Category Archives: Department of Defense

2 Iranians Charged with Stealing Terabytes of National Security Data

Posted on by

JTN: Two Iranian nationals have been charged in connection with an intermittently state-sponsored campaign to target computers inside the United States, Europe and the Middle East, the Department of Justice announced Wednesday. The cyber-intruders acted at times on behalf of the Islamic Republic of Iran, the DOJ said.

iranian-hackers.png photo

In a 10-count indictment dated Sept. 15, Iranians Hooman Heidarian, 30, and Mehdi Farhadi, 34, were charged with stealing hundreds of terabytes of data. The purloined data included a range of confidential documents pertaining to national security, foreign policy intelligence, aerospace data, and unpublished scientific research, the DOJ said.

“In some instances, the defendants’ hacks were politically motivated or at the behest of Iran, including instances where they obtained information regarding dissidents, human rights activists, and opposition leaders,” the DOJ wrote in a Wednesday statement. “In other instances, the defendants sold the hacked data and information on the black market for private financial gain.”

The alleged perpetrators selected their victims after conducting “online reconnaissance” to target the victims’ areas of expertise, the DOJ wrote.

“Unfortunately, our cases demonstrate that at least four nations — Iran, China, Russia and North Korea — will allow criminal hackers to victimize individuals and companies from around the world, as long as these hackers will also work for that country’s government — gathering information on human rights activists, dissidents and others of intelligence interest,” Assistant Attorney General for National Security John C. Demers said in a statement. ” Today’s defendants will now learn that such service to the Iranian regime is not an asset, but a criminal yoke that they will now carry until the day they are brought to justice.”

Venezuela Arrests an American Spy at Oil Refinery

Posted on by

Primer: He’s a marine who has served at CIA bases in Iraq and was found with specialized weapons and a large amount of USD. In April of 2020:

(Reuters) – Venezuela has received refining materials via plane shipment from Iran to help it start the catalytic cracking unit at the 310,000 barrels-per-day Cardon refinery, which is necessary to produce gasoline, an official said on Thursday.

The shipments mark a new stage in cooperation between the two OPEC nations that are both facing crippling U.S. sanctions, with their levels of oil production and exports declining in recent years due in part to the pressure from Washington.

Erling Rojas, vice minister for refining and petrochemicals in Venezuela’s Oil Ministry, announced the arrival of the material on Twitter. “Thanks to the support of our allies in the Islamic Republic of Iran,” he tweeted.

***

Word of the alleged U.S. spy came after a Venezuelan court last month sentenced two former U.S. Green Berets to 20 years in prison for their role in a failed incursion in May.

Separately during Friday’s broadcast, Maduro said that in recent days security forces had also foiled a plot to cause an explosion at another oil refinery, El Palito in Carabobo state. He did not elaborate.

The President of Venezuela, Nicolás Maduro, announced on Friday the arrest of an alleged “American spy”, who was reportedly arrested near the largest oil refinery complex in the country. The alleged spy, who has not been named, was reportedly in the vicinity of the Paraguaná Refinery Complex, which is known as the third largest refinery complex in the world. It combines the Amuay, Bajo Grande and Cardón refineries, which together produce nearly a third of Venezuela’s daily oil output.

Venezuelan Cardón Refinery paralyzes crude processing ...

During a live address on Venezuelan national television, Maduro said an American citizen had been arrested on Thursday in Falcon State, in Venezuela’s northeast. Falcon is the site of the Amuay and Cardón oil refineries and much of the local population is employed in the state-owned oil industry. The Venezuelan president said the alleged spy is “a marine” who was “serving on [Central Intelligence Agency] bases in Iraq” prior to arriving in Venezuela. He added that the alleged spy was “captured with large amounts of cash, large quantities of dollars and other items”. He did not elaborate further, but said the detainee was in the process of “giving a statement in custody”.

Maduro also said that Venezuelan security forces had foiled a separate plot to bomb El Palito, which is another oil refinery, located in Carabobo State. He then urged workers in oil refineries to “be on alert” in case more attacks are planned. Venezuela’s oil production has fallen to nearly a third of its peak output in 2009, when the country was producing 3.2 million barrels per day. The government blames the oil shortage on acts of sabotage from domestic and foreign enemies of President Maduro, but opposition parties claim that mismanagement and corruption are behind the demise of the Venezuelan oil industry.

