Category Archives: NSA Spying

Can FBI Investigate the Director of CIA over Private Emails?

Posted on by

There have been countless top agency people within the Obama administration that have violated law, procedures and even a White House directive regarding use of private emails and violations of communications security and operational security.

First we came to know about Lisa Jackson, Secretary of the EPA, then there was Eric Holder himself, while he was the top lawyer at the Department of Justice. Hillary and her server operation made an art of violating all protocols, but now John Brennan appears to be the next one in line where the FBI needs to open an investigation case. Is that possible? Has anyone asked Department of Homeland Security Secretary Jeh Johnson about his use of private emails? How about a massive campaign where every administration official has to sign a compliance document, then take a polygraph, then be terminated for violations? Imagine…..just imagine the fallout. If for nothing else, these people should lose their respective security clearances, this is dereliction of duty and malfeasance, much less a violation of Oath.

Hackers release info on Obama’s national security transition team

by: Aaron Boyd 

The slow drip of information allegedly stolen from CIA Director John Brennan’s personal email account continues to find its way onto WikiLeaks, with a list of personal information about 20 members of President Obama’s transition team added to the leak in the most recent post on Oct. 26.

The list — which includes names, personal emails, phone numbers, Social Security numbers and more — was originally posted to Twitter by user @_CWA_ on Oct. 19, however the account was quickly suspended and the post removed.

After the Twitter account was shut down, “Crackas With Attitude” — the duo claiming to have perpetrated the hack — began slowly posting the information to WikiLeaks. The third and latest dump came on Oct. 26, including the list and the dossier of a FBI agent in the counterterrorism division.

The list posted Monday mostly includes names of former intelligence and national security officials, some of whom served under President George W. Bush and some who served or currently serve under President Barack Obama, including Homeland Security Secretary Jeh Johnson.

The names have something else in common, as well.

All of the people listed were part of the Obama administration’s transition team, with most of them serving on the National Security Team. The team members listed covered the Defense Department, DHS, CIA and Office of the Director of National Intelligence.

Only three names advised on other aspects of the transition but Federal Times confirmed that everyone whose information was exposed served in some capacity.

The document was created (or most recently updated) on Nov. 16, 2008, according to the associated metadata.

The breadth of the release is minor compared to the high-profile breach of the Office of Personnel Management last year but the implications are still serious, especially as this information was released publicly on the Internet.

“It’s a pretty serious proposition to have any of that information out there,” said Marcus Christian, a former federal prosecutor and current partner with the law firm of Mayer Brown’s cybersecurity and data privacy practice.

While the perpetrators reportedly used social engineering to trick a helpline support employee into changing Brennan’s account password, the subsequent exfiltration of data and postings online still constitute a cyber crime, Christian said.

“Often times we look to the technological solution [for cybersecurity] but often times the problem — no matter how intricate and hardened we think our technology happens to be — there’s always some weakness,” he said, including the human element.

If the perpetrators are caught, Christian expects they could be prosecuted under a combination of the Computer Fraud and Abuse Act and federal Aggravated Identity Theft statutes, with the latter carrying a two-year mandatory minimum sentence.

Putin’s Most Terrifying Army

Posted on by

This hacking wing of the Kremlin is not lost on our Congressional members, they clearly are aware of the names and events.

Organized crime is now a major element of Russia statecraft
BusinessInsider: In the past couple years, Russian hackers have launched attacks on a French television network, a German steelmaker, the Polish stock market, the White House, the US House of Representatives, the US State Department, and The New York Times.

And according to press reports citing Western intelligence officials, the perpetrators weren’t rogue cyber-pranksters. They were working for the Kremlin.

Cybercrime, it appears, has become a tool of Russian statecraft. And not just cybercrime.

Vladimir Putin’s regime has become increasingly adept at deploying a whole range of practices that are more common among crime syndicates than permanent members of the UN Security Council.

In some cases, as with the hacking, this involves the Kremlin subcontracting organized crime groups to do things the Russian state cannot do itself with plausible deniability. And in others, it involves the state itself engaging in kidnapping, extortion, blackmail, bribery, and fraud to advance its agenda.

