Snowden 2.0: Its Déjà Vu All Over Again At The NSA

After the humiliation in 2013 when the Snowden affair first came out, the NSA has just announced that another one of its subcontractors is charged with having stolen confidential data. 

Beginning of October, the US Ministry of Justice informed the public that an individual was arrested as a suspect in committing espionage against the NSA.

Harold Thomas Martin III, or Snowden 2.0 as he is now called, was an employee of Booz Allen Hamilton, a private organisation in charge of providing subcontractors for US agencies particularly specialized in espionage. 

This second Snowden was accused of having stolen ultra-secret codes belonging to the NSA and of having taken them outside the agency’s perimeter.

If, until now, the question of whether or not a human error was at stake, it was recently revealed that Harold Thomas Martin copied an impressive amount of confidential information (50,000 Gb, to be exact). His purpose? Unknown until this date, which is why we risk hearing about this matter time and time again.

According to the New York Times, the FBI is currently trying to establish whether or not this supposed data extraction is linked to the recent NSA hack conducted by the Shadow Brokers or to the not-so-recent public revelation by Edward Snowden. This second lead turned out false, as it appears that Harold Martin was active way before the famous whistleblower.

In retrospect, perhaps the title “Snowden: The Origins” would have been more suitable for this article. The suspect had apparently been copying secret source codes developed by the intelligence agency in order to infiltrate the IS of other states for almost two decades. With all that, he is now facing 10 years of imprisonment for government hacking.

Insider threats are ringing at the door…will cybersecurity answer?

The news is not only embarrassing for the NSA, which, for the second time in the past three years, has seen one of its subcontractors engage in a game of “who spies who?”, but also raised questions where the Booz Allen Hamilton group is concerned. After all, Edward Snowden was one of their employees as well. We think one simple meme can be used to summarize this whole affair:
Shame NSA

If, until now, malware was the main worry for cybersecurity experts, recent events have changed this reality. According to a study conducted by HfSResearch, insider threats have now joined the top of major cyber-fears. Whether intended to cause damage or just accidental, the insider threat is something that over 69% of respondents said they’ve already been confronted with.

In the world of spying, being able to trust one’s agents is a must. In the event one of them turns out to be a double-agent, roles are reversed and the spying agency becomes the spied. This can also be applied to companies, when talking about the relationship between management and its employees. How do we make sure that this trust is well placed? And how can we surpass a failure? In the blink of an eye, we’re caught in an endless vicious cycle of paranoia. Which is exactly the ongoing situation in the United States.

Without a doubt, we owe our gratitude to the NSA for the numerous debates it has stimulated within the cybersecurity public forum debate. The imminent premiere on the big screen of Oliver Stone’s movie comes just in time for another wave of appeals directed at President Obama in order to pardon Edward Snowden. The Harold T. M. incident only adds insult to injury. Should we or should we not clear of all charges the now Moscow-based whistleblower? Public opinion is divided in two. The final decision is even more awaited, as it may set a precedent for similar cases to come.

In response, The Washington Post published an editorial in which it underlines, again, the fact that Snowden violated the law, as well as broke his contractual obligations by copying 1,5 million confidential documents and then leaking them to the press. The journal made it clear that it places national security above all and reproaches to the fugitive that, by revealing top-secret information with concern to the Prism surveillance project, it has gravely endangered the United States.

Aside from the very obvious downside, Antoine Lefebure, French Media Historian, specialised in Communications Technologies and author of “The Snowden affair: how the United States is spying on the world”, considers that the ex-subcontractor working for the NSA actually did a huge favor for his country.

Before the Snowden affair, there was no debate whatsoever at a parliamentary level or even at a public level with concern to the dangers of cyber-surveillance … Snowden had a very positive influence on the matter, even though, in doing so, he had broken the confidentiality pledge”.source: Sputnik News.

If knowledge is power, then knowing the NSA’s secrets is a huge gain for the enemy, whoever that enemy might be. At the same time, knowing all that the agency still has to hide, this is a huge step forward for the American people.

Having chosen privacy over security, the NSA is now standing bare before the very citizens it is trying to protect. It remains to be seen if the Harold T. M. affair is a prequel to the original Snowden? Or is he just your ordinary double agent?

Information- Management:  Secret Arrest Of A National Security Agency Contractor:  

Second Snowden Has Leaked Drone Docs:

 

« Artificial Intelligence & Machine Learning Market To Grow Fivefold By 2020
Internet of Things – For Smart and Secure Cities »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CSO

CSO

CSO serves enterprise security decision-makers and users with the critical information they need to stay ahead of evolving threats and defend against criminal cyberattacks.

International Association for Cryptologic Research (IACR)

International Association for Cryptologic Research (IACR)

(IACR is a non-profit scientific organization whose purpose is to further research in cryptology and related fields.

Soracom

Soracom

Soracom offers secure, scalable, cloud-native connectivity developed specifically for the Internet of Things.

Cybertekpro

Cybertekpro

Cybertekpro is a specialist insurance broker providing Cyber Liability insurance and cyber risk assessment services.

StationX

StationX

StationX is a leading provider of cyber security training, consultancy and services.

Windscribe

Windscribe

Windscribe is a Virtual Private Network services provider offering secure encrypted access to the internet.

ubirch

ubirch

The ubirch platform is designed to ensure that IoT data is trustworthy and secure.

Cynterra

Cynterra

Cynterra is a next generation cloud cyber security and data analytical service provider offering cloud security compliance, data protection, visibility and threat protection services.

CyberForum

CyberForum

CyberForum supports businesses from the IT and high-tech industry in all stages of their development: from startup consulting to professional staffing and even location marketing campaigns.

Reed

Reed

reed.co.uk is a leading job site in the UK, providing a full online service for anyone looking for a new job.

MISP Project

MISP Project

The MISP threat sharing platform is a free and open source software helping information sharing of threat intelligence including cyber security indicators.

Bleckwen

Bleckwen

Bleckwen is a proven fraud detection system that helps financial institutions build trust with customers.

Trace3

Trace3

Trace3 is a pioneer in business transformation solutions, empowering organizations to keep pace with the rapid changes in IT innovations and maximize organizational health.

Xceptional

Xceptional

Xceptional is a multi-award-winning technology services firm that celebrates the unique strengths of people with autism.

Rampart AI

Rampart AI

Tackling DevSecOps Issues In Application Security. Rampart has revolutionized the shift left security approach, applying zero-trust to application development.

Ofcom

Ofcom

Ofcom is the UK's communications regulator. We regulate the TV, radio and video on demand sectors, fixed line telecoms, mobiles, postal services, plus the airwaves over which wireless devices operate.