishing that information. I brought the email to the attention of a U.S. Secret Service agent on the plane we were all travelling on and asked what he thought. He advised me to ignore it and not to reply — which is what I did. The sender never contacted me again.”
  • “On November 16, 2016, my assistant received a request for a meeting from the Russian Ambassador. … The [Dec. 1] meeting occurred in Trump Tower, where we had our transition office, and lasted twenty [to] thirty minutes. Lt. General Michael Flynn (Ret.), who became the President’s National Security Advisor, also attended.
  • “I believed developing a thoughtful approach on Syria was a very high priority given the ongoing humanitarian crisis, and I asked if they had an existing communications channel at his embassy we could use where they would be comfortable transmitting the information they wanted to relay to General Flynn. The Ambassador said that would not be possible and so we all agreed that we would receive this information after the Inauguration. Nothing else occurred. I did not suggest a ‘secret back channel.'”
  • “My assistant reported that the Ambassador had requested that I meet with a person named Sergey Gorkov who he said was a banker and someone with a direct line to the Russian President who could give insight into how Putin was viewing the new administration and best ways to work together. I agreed to meet Mr. Gorkov because the Ambassador has been so insistent, said he had a direct relationship with the President, and because Mr. Gorkov was only in New York for a couple days.”
  • “The [Dec. 13] meeting with Mr. Gorkov lasted twenty to twenty-five minutes. … At no time was there any discussion about my companies, business transactions, real estate projects, loans, banking arrangements or any private business of any kind.”
  • “There has been a good deal of misinformation reported about my SF-86 [security clearance] form. As my attorneys and I have previously explained, my SF-86 application was prematurely submitted due to a miscommunication and initially did not list any contacts (not just with Russians) with foreign government officials.”
  • “[P]eople at my New York office were helping me find the information, organize it, review it and put it into the electronic form. They sent an email to my assistant in Washington, communicating that the changes to one particular section were complete; my assistant interpreted that message as meaning that the entire form was completed.
  • “At that point, the form was a rough draft and still had many omissions including not listing any foreign government contacts and even omitted the address of my father-in-law (which was obviously well known). Because of this miscommunication, my assistant submitted the draft on January 18, 2017.”
  • “The very next day, January 19, 2017, we submitted supplemental information to the transition, which confirmed receipt and said they would immediately transmit it to the FBI.”