Spanish prosecutor Jose Grinda has noted that the activities of Russian criminal networks are virtually indistinguishable from those of the government.

“It’s not so much a mafia state as a nationalized mafia,” Russian organized crime expert Mark Galeotti, a professor at New York University and co-host of the Power Vertical Podcast, said in a recent lecture at the Hudson Institute.

Hackers, Gangsters, And Goblins
According to a report by the FBI and US intelligence agencies, Russia is home to the most skilled community of cybercriminals on the globe, and the Kremlin has close ties to them.

“They have let loose the hounds,” Tom Kellermann, chief security officer at Trend Micro, a Tokyo-based security firm, told Bloomberg News.

Citing unidentified officials, Bloomberg reported that Russian hackers had stepped up surveillance of essential infrastructure, including power grids and energy-supply networks, in the United States, Europe, and Canada.

Dmitri Alperovitch, co-founder of the security firm CrowdStrike, noted recently that the Russian security services have been actively recruiting an army of hackers.

“When someone is identified as being technically proficient in the Russian underground,” a pending criminal case against them “suddenly disappears and those people are never heard from again,” Alperovitch said in an interview with The Hill, adding that the hacker in question is then working for the Russian security services.

“We know that’s going on,” Alperovitch added.

And as a result, criminal hackers “that used to hunt banks eight hours a day are now operating two hours a day turning their guns on NATO and government targets,” Kellermann of Trend Micro told The Hill, adding that these groups are “willingly operating as cyber-militias.”

The hacking is just one example of how the Kremlin effectively uses organized crime as a geopolitical weapon.

Moscow relied heavily on local organized crime structures in its support for separatist movements in Transdniester, Abkhazia, South Ossetia, and Donbas.

In the conflict in eastern Ukraine, organized crime groups served as agents for the Kremlin, fomenting pro-Russia unrest and funneling arms to rebel groups.

In annexed Crimea, the Kremlin installed a reputed gangster known as “The Goblin” as the peninsula’s chief executive.

And of course there is the case of Eston Kohver, the Estonian law enforcement officer who was investigating a smuggling ring run jointly by Russian organized crime groups and the Russian Federal Security Service.

Kohver was kidnapped in Estonia September 2014, brought across the Russian border at gunpoint, and convicted of espionage. He was released in a prisoner exchange last month.

The Geopolitics Of Extortion
But Putin’s mafia statecraft doesn’t just involve using and colluding with organized crime groups.

It often acts like an organized crime group itself.
In some cases this involves using graft as a means of control. This is a tactic Moscow has deployed throughout the former Soviet space, involving elites in corrupt schemes — everything from shady energy deals or money-laundering operations — to secure a “captured constituency.”

This is a tactic Russia attempted to use in Georgia following the 2003 Rose Revolution and in Ukraine after the 2004 Orange Revolution, where “corruption and shadow networks were mobilized to undermine the new leadership’s reform agenda,” according to James Greene in a 2012 report for Chatham House.

This was particularly successful in Ukraine, where opaque gas deals were used “to suborn Ukraine’s post-Orange Revolution new leadership,” Greene wrote.

And Putin is clearly hoping to repeat this success in eastern Ukraine today — especially after elections are held in the rebel areas of Donbas.

“His bet in the eastern Ukraine local election, if it ever takes place, won’t be on the rebel field commanders but on local oligarchs who ran the region before the 2014 ‘revolution of dignity.’ Through them, he will hope to exert both economic and political influence on Kiev.” political commentator Leonid Bershidsky wrote in Bloomberg View.

In addition to graft, Moscow has also effectively utilized blackmail — making the international community a series of offers it can’t refuse.

It’s a neat trick. First you create instability, as in Ukraine, or exasperate existing instability, as in Syria.Then offer your services to establish order.

You essentially create demand — and then meet it. You get to act like a rogue and be treated like a statesman.

It’s how protection rackets operate. And it has become one of the pillars of Putin’s foreign policy.
“It’s the geopolitics of extortion, but it’s probably working,” Galeotti told Voice of America in a recent interview.

“He’s identifying a whole series of potential trouble spots around the world, places that matter to the West, and is essentially indicating that he can either be a good partner, if they’re willing to make a deal with him, or he can stir up more trouble.”

