Mediaboss Marketing

Some questions, admiral.

The effects of this months global ransomware attackseem to be fading, fortunately.But a crucial question the incidentraisedis only getting more urgent. When it comes to online security, the U.S. governments priorities -- preventing terrorism and protecting cyberspace-- are in permanent tension.Is there a way to resolve it?

The National Security Agency routinely seeks out flaws in common software and builds tools, known as exploits, to take advantage of them. Doing so is an essential part of the agencys mission of spying on terrorists and foreign adversaries, yet it comes with grave risks.

The latest attack --still evolving-- is an example. Researchers say it takes advantage ofa stolen NSA tool to exploit a flaw in some versions of Windows. Microsoft Corp.hassuggestedthat the NSA knewof the flaw for some time, yet didnt disclose it until the theft.

That may sound unnerving. Windows is ubiquitous, and governments are generally expected to respect online security, not undermine it. Microsoft is understandably unhappy. Worse, the initial attack crippled everything from banks to hospitals. Its fair to say that lives were at risk.

So why keep such a harmful vulnerability secret? Simple:Exploiting it proved hugely effective in swooping up intelligence -- like fishing with dynamite, as one former NSA employeeput it.

Deciding whether such intelligenceis worth the risk isa fraught and secretive process. When a significant new flaw is found by a federal agency, its shared among experts from the intelligence, defense and cybersecurity bureaucracies (among others), who debate whether to disclose or exploit it, according tonine criteria. A review board then makes a final decision. In almost all cases involving a product made or used in the U.S. -- more than 90 percent, according to the NSA -- the flaws are disclosed.

Although its an imperfect process, a better way isnt obvious. Simply disclosing all vulnerabilities, as some activistsdemand, would be nuts. Intelligence would dry up, investigations would be hobbled, and the Pentagon would lose crucial insight into foreign militaries, for starters. Other countries would continue exploiting such flaws to their advantage. To echo a Cold Warlocution, it would amount to unilateral disarmament.

Likewise, Microsoft hasproposeda digital Geneva Convention, or a global agreement to disclose flaws. But the worst actors online -- thieves, gangsters,North Korea-- would hardly feel constrained by such a protocol, while the restraints put in place could well eliminate crucial methods of tracking them.

Clear thinking from leading voices in business, economics, politics, foreign affairs, culture, and more.

Share the View

Abetter approachis to improve the current system. One problem is that the secrecy required makes it hard to know how well the stated criteria for retaining vulnerabilities are being followed. Reporting the total number found and disclosed each year might offer some reassurance to tech companies and the public, without divulging anything sensitive. Periodic audits of those that have been retained could help ensure that agencies arent hoarding dangerous stuff thats no longer useful. Most important, though, is to better secure these flaws -- and the tools meant to exploit them -- whilehaving a strategy tomitigate the risks if theyre once again leaked.

Failing that, the public may quickly lose confidence in this process. And that may be the biggest risk of all.

--Editors: Timothy Lavin, Michael Newman.

To contact the senior editor responsible for Bloomberg Views editorials: David Shipley at davidshipley@bloomberg.net.

Continued here:
Ransomware and the NSA - Bloomberg

Pittsburgh Post-Gazette

Secret court rebukes NSA for 5-year illegal surveillance of US citizens Pittsburgh Post-Gazette WASHINGTON U.S. intelligence agencies conducted illegal surveillance on American citizens over a five-year period, a practice that earned them a sharp ... Government Says Trust Us on Surveillance, But Here's Why We ...Townhall all 2 news articles »

Visit link:
Secret court rebukes NSA for 5-year illegal surveillance of US citizens - Pittsburgh Post-Gazette

Senator Mike Lee (R-Utah) reacted to comments from Rep. Devin Nunes that the cases of 'unmaskings' during the Obama administration included information about civilians.

Nunes said there was a "treasure trove" of information about people other than Gen. Michael Flynn and Russian envoys.

"This is what governments do when left unrestrained," Lee said.