Earlier this year, a Venezuelan court sentenced two American former servicemen to 20 years in prison for their role in what the Venezuelan media refer to as “enfrentamiento en El Junquito” (“El Junquito raid”), or “Operación GEDEÓN”. GEDEÓN refers to a failed coup plot carried out on May 3 and 4, 2020, by a group of up to 60 armed men. It is alleged that the coup was masterminded by Major General Clíver Alcalá Cordones, a retired member of Venezuela’s Bolivarian Army, with the support of Silvercorp USA, a private security group led by Jordan Goudreau, a Canadian-born former sergeant in the US Green Berets. The United States government has denied involvement in the coup plot.

N. Korea has 60 Nuclear Bombs, 5000 tons of Chemical Weapons

Posted on by

An Army report has the following information in part regarding North Korea:

A new assessment made by the United States Department of the Army estimates that the North Korean regime is in possession of massive amounts of conventional and non-conventional weapons that they are “highly likely” to use in specific circumstances, according to the Yonhap News Agency.

The assessment was published in a report entitled “North Korean Tactics,” and attributes North Korea’s huge armaments program to a desire to “prevent other countries from contemplating regime change.” Apparently, Kim Jong-un, the North Korean dictator, took note of what happened to his Libyan counterpart Muammar Gaddafi and “does not want something similar to happen” to him. (Gaddafi was killed by rebel Libyan forces, after a multi-national force including NATO countries attacked Libya with the stated goal of imposing an arms embargo, sanctions, and an assets freeze against regime leaders.)

According to the report, North Korea already has between 20 and 60 nuclear bombs and “the capacity to produce six new devices each year.” It also boasts the world’s third-largest stockpile of chemical weapons – between 2,500 and 5,000 tons of various substances – and is engaged in research into biological warfare as well. “Only one kilogram of anthrax could kill up to 50,000 people in Seoul,” the capital of South Korea, the report’s authors note.

Another ongoing source of concern is North Korea’s Cyber Warfare Guidance Unit, which employs over 6,000 computer hackers who “can successfully conduct invasive computer warfare activities from the safety of its own territory.” North Korean operatives are known to already be operating in several foreign countries including Belarus, China, India, Malaysia, and Russia.

Negotiations between the United States and North Korea broke down entirely following an unproductive summit between Kim Jong-un and US President Donald Trump in February, 2019.

Further details in the report to Congress includes:

North Korea’s military “uses tactics based on former Soviet or current Russian doctrine, Chinese developments, lessons learned, and observation of recent military actions,” according to a new US Army manual on the subject.

“While North Korea maintains large amounts of military equipment, much of it is outdated making it quantitatively superior to most armies but qualitatively inferior,” the new manual said. See North Korean Tactics, Army Techniques Publication (ATP) 7-100.2, 24 July 2020.

But North Korea has proved resourceful in other areas, including offensive cyber warfare.

“The primary organization responsible for computer warfare in North Korea is Bureau 121, which fielded at least 1,000 elite hackers in 2010 who focused on other countries’ computer systems. This number is likely much higher now” and includes “cyberspace teams [deployed] in foreign countries.”

And not least of all, “The country’s possession of a nuclear arsenal and its pursuit of missile technology are attempts to ensure that external powers do not interfere with its internal affairs for fear of a nuclear reprisal,” the Army manual said.

 

“North Korea is constantly adapting and evolving its capabilities,” the Army said.

***

Formed in the late 1990s, Bureau 121 is unit 121 of the General Bureau of Reconnaissance in North Korea’s military. (now made up of 6000 hackers)

Part of the unit is sometimes known as the DarkSeoul Gang, according to a report by Reuters.

Despite being one of the poorest countries in the world, North Korea puts a lot of its cash into Bureau 121.

North Korea is still technically at war with South Korea and cyber-warfare is arguably its best weapon. Coming from a defector in 2015, more details were provided to the BBC.

There is an official training school for the younger hacking applicants.