MI5 and the FBI: Terrorists on Twitter-Social Media

Posted on by

Twitter is the least cooperative technology company calling terrorists on the internet ‘freedom fighters. This was revealed in testimony this week.

Twitter has come under criticism from some analysts who say the social media company has failed to swiftly remove accounts that recruit potential terrorists and incite violence, raising concerns that the United States has not done enough to combat the Islamic State’s rapid expansion of its propaganda operations online.

Mark Wallace, CEO of the Counter Extremism Project, said on Wednesday that the Islamic State (also known as ISIS or ISIL) terrorist group has effectively used social media sites such as Twitter to propagandize and radicalize individuals, including Americans. His nonprofit project recently chronicled 66 U.S. citizens who are accused of joining or attempting to join the Islamic State, plotting attacks in the United States, providing financial support to extremist groups, or disseminating radical propaganda.

“These individuals have very different backgrounds and experiences, but the one characteristic they seem to share is active participation on social media,” he said in testimony to the House Committee on Oversight and Government Reform.

The terror group known as Islamic State or Daesh has deployed and exploited unprescendented use of social media, where the effectiveness is beyond definition. Intelligence agencies in the West are grappling with solutions pushing the protections of free speech and use of the internet.

In part from Newsweek: The head of Britain’s internal counter-intelligence service MI5, has warned that ISIS and other extremist groups “continue to aspire to mass casualty attacks against the U.K.” and that an increasing proportion of their communication online and via encrypted channels is out of reach of Britain’s security services.

“All of this means the threat we are facing today is on a scale and at a tempo that I have not seen before in my career,” Andrew Parker said in his keynote speech made at a lord mayor’s event in London on Wednesday night.
Parker also warned of the “three-dimensional threat” that ISIS pose—at home, overseas and online. “We are seeing plots against the U.K. directed by terrorists in Syria; enabled through contacts with terrorists in Syria; and inspired online by Isil’s [ISIS] sophisticated exploitation of technology.”

Parker said MI5 must evolve its activities in order to combat modern threats, and emphasized that the agency’s ability to intercept communications has “been a key component in MI5’s toolbox throughout our history.”

The MI5 boss said he imagined the forthcoming defence review would garner more public interest than previous debates on similar matters. “But I hope that the public debate will be a mature one, ” he added. “Informed by the three independent reviews, and not characterized by ill-informed accusations of ‘mass surveillance’, or other such lazy two-worded tags.”

When it comes to the very similar requests by FBI Director, James Comey, his pleas are in earnest yet, tech companies and the U.S. Constitution actually prevent some actions due to the 1st Amendment. It is a slippery slope for both sides.

FBI Director James Comey called for a national conversation about how far tech companies should be allowed to go in applying encryption to their devices, saying law enforcement faces growing and overlapping challenges in accessing data needed to prosecute crimes.

During a speech at the Brookings Institution Thursday, Comey said the new forms of encryption being developed for mobile devices, as well as the rapid growth of the devices themselves, make it tough for the FBI to keep up with ways criminals can “go dark.”

“With going dark, those of us in law enforcement and public safety have a major fear of missing out,” Comey said. “Missing out on predators who exploit the most vulnerable among us; missing out on violent criminals who target our communities; missing out on a terrorist cell using social media to recruit, plan and execute an attack. We have seen case after case — from homicides and car crashes to drug trafficking, domestic abuse and child exploitation — where critical evidence came from smartphones, hard drives and online communication.”

To advance the discussion, Congress is holding hearings with counter-terrorism experts and they too make a compelling argument siding with Comey.

Per FBI: Foreign Telecoms Likely Hacked Hillary Emails

Posted on by

The Justice Department officials also used the words “reckless”, “stunning,” and “unbelievable” in discussing the controversy swirling around Clinton’s use of a private, nongovernment email account.

FBN Exclusive: DOJ Officials Fear Foreign Telecoms Hacked Clinton Emails, Server

FBN: Officials close to the matter at the Department of Justice are concerned the emails Hillary Clinton sent from her personal devices while overseas on business as U.S. Secretary of State were breached by foreign telecoms in the countries she visited—a list which includes China.

