https://www.newyorker.com/magazine/2022/06/13/the-surreal-case-of-a-cia-hackers-revenge

Quote:

---

"O.S.B. was focussed on what we referred to as 'physical-access operations,' " a senior developer from the unit, Jeremy Webera pseudonymexplained. This is not dragnet mass surveillance of the kind more often associated with the National Security Agency. These are hacks, or "exploits," designed for individual targets. Sometimes a foreign terrorist or a finance minister is too sophisticated to be hacked remotely, and so the agency is obliged to seek "physical access" to that person's devices. Such operations are incredibly dangerous: a C.I.A. officer or an asset recruited to work secretly for the agencya courier for the terrorist; the finance minister's personal chefmust surreptitiously implant the malware by hand. "It could be somebody who was willing to type on a keyboard for us," Weber said. "It often was somebody who was willing to plug a thumb drive into the machine." In this manner, human spies, armed with the secret digital payloads designed by the Operations Support Branch, have been able to compromise smartphones, laptops, tablets, and even TVs: when Samsung developed a set that responded to voice commands, the wizards at the O.S.B. exploited a software vulnerability that turned it into a listening device.

---

Quote:

---

On March 7, 2017, the Web site WikiLeaks launched a series of disclosures that were catastrophic for the C.I.A. As much as thirty-four terabytes of datamore than two billion pages' worthhad been stolen from the agency. The trove, billed as Vault 7, represented the single largest leak of classified information in the agency's history. Along with a subsequent installment known as Vault 8, it exposed the C.I.A.'s hacking methods, including the tools that had been developed in secret by the O.S.B., complete with some of the source code. "This extraordinary collection . . . gives its possessor the entire hacking capacity of the C.I.A.," WikiLeaks announced. The leak dumped out the C.I.A.'s toolbox: the custom-made techniques that it had used to compromise Wi-Fi networks, Skype, antivirus software. It exposed Brutal Kangaroo and AngerQuake. It even exposed McNugget.

---

Quote:

---

Schulte could get "a little off the hinge," Sean remembered. At one point, agency officials decided to assign a contractor a project, Almost Meat, that was based in part on Schulte's code. "Josh was offended," Weber recalled. He protested that his hard work would be handed to a third party, then sold back to the government at a markup. He threatened to file a complaint with the C.I.A.'s inspector general, claiming "fraud, waste, and abuse." Frank Stedman, who worked on Almost Meat, felt that the episode illustrated Schulte's tendency to react with a "disproportionate response." The man known as Bad Ass and Voldemort accrued another office nickname: the Nuclear Option.

---

Long read…but wild story.

nm. should have read farther

Quote:

---

Even as F.B.I. investigators pinpointed Schulte as the prime suspect, their work was frustrated by the pageantry of overclassification. WikiLeaks had posted the Vault 7 tools on the Web, where anyone could see them, but officially the C.I.A. and the F.B.I. maintained that the documents remained classified. As a result, only investigators who held the necessary security clearances were permitted even to access WikiLeaks to see what had been stolen. F.B.I. officials were so nervous about visiting the Web site using Bureau computers or Internet connections (thereby possibly exposing their own networks to a cyber intrusion) that they dispatched an agent to purchase a new laptop and visit the Web site from the safety of a Starbucks. Once the Vault 7 materials had been downloaded from the Internet, the laptop itself became officially classified, and had to be stored in a secure location. But the evidence locker normally used by agents, which held drugs and other seized evidence, wouldn't do, because it was classified only up to the Secret level. Instead, the investigators stored the laptop in a supervisor's office, in a special safe that had been certified to hold Top Secret documentseven though anyone could go to the Internet to see the materials that were on it.