North Korea's Bureau 21 cyber-warriors trained up for ... source

Students sent to the Military school after graduating from Geumseong Middle School in the capital. A report into the cyber threat written by US Major Steve Sin in 2009 revealed Unit 121 had a base in Chilbosan Hotel, in Shenyang, China, from where could launch its attacks.The 164-room three star hotel – which is jointly owned by the North Koreans and Chinese. More details here. 

Looming Military Conflict in S China Sea?

Posted on by

Chinese military journalists are publicly urging the People’s Liberation Army (PLA) to prepare immediately for an attack by U.S. forces in the South China Sea. One expert at Zhejiang University’s National Institute for South China Sea Studies, Shi Xiaoqin, claims that the U.S. is deliberately trying to provoke China. They also suggest the regime reinforce Chinese installations on reefs claimed by China.

If this analysis gains traction by Chinese political and military leaders, U.S. military commanders in the South China Sea should plan for the possibility that China might initiate hostilities in keeping with its doctrine of preemptive retaliation, a seeming attempt falsely to claim “self-defense.”

One writer suggests that the PLA should immediately move fighter aircraft to Chinese air bases in the Spratly Islands at Fiery Cross, Subi Reef, and Mischief Reef. He also boldly claims that the augmented presence of U.S. naval and air assets in the South China Sea is no longer just a show of force by America.

Chen Hu, a Chinese military journalist, also asserts that the U.S. is now intent on provoking a conflict and is preparing for battle. Chen claims that the return of B1 bombers to Guam and continued deployment of two U.S. aircraft carrier groups in the South China Sea, despite the conclusion of military exercises, is supposedly a sign of Washington’s aggressive intent. Chen suggests that recent U.S. “Freedom of Navigation” maneuvers and the high number of U.S. surveillance collection missions along the Chinese coast is additional proof of American attack planning. Former PLA officer Wang Yunfei and naval equipment expert suggests that flights by American RC-135, E-8c, and RC-12X surveillance aircraft equate to “pre-battle strategic technical surveillance.” As the joke goes from the children’s playground: “It all started when he hit me back.”

Wang further warns that U.S. President Donald J. Trump is likely to initiate a military conflict in the South China Sea region before the November 3 U.S. presidential election, speculating that “stirring up external frictions, especially military conflicts with China, will help the incumbent president for his re-election campaign.”

The leaders of China’s Communist Party (CCP) also see that nothing was done by anyone, including the U.S., to stop China’s grab of Hong Kong this year — 27 years early. This paralysis of the West must have looked to the CCP like a green light to keep on grabbing.

Wang even lays out his analysis on particular avenues of approach by which U.S. bombers might attack their Chinese targets. Wang, now a Chinese naval specialist, writes that the U.S. will probably ship-launch Tomahawk Cruise against Chinese bases in the South China Sea. He further specifies that the PLA should deploy China’s own aircraft carriers in the south central region of the sea, as the best strategy to counter any U.S. assault. He adds that China must also deploy fighter jets and air defense missiles on various Chinese reefs.

Scarborough Shoal could become a flashpoint for a South ...

Wang singled out the Scarborough Shoal in the South China Sea’s Paracel Island Chain as the most likely initial piece of real estate that the U.S. might seek to seize. The Scarborough (Huangyan) Shoal/Reef is claimed by both China and the Republic of the Philippines. Perhaps one reason why China might expect that Scarborough Shoal is a likely target is that the U.S. wants to re-cement military agreements with the Philippines that would allow American military assets access to Clark Air Force Base, Subic Bay Naval Base and other newer facilities. U.S. support for Manila’s claim to the Scarborough Shoal against China’s might be sufficient to convince the mercurial president of the Philippines, Rodrigo Duterte, to patch up relations with the U.S.

Chinese writer Zheng Hao, who assesses that it is possible that U.S.-Chinese tensions in the South China Sea could escalate into a “hot war,” cites U.S. Secretary of State Mike Pompeo’s July 13 statement that the South China Sea is “not China’s maritime empire” as indicative of the Trump Administration’s hostile intent. Zheng appears to be especially concerned about the July 7 U.S.-Japan naval exercise, which included an operation by the U.S. aircraft carrier Ronald Reagan and two warships of the Japanese Maritime Defense Forces. Zheng laments that the 2018 draft of the Code of Conduct in the South China Sea has not yet been signed by the Association of South East Asian Nations (ASEAN) and China.