“Her emails could have easily been hacked into by telecoms in these countries. They got the emails first, and then routed them back to her home server. They could have hacked into both,” one Justice Department official close to the matter says.

Another Justice Department official adds: “Those telecommunications companies over there often have government workers in there. That telecom in that foreign country could then follow the trail of emails back to her server in the U.S. and break into the server” remotely over the Internet. At various points in this process, there were multiple entry points to hack into Clinton’s server to steal information, as well as eavesdrop, the Justice Department officials say.

This is the first indication that officials at the Justice Department are concerned that foreign telecom workers may have broken into Clinton’s emails and home server. The Federal Bureau of Investigation is currently investigating the national security issues surrounding Clinton’s emails and server.

The Justice Department officials also used the words “reckless”, “stunning,” and “unbelievable” in discussing the controversy swirling around Clinton’s use of a private, nongovernment email account, as well as her use of a personal Blackberry (BBRY), an Apple (AAPL) iPad, and home server while U.S. Secretary of State. The officials did not indicate they have any knowledge of a breach at this point.

As for the effort to designate Clinton’s emails as classified or unclassified, the Justice Department officials agreed that, as one put it: “Every email she sent is classified because she herself is classified, because she is both Secretary of State and a former first lady.”

In addition, there’s a growing belief among cyber security experts at web security places like Venafi and Data Clone Labs that Clinton’s emails were unprotected in the first three months of her tenure in 2009 as the nation’s top diplomat, based on Internet scans of her server Venafi conducted at that time.

“For the first three months of Secretary Clinton’s term in office, from early January to late March, access to her home server was not encrypted or authenticated with a digital certificate,” Kevin Bocek, vice president of security strategy and threat intelligence at Venafi tells FOX Business. “That opens the risk that Clinton’s user name and password were exposed and captured, particularly in places she traveled to at this time, like China or Egypt. And that raises issues of national security,” adding “Attackers could have eavesdropped on communications, particularly in places like China, where the Internet and telecom infrastructure are built to do that.”

Digital certificates are the bedrock of Internet security. They verify the Web authenticity and legitimacy of an email server, and they let the recipient of an email know that an email is from a trusted source. Essentially, digital certificates are electronic passports attached to an email that verifies that a user sending an email is who he or she claims to be.

Because it appears Clinton’s server did not have a digital certificate in the first three months of 2009, “a direct attack on her server was likely at this time, and the odds are fairly high it was successful,” says Ira Victor, director of the digital forensic practice at Data Clone Labs.

In and around January 13, 2009, the day of Clinton’s Senate confirmation hearings, the clintonemail.com domain name was registered. An estimated 62,320 emails were sent and received on Clinton’s private email account during her tenure as U.S. Secretary of State. Later, 31,830 emails were erased from her private server because they were deemed personal.

Although Clinton previously has argued that there was no classified material on her home server in Chappaqua, N.Y., the U.S. Department of State has deemed 403 emails as classified, with three designated “top secret” (the State Dept. itself has been the subject of cyber hacking).

Clinton has maintained her home server did have “numerous safeguards,” but it’s unclear specifically what security measures were installed, and what those layers were. In September, Clinton apologized on ABC News for using a home server to manage her U.S. Department of State electronic correspondence.

Although Clinton and her team have indicated her emails were not hacked, not knowing about a breach is different from being hacked, cyber analysts tell FOX Business. Her campaign staffers did not return calls or emails for comment. “Even the NSA, the CIA, and Fortune 500 companies know they cannot make that claim that they have not been hacked. Everyone can be hacked,” says Bocek.

FOX News recently reported that an intelligence source familiar with the FBI’s probe into Clinton’s server said that the FBI is now focused on whether there were violations of the federal Espionage Act pertaining to “gross negligence” in the safeguarding of national defense information. Sets of emails released show that Clinton and top aides continuously sent information about foreign governments and sensitive conversations with world leaders, among other things, FOX News reported.

Secure communications and devices are routine in the federal government. For example, President Barack Obama received a secure Blackberry from the National Security Agency after he was elected, a former top NSA official tells FOX Business.