---

Safety of a Starbucks? Good Lord, the FBI has some very dumb people working there.

aggiehawg said:

---

Quote:

---

Even as F.B.I. investigators pinpointed Schulte as the prime suspect, their work was frustrated by the pageantry of overclassification. WikiLeaks had posted the Vault 7 tools on the Web, where anyone could see them, but officially the C.I.A. and the F.B.I. maintained that the documents remained classified. As a result, only investigators who held the necessary security clearances were permitted even to access WikiLeaks to see what had been stolen. F.B.I. officials were so nervous about visiting the Web site using Bureau computers or Internet connections (thereby possibly exposing their own networks to a cyber intrusion) that they dispatched an agent to purchase a new laptop and visit the Web site from the safety of a Starbucks. Once the Vault 7 materials had been downloaded from the Internet, the laptop itself became officially classified, and had to be stored in a secure location. But the evidence locker normally used by agents, which held drugs and other seized evidence, wouldn't do, because it was classified only up to the Secret level. Instead, the investigators stored the laptop in a supervisor's office, in a special safe that had been certified to hold Top Secret documentseven though anyone could go to the Internet to see the materials that were on it.

---

Safety of a Starbucks? Good Lord, the FBI has some very dumb people working there.

---

Haha seriously. "Hi Pete, here for your flat white?"

"Uh can you not write Pete on it this time?"

aggiehawg said:

---

Quote:

---

Even as F.B.I. investigators pinpointed Schulte as the prime suspect, their work was frustrated by the pageantry of overclassification. WikiLeaks had posted the Vault 7 tools on the Web, where anyone could see them, but officially the C.I.A. and the F.B.I. maintained that the documents remained classified. As a result, only investigators who held the necessary security clearances were permitted even to access WikiLeaks to see what had been stolen. F.B.I. officials were so nervous about visiting the Web site using Bureau computers or Internet connections (thereby possibly exposing their own networks to a cyber intrusion) that they dispatched an agent to purchase a new laptop and visit the Web site from the safety of a Starbucks. Once the Vault 7 materials had been downloaded from the Internet, the laptop itself became officially classified, and had to be stored in a secure location. But the evidence locker normally used by agents, which held drugs and other seized evidence, wouldn't do, because it was classified only up to the Secret level. Instead, the investigators stored the laptop in a supervisor's office, in a special safe that had been certified to hold Top Secret documentseven though anyone could go to the Internet to see the materials that were on it.

---

Safety of a Starbucks? Good Lord, the FBI has some very dumb people working there.

---

It comes down the fact that the Federal Government is absolutely paranoid when it comes to accessing sites like Wikileaks from a government server.

K2-HMFIC said:

---

aggiehawg said:

---

Quote:

---

Even as F.B.I. investigators pinpointed Schulte as the prime suspect, their work was frustrated by the pageantry of overclassification. WikiLeaks had posted the Vault 7 tools on the Web, where anyone could see them, but officially the C.I.A. and the F.B.I. maintained that the documents remained classified. As a result, only investigators who held the necessary security clearances were permitted even to access WikiLeaks to see what had been stolen. F.B.I. officials were so nervous about visiting the Web site using Bureau computers or Internet connections (thereby possibly exposing their own networks to a cyber intrusion) that they dispatched an agent to purchase a new laptop and visit the Web site from the safety of a Starbucks. Once the Vault 7 materials had been downloaded from the Internet, the laptop itself became officially classified, and had to be stored in a secure location. But the evidence locker normally used by agents, which held drugs and other seized evidence, wouldn't do, because it was classified only up to the Secret level. Instead, the investigators stored the laptop in a supervisor's office, in a special safe that had been certified to hold Top Secret documentseven though anyone could go to the Internet to see the materials that were on it.

---

Safety of a Starbucks? Good Lord, the FBI has some very dumb people working there.

---

It comes down the fact that the Federal Government is absolutely paranoid when it comes to accessing sites like Wikileaks from a government server.

---

Well, of course they are. Hillary could be listening.