George Takei: Trump Is Like 'An Alien Life Form' Who Is 'Ignorant of History'

Trump Makes Special Trip to Graves of Iraq, Afghanistan War Soldiers

Oliver North: North Korean Missile Could 'Shut Down Hawaii For Decades'

He said he was troubled by the fact the Obama administration had enough power to cull information about everyday Americans.

"The government can use overwhelming force and power to engage in political espionage," he said.

Lee said legislators must follow the lead of Founding Father James Otis of Massachusetts, who warned against such activity.

"Otis was a big believer in that government will intrude into a man's house unless restricted," Lee said, calling for better oversight of spying activity.

'You Aren't Representing Me': Trump Supporter Confronts Maxine Waters

Cavuto: Trump Told 'Grumbling European Phonies' to Stop Being 'Deadbeats'

Shoving Match, Threats Explode in Texas Capitol Over Illegal Immigration

The rest is here:
Mike Lee: NSA Spying Is 'What Gov't Does When Left Unrestrained' - Fox News Insider

The top Democrat on the House Oversight and Government Reform Committee wants the nation's top intelligence officials to turn over documents that describe their conversations with President Trump on Russia's meddling in the 2016 election.

Rep. Elijah Cummings, D-Md., the committee's ranking member, sent separate letters to Director of National Intelligence Dan Coats and National Security Agency Director Mike Rogers requesting documents, recordings, memos, notes and communications related to their conversations with the president or other White House staff about the investigations into Russia's role in the election.

The Maryland Democrat's requests follow a Washington Post report from earlier this month that said Trump asked Rogers and Coats to deny any existence of collusion between Trump's campaign associates and Russia.

The president asked the two top intelligence officials to help him push back against the FBI's investigation into Russia's role in the 2016 election, according to the Washington Post.

Both Coats and Rogers refused Trump's requests.

"The report ... stated that the president urged both of you 'to publicly deny the existence of any evidence of collusion durign the 2016 election,' but that you refused these requests, which you 'both deemed to be inappropriate,'" Cummings wrote.

Previous reports suggest Rogers and his staff may have memorialized his conversations with the president.

A senior official at the National Security Agency reportedly detailed Rogers' conversation with Trump about the Russia investigation in an internal memo.

Additionally, Coats said during congressional testimony earlier this month he would provide information about his conversation with Trump to a congressional "investigatory committee."

Here is the original post:
Elijah Cummings demands DNI, NSA leaders turn over documents ... - Washington Examiner

In my last column, I broke the news that Admiral Mike Rogers, the director of the National Security Agency, reportedly explained to his workforce last week that he had declined to assist President Donald Trump in his efforts to undermine the FBI and its counterintelligence investigation of the White House. As Rogers is said to have explained to agency personnel, There is no question that we have evidence of election involvement and questionable contacts with the Russians.

On this basis, Admiral Rogers confirmed the existence of highly classified signals intelligence which establishes some sort of collusion between Team Trump and the Kremlin during the 2016 election campaign. However, now that the Justice Department has appointed Robert Mueller special counsel charged with running the Russia investigation, NSA is apparently pulling out all the stops to track down any additional evidence which might be relevant to the expanded inquiry into KremlinGate.

Specifically, last week NSA is believed to have sent out an unprecedented order to the Directorate of Operations, the agencys largest unit. The DO, as insiders term it, manages all of NSAs SIGINT assets worldwide, making it the most important spy operation on earth. The email sent to every person assigned to the DO came from the Office of General Counsel, the NSAs in-house lawyers, and it was something seldom seen at the agencya preservation order.

Such an order would have charged every DO official, from junior analysts to senior managers, with finding any references to individuals involved in KremlinGate, especially high-ranking Americansand preserving those records for Federal investigators. This would include intercepted phone calls and any transcripts of them, emails, online chats, faxesanything the agency might have picked up last year.

At the request of NSA officials, I will not name the specific individuals that DO personnel have been told to be on the lookout for in SIGINT intercepts, but one could fairly surmise that the list includes virtually all key members of Team Trump.

There are several possible ways such individuals can come up in raw SIGINT. First, they might be the people talking or chatting: in other words, first-person intercept. If NSA has a relevant top-secret warrant issued by the Foreign Intelligence Surveillance Court, such intelligence collection is perfectly legalas well as highly classified.