“I could not recall that I ever heard that a secure Blackberry was provided to Hillary Clinton.  No one else can either,” the former NSA official says, adding, “There is no way her calls were properly secured if she used her [personal] Blackberry.” Blackberry declined comment.

The former NSA official says the same issue is at play for Clinton’s iPad. “While there have been recent advances in securing iPhones and iPads, these were not available, in my opinion, when she was Secretary of State and there would have to be a record that she sought permission to use them with encryption,” the former NSA official says.

When traveling overseas, U.S. secretaries of states use secure phones that ensure end-to-end encryption, and in some cases, mutual authentication of the parties calling, the former NSA official said. Communications are conducted via secured satellite, digital networks or Internet telephony.

“I think I can say, with some confidence, that once any decent foreign intelligence service discovered she was using her personal phone and iPad, she would be targeted and it would be a high priority operation,” the former NSA official said, adding, “if the calls were unencrypted, it would be no challenge at all while she was overseas — they just have to get to the nearest cell tower.”

The first three months of her tenure as Secretary of State would have been an ideal time for hackers to break in, cyber security experts say.

Specifically, experts point to work done by cyber security experts at Venafi, which has revealed a three-month gap in security for Clinton’s home server after the Palo Alto, Calif. firm’s team had conducted routine, “non-intrusive Internet scanning” in January 2009.

Venafi’s Bocek tells FOX Business that he and his team had picked up Clinton’s domain, clintonemail.com, at that time, and found that her home server had not been issued a digital certificate. That means email traffic to and from her server was unprotected from early January to late March 2009. During that time, Clinton traveled as U.S. Secretary of State to China, Indonesia, South Korea, Japan, Egypt, Palestine, Israel, Belgium, Switzerland, and Turkey.

“It also means anyone accessing her home server, including Clinton and other people, would have unencrypted access, including from devices and via web browsers,” says Bocek. “This means that during the first three months of Secretary Clinton’s term in office, web browser, smartphone, and tablet communications would not have been encrypted.”

Digital certificates are vital to Internet security. All “online banking, shopping, and confidential government communications wouldn’t be possible without the trust established by digital certificates,” says Bocek. “Computers in airplanes, cars, smartphones, all electronic communications, indeed trade around the world depend on the security from digital certificates.”

The Office of Management and Budget has now mandated that all federal web servers must use digital certificates by the end of 2016, Bocek notes.

If cyber hackers broke into Clinton’s server, they also could have easily tricked it into handing over usernames, passwords, or other sensitive information, Bocek noted.

“The concern is that log-on credentials could have been compromised during this time, especially given travel to China and elsewhere,” Bocek says opening the door to more lapses. “As we’ve seen with so many other breaches, to long-term, under-the-radar compromise by adversaries, hacks that Clinton and her team may not be aware of.”

Bocek adds: “Essentially, the cyber hacker would have looked to Clinton’s server like it was Secretary Clinton emailing.”

Digital forensic analyst Victor agrees. “It’s highly likely her emails sent during this time via her devices and on her server were not encrypted. More significantly, her log-on credentials, her user name and passwords, were almost certainly not encrypted,” says Victor, who has testified in cyber security cases as an expert forensic witness. “So that means emails from Clinton’s aides, like Huma Abedin, or anyone who had email accounts on her server, their communications were also likely unencrypted.”

Victor adds: “It’s highly likely all of their user names and passwords were being exposed on a regular basis to potential cyber attackers, with the high risk they were stolen by, for instance, government employees who could get the passwords for everyone Clinton was communicating with.”

Victor explains how Clinton’s emails from her devices could have been hacked, and malware could have been planted on her server. “Say Clinton emailed from her device during her Beijing trip in that 2009 period. Her emails would first get routed through the local, state-controlled Chinese telecom. The Chinese telecom captures those bits of emails that are broken up into electronic packets by the device she uses,” Victor explains.

Any device Clinton emailed from, Victor says, was constantly “polling and authenticating communications” between her device and her server. But all of the back-and-forth communication goes through, say, the Chinese telecom. When the device is polling her server with non-secure communications, it’s giving attackers repeat opportunities to breach.”