So all of that top secret info passed thru the ISP that Starbucks uses for its public wifi because they were afraid to access it from their more secure network. They must have just finished watching Skyfall

tk for tu juan said:

---

So all of that top secret info passed thru the ISP that Starbucks uses for its public wifi because they were afraid to access it from their more secure network. They must have just finished watching Skyfall

---

Spoiler: The Starbucks was downstairs in the Lobby.

aggiehawg said:

---

Quote:

---

Even as F.B.I. investigators pinpointed Schulte as the prime suspect, their work was frustrated by the pageantry of overclassification. WikiLeaks had posted the Vault 7 tools on the Web, where anyone could see them, but officially the C.I.A. and the F.B.I. maintained that the documents remained classified. As a result, only investigators who held the necessary security clearances were permitted even to access WikiLeaks to see what had been stolen. F.B.I. officials were so nervous about visiting the Web site using Bureau computers or Internet connections (thereby possibly exposing their own networks to a cyber intrusion) that they dispatched an agent to purchase a new laptop and visit the Web site from the safety of a Starbucks. Once the Vault 7 materials had been downloaded from the Internet, the laptop itself became officially classified, and had to be stored in a secure location. But the evidence locker normally used by agents, which held drugs and other seized evidence, wouldn't do, because it was classified only up to the Secret level. Instead, the investigators stored the laptop in a supervisor's office, in a special safe that had been certified to hold Top Secret documentseven though anyone could go to the Internet to see the materials that were on it.

---

Safety of a Starbucks? Good Lord, the FBI has some very dumb people working there.

---

Safety of a Starbucks meaning not their network. It's an air gap strategy to avoid accessing and downloading potentially malicious files through a secure network.

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

While he needs to be prosecuted for leaking classified material, it does seem plausible that his work could be given to the third party and sold back at a markup.

Ciboag96 said:

---

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

---

Exactly. I understand some security concerns but public wifi at a Starbucks was the best they could do?

I doubt they were even using an external VPN so Starbucks could see the information, let alone the FBI/NSA who is tracking everything

Ciboag96 said:

---

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

---

Because the original information is still classified and possession of it would still be unlawful. Thus, any copies remain classified material. The original information must stay classified because the only way to confirm the veracity of what was published is to compare to the originals. In that sense, the CIA can always deny the veracity of the published information and its origins because try are the only ones who can confirm the accuracy and completeness of what was published.

aggiehawg said:

---

Ciboag96 said:

---

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

---

Exactly. I understand some security concerns but public wifi at a Starbucks was the best they could do?

---

Probably because it's close and some agent wanted to get a latte and a muffin?

K2-HMFIC said:

---

aggiehawg said:

---

Ciboag96 said:

---

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

---

Exactly. I understand some security concerns but public wifi at a Starbucks was the best they could do?

---

Probably because it's close and some agent wanted to get a latte and a muffin?

---

Pretty much this. It didn't matter what network it came from as long as it wasn't on a .gov network.

Where else do you want them to download it? A random place is as good as any... Wikileaks wasn't exactly some secure place to access.

That's an interesting article to read. The guy clearly has issues. I'm going to venture to guess he has Asperger's.

aggiehawg said:

---

Ciboag96 said:

---

Once it's on Wikileaks it's open for everyone to see, dumbasses. Why classify it and jump through hoops after it's available to everyone.

Our government is full of morons.

---

Exactly. I understand some security concerns but public wifi at a Starbucks was the best they could do?

---

Why not? It was a clean laptop. Nothing on it. Grab file. Disconnect from internet. Don't plug laptop into secure net. Not a terrible way to keep physical separation.

The reason you should worry about public WiFi is because it may expose your device to attack and someone could steal your data or corrupt your device.

Why would you care if your device had no important data and you weren't going to use it again afterward?

Quote:

---

Why would you care if your device had no important data and you weren't going to use it again afterward?

---

Why wouldn't they use it again afterward? The whole point was finding out what was stolen and by who so they could be prosecuted? That's what the FBI was supposed to be doing, after all.

aggiehawg said:

---

Quote:

---

Why would you care if your device had no important data and you weren't going to use it again afterward?

---

Why wouldn't they use it again afterward? The whole point was finding out what was stolen and by who so they could be prosecuted? That's what the FBI was supposed to be doing, after all.

---

The device, not the file.