One hope to avoid or at least postpone an imminent clash in the South China Sea is for China and the U.S. to activate the crisis prevention apparatus established in November 2014. This diplomatic device includes a Memorandum of Understanding on notification of military activities and rules of behavior designed to keep air and naval encounters peaceful. So far, there is no public acknowledgement that either China or the U.S. is employing the crisis prevention mechanism. One recent sign of efforts by both sides to avoid a military incident was the Pentagon’s August 7 announcement that U.S. Secretary of Defense Mark Esper and his Chinese counterpart, Minister of Defense Wei Fenghe, held a 90-minute teleconference last week.

China, however, has been the party with the hostile intent, not only with Hong Kong, but also with an attack on northern India, an extensive military base build-up in the South China Sea, an attempted appropriation of the Japan-administered Senkaku Islands and a “fishing fleet” of 250 vessels showing up near the Galapagos Islands, off Ecuador. Another recent move from Beijing was to conduct live-fire targeting drills in the South China Sea from July 25 through August 2. The announcement of this exercise was promulgated by the PLA and not, as is usual, by the Chinese government’s maritime administration. If China continues its aggressive posture toward the U.S.-allied free states of Asia, especially Taiwan, a direct confrontation between the Chinese and U.S. militaries in the South China may indeed be necessary.

Author: Dr. Lawrence A. Franklin was the Iran Desk Officer for Secretary of Defense Rumsfeld. He also served on active duty with the U.S. Army and as a Colonel in the Air Force Reserve.

NASA Prepares to Launch Contact Tracing Program

Posted on by

As the COVID-19 pandemic continues its spread in the U.S., NASA is tapping commercial software to start an internal contact tracing program.

Why NASA Needs a New Logo | Space

According to an information collection notice posted Tuesday in the Federal Register, the voluntary program “will be used to determine whether NASA personnel have been exposed to the COVID-19 virus and to track and trace their interactions across the NASA community for identifying possible points of exposure.”

Once the program is stood up, NASA plans to designate a health care-focused employee to act as the NASA Contact Tracer to lead the effort.

When a NASA employee or contractor agrees to sign up for the program, the Contact Tracer will start by going through the privacy considerations so the employee understands their rights and how their personal information will be used, after which the employee “will be asked, orally, to confirm if they have symptoms or not,” by replying “yes” or “no.”

That information—along with the employee’s contact information and the names, phone numbers and email addresses of those they have been in close contact with—will be entered into the new tracking app.

“While participation is voluntary, it is strongly encouraged as failure to provide the requested information may result in potential increased exposure of personnel to the virus,” the notice states.

The “newly developed tracking and tracing digital application” was built on NASA’s Salesforce platform. Salesforce’s workforce management platform has been used by a variety of organizations to start internal contact tracing programs, including some 35 state governments, according to company CEO Marc Benioff.

Interested parties have until October 4 to submit comments.

Specifically, under the Federal Register notice, the agency wants feedback on “whether the proposed collection of information is necessary for the proper performance of the functions of NASA, including whether the information collected has practical utility;” “ways to enhance the quality, utility and clarity of the information to be collected;” and “ways to minimize the burden of the collection of information on respondents, including automated collection techniques or the use of other forms of information technology.”

*** The Flawed World of Contact Tracing: Where’s Carol The Tester? source

“While participation is voluntary, it is strongly encouraged as failure to provide the requested information may result in potential increased exposure of personnel to the virus,” NASA wrote in the notice.

The information collected through NASA’s contact tracing program may also be shared with private or government healthcare providers and other entities with access to all NASA systems of records. By keeping the contact tracing records in a digital format, NASA wrote that it hopes to “ensure higher rate of inclusion and assist in the efficiency of the stages of report processing by human subject matter analysts.”

NASA is estimating that the contact tracing program will cost about $1.9 million per year. The agency is accepting comments on its contact tracing program – such as ways to enhance the quality of its data and ways to minimize the burden of information collection on personnel – through October 4.