He continues: “If the connection was not protected, a state actor at the China telecom transmitting her email back to her server in the U.S. could breach both the device and the server at that point.”

Martin C. Libicki, a senior management scientist and cyber expert at Rand Corp., says that security on Clinton’s devices could have been higher than feared. But he says that, while the Blackberry device does have strong encryption, once Clinton zoomed emails from her Blackberry through the foreign telecom networks during those first three months of her tenure, “it was much easier to hack both the device and the server then.”

Venafi’s team, which included analysts Hari Nair and Gavin Hill, found Clinton and/or her team did eventually purchase digital certificates for the server and the clintonemail.com domain name starting in March 2009.

Victor added: “But the question that needed to be asked then was, once the certificate was installed, did Clinton and her team warn anyone she had emailed during those first three months about the poor security during that time, did they warn them to reset their security passwords on all their devices?”

Iran Defying Iran Deal, WH and Kerry Still Trust ‘Em

Posted on by

Iran holds 4 Americans in their prisons, while the Obama administration says the track for talks to have them released was separate from the Iran talks. Yet, it must be know, the United States actually holds several Iranians in our prisons and one such detainee Iran wants back badly.

Iran wants it both ways as noted with this scientist they demand to be released.

An Iranian-American engineer has been sentenced to more than eight years in prison for sending sensitive U.S. military documents to his native Iran.

U.S. prosecutors say Mozaffar Khazaee, who had worked as an employee of U.S. defense contractors, stole and shared with Iran information on U.S. military jet engine programs over the span of several years.

Khazaee, a 61-year-old dual citizen, was arrested in January 2014 as he tried to leave the United States with sensitive military documents in his luggage.

A swap is likely part of the obscure talks with John Kerry and Iran’s Foreign Minister Mohammad Zarif.

The matter of the PMD’s (Possible Military Dimension) sites are still in dispute and Iran declares they are defying the JPOA by stating they will not remove the uranium stockpile. They will also not repurpose the heavy water reactor, both of which are stipulations of the JPOA.

“Any action regarding Arak and dispatching uranium abroad … will take place after the PMD file is closed,” Supreme Leader Ayatollah Ali Khamenei wrote in a letter to President Hassan Rouhani.

The letter, published on Khamenei’s website, approved implementation of a nuclear deal agreed with world powers in July, subject to certain conditions.

Meanwhile, the waivers are being signed to lift selected sanctions against Iran, demonstrating the White House, the State Department and the National Security Councils as well as those Democrats in Congress have not said a single word about the contraventions of the P5+1 Iran agreement.

NEW YORK (Reuters) – The United States approved conditional sanctions waivers for Iran on Sunday, though it cautioned they will not take effect until Tehran has curbed its nuclear program as required under a historic nuclear deal reached in Vienna on July 14.

“I hereby direct you to take all necessary steps to give effect to the U.S. commitments with respect to sanctions described in (the Iran deal),” U.S. President Barack Obama said in a memo to the secretaries of state, treasury, commerce and energy released by the White House press office.

Several senior U.S. officials, who spoke to reporters on condition of anonymity, said actual implementation of the deal was still at least two months away. In addition to Washington’s conditional orders to suspend U.S. nuclear-related sanctions, U.S. officials said the United States, China and Iran were re-emphasizing their commitment to the redesign and reconstruction of the Arak research reactor so that it does not produce plutonium.

The fate of the Arak reactor was one of the toughest sticking points in the nearly two years of negotiations that led to the July agreement.

Other steps Iran must take include reducing the number of uranium-enrichment centrifuges it has in operation, cutting its enriched uranium stocks and answering U.N. questions about past activities that the West suspects were linked to work on nuclear weapons.

Kerry noted that the IAEA had already said Iran had met its obligation to provide answers and access to the agency.

The Democrats, the White House and the State Department have a real talent for ignoring threats, facts and actions when it comes to reality.

It is beyond dispute that each item in question for Iran and the JPOA, Iran is rupturing the agreement and Barack Obama is ignoring the infractions. Perhaps someone should begin to ask Hillary about the JPOA since it was her State Department that deployed Jake Sullivan to open the Iran doors to these talks…what is she thinking now?