Second, someone might recount a conversation with one of the individuals the DO is interested in. This seems to be the scenario behind the recent sensational story about how Jared Kushnerthe presidents son-in-law, all-purpose adviser, and former publisher of Observeris said to have asked Sergei Kislyak, Russias ambassador in Washington, to use his embassys secure communications to talk to Moscow. NSA reportedly intercepted a conversation between Kislyak and the Kremlin in which the ambassador relayed Kushners request to his bosses back home.

Third is a kind of intercept which NSA terms reflections, meaning that none of the individuals on the DOs list are involved, but one or more of them are being discussed by third parties. For instance, this could be a conversation between foreign officials about Team Trump and its mounting Russia problems. If the people discussing it are VIPs, their opinions may have intelligence value for policymakers in Washingtoneven if their conversation may shed no new investigative light on KremlinGate.

An example: if NSA intercepts a conversation in which senior diplomats from Middle Eastern countries are chatting about Trumps relationship with Moscow, that could be an important reflection of how their countries leaderships view the situation in Washington. If one of those Middle Eastern countries is a close ally (or avowed enemy) of the United States, their views of KremlinGate would be of interest to high-ranking American officials, even if the conversation is based on no more than press reports and office gossip.

The DO is divided into offices which focus on a specific country or region (e.g. China, the Middle East) or on a defined problem set (e.g. counterterrorism, counterintelligence). Months ago, the DOs Russia shop is said to have received a preservation order from the agencys lawyersno surprise, given what that office does. Now such an order has reportedly been passed to the whole DO, including offices which have nothing to do with Russia. This demonstrates the agencys serious intent to provide investigators with any evidence which may shed additional light on KremlinGate.

That said, NSA may have another motive in issuing this DO-wide order. Such motive is the Intelligence Communitys venerable tradition of self-preservation, what spy-veterans term CYA. As Trumps Russia problems have heated up, his fans and media allies have made increasingly serious accusations of malfeasance by NSA and other spy agencies under President Obama. Some of these wild charges have been ludicrous, merely lies created by Kremlin disinformation outlets, then parroted by right-wing media in America.

That media has lavished particular attention on the issue of SIGINT unmasking, meaning the process of how NSA responds to high-level requests to reveal the name of any American who appears in an intelligence report (normally those names are redacted; for an explanation of how this complex issue really works, see this). Although theres no evidence of any systematic abuse of unmasking by President Obama, this hasnt halted the increasingly shrill accusations.

The Kremlin has tried to smear NSA for years, and that clandestine campaign got a big boost with the defection of Edward Snowden to Moscow almost four years ago. As Ive explained, discrediting NSA and its global intelligence partnerships played a key role in Russias interference in our election last year. In order to counter pervasive lies about the agency and its mission, the reported preservation order includes collecting all customer requests for unmaskings, plus records of which agency analysts accessed the information and when, exactly: in other words, complete data trails of all incidents of SIGINT unmasking in 2016.

An undertaking of this size and scope has never happened in NSAs 65-year history. Although preservation orders have been issued previously, never has the entire DO been told to search all its databases for SIGINT on named individuals, then preserve anything thats discovered. KremlinGate is a unique event in our nations history, with accusations of nefarious meddling by hostile intelligence agencies in our democracy, and its bringing about unprecedented developments in our spy agencies too.

Given the complex nature of SIGINTsuch a DO preservation order will require thousands of analysts to reexamine at least hundreds of thousands of intercepted communicationsit seems likely that some relevant information will be uncovered. Although the public may not learn of new evidence anytime soon, we can rest assured that anything pertinent to the KremlinGate inquiry will be shared with the FBI and Bob Muellers investigators without delay.

John Schindler is a security expert and former National Security Agency analyst and counterintelligence officer. A specialist in espionage and terrorism, hes also been a Navy officer and a War College professor. Hes published four books and is on Twitter at @20committee.

See the original post here:
NSA in Unprecedented Hunt for KremlinGate Evidence - Observer