Snowden 2.0: Its Déjà Vu All Over Again At The NSA

Uploaded on 2016-11-21 in NEWS-Cybersecurity News, INTELLIGENCE--USA, FREE TO VIEW

After the humiliation in 2013 when the Snowden affair first came out, the NSA has just announced that another one of its subcontractors is charged with having stolen confidential data. 

Beginning of October, the US Ministry of Justice informed the public that an individual was arrested as a suspect in committing espionage against the NSA.

Harold Thomas Martin III, or Snowden 2.0 as he is now called, was an employee of Booz Allen Hamilton, a private organisation in charge of providing subcontractors for US agencies particularly specialized in espionage. 

This second Snowden was accused of having stolen ultra-secret codes belonging to the NSA and of having taken them outside the agency’s perimeter.

If, until now, the question of whether or not a human error was at stake, it was recently revealed that Harold Thomas Martin copied an impressive amount of confidential information (50,000 Gb, to be exact). His purpose? Unknown until this date, which is why we risk hearing about this matter time and time again.

According to the New York Times, the FBI is currently trying to establish whether or not this supposed data extraction is linked to the recent NSA hack conducted by the Shadow Brokers or to the not-so-recent public revelation by Edward Snowden. This second lead turned out false, as it appears that Harold Martin was active way before the famous whistleblower.

In retrospect, perhaps the title “Snowden: The Origins” would have been more suitable for this article. The suspect had apparently been copying secret source codes developed by the intelligence agency in order to infiltrate the IS of other states for almost two decades. With all that, he is now facing 10 years of imprisonment for government hacking.

Insider threats are ringing at the door…will cybersecurity answer?

The news is not only embarrassing for the NSA, which, for the second time in the past three years, has seen one of its subcontractors engage in a game of “who spies who?”, but also raised questions where the Booz Allen Hamilton group is concerned. After all, Edward Snowden was one of their employees as well. We think one simple meme can be used to summarize this whole affair:
Shame NSA

If, until now, malware was the main worry for cybersecurity experts, recent events have changed this reality. According to a study conducted by HfSResearch, insider threats have now joined the top of major cyber-fears. Whether intended to cause damage or just accidental, the insider threat is something that over 69% of respondents said they’ve already been confronted with.

In the world of spying, being able to trust one’s agents is a must. In the event one of them turns out to be a double-agent, roles are reversed and the spying agency becomes the spied. This can also be applied to companies, when talking about the relationship between management and its employees. How do we make sure that this trust is well placed? And how can we surpass a failure? In the blink of an eye, we’re caught in an endless vicious cycle of paranoia. Which is exactly the ongoing situation in the United States.

Without a doubt, we owe our gratitude to the NSA for the numerous debates it has stimulated within the cybersecurity public forum debate. The imminent premiere on the big screen of Oliver Stone’s movie comes just in time for another wave of appeals directed at President Obama in order to pardon Edward Snowden. The Harold T. M. incident only adds insult to injury. Should we or should we not clear of all charges the now Moscow-based whistleblower? Public opinion is divided in two. The final decision is even more awaited, as it may set a precedent for similar cases to come.

In response, The Washington Post published an editorial in which it underlines, again, the fact that Snowden violated the law, as well as broke his contractual obligations by copying 1,5 million confidential documents and then leaking them to the press. The journal made it clear that it places national security above all and reproaches to the fugitive that, by revealing top-secret information with concern to the Prism surveillance project, it has gravely endangered the United States.

Aside from the very obvious downside, Antoine Lefebure, French Media Historian, specialised in Communications Technologies and author of “The Snowden affair: how the United States is spying on the world”, considers that the ex-subcontractor working for the NSA actually did a huge favor for his country.

Before the Snowden affair, there was no debate whatsoever at a parliamentary level or even at a public level with concern to the dangers of cyber-surveillance … Snowden had a very positive influence on the matter, even though, in doing so, he had broken the confidentiality pledge”.source: Sputnik News.

If knowledge is power, then knowing the NSA’s secrets is a huge gain for the enemy, whoever that enemy might be. At the same time, knowing all that the agency still has to hide, this is a huge step forward for the American people.

Having chosen privacy over security, the NSA is now standing bare before the very citizens it is trying to protect. It remains to be seen if the Harold T. M. affair is a prequel to the original Snowden? Or is he just your ordinary double agent?

Information- Management:  Secret Arrest Of A National Security Agency Contractor:  

Second Snowden Has Leaked Drone Docs:

 

« Artificial Intelligence & Machine Learning Market To Grow Fivefold By 2020
Internet of Things – For Smart and Secure Cities »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

MetaFlows

MetaFlows

MetaFlows’ SaaS malware detection & prevention software passively analyzes the behavior and the content of Internet traffic.

Napatech

Napatech

Napatech develops and manufactures high speed network accelerators specifically designed for real-time network monitoring and analysis applications.

Cyber Security Specialists

Cyber Security Specialists

Cyber Security Specialists Limited provide Security services across a wide range of markets, from multi-national Corporate Organisations and Government Agencies, through to smaller Businesses.

Global Security Network (GSN)

Global Security Network (GSN)

GSN focuses on specialized IT Security solutions & services for the military, law enforcement, critical infrastructure and oil & gas sectors in the Middle East.

Sapien Cyber

Sapien Cyber

Sapien Cyber is an Australian company bringing leading-edge cyber security and threat intelligence solutions.

IAR Systems

IAR Systems

IAR Systems are a frontrunner in a changing industry, and a future-proof software supplier enabling the IoT.

Data Destruction London

Data Destruction London

Data Destruction London offers fast, confidential and compliant expert data destruction services to businesses and organisations in London.

Blockchain Solutions

Blockchain Solutions

Blockchain Solutions Limited is a technological One Stop Solution provider, for Blockchain technology.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Valency Networks

Valency Networks

Valency Networks provide cutting edge results in the areas of Vulnerability Assessment and Penetration Testing services for webapps, cloud apps, mobile apps and IT networks.

Digital Edge

Digital Edge

Digital Edge provides unparalleled Managed Cloud Solutions, as well as superior Information Technology Support Services.

Flare Systems

Flare Systems

Flare proactively detects and remediates exposure across the clear & dark web, providing organizations with the equivalent of an automated cyber reconnaissance team.

Knostic

Knostic

Knostic is an early stage startup developing a risk management and governance platform designed for enterprise large language models (LLM).

Simbian

Simbian

Simbian, with its hardened TrustedLLM system, is the first to accelerate security by empowering every member of a security team from the C-Suite to frontline practitioners.

itm8

itm8

itm8 is a Nordic digital transformation partner offering a wide range of services in IT operations and Cloud Services, Digital Transformation, Application Services, ERP, and Cyber Security.

Black Alps

Black Alps

Black Alp's mission is to promote cybersecurity through the organization of dedicated events.