Snowden 2.0: Its Déjà Vu All Over Again At The NSA

After the humiliation in 2013 when the Snowden affair first came out, the NSA has just announced that another one of its subcontractors is charged with having stolen confidential data. 

Beginning of October, the US Ministry of Justice informed the public that an individual was arrested as a suspect in committing espionage against the NSA.

Harold Thomas Martin III, or Snowden 2.0 as he is now called, was an employee of Booz Allen Hamilton, a private organisation in charge of providing subcontractors for US agencies particularly specialized in espionage. 

This second Snowden was accused of having stolen ultra-secret codes belonging to the NSA and of having taken them outside the agency’s perimeter.

If, until now, the question of whether or not a human error was at stake, it was recently revealed that Harold Thomas Martin copied an impressive amount of confidential information (50,000 Gb, to be exact). His purpose? Unknown until this date, which is why we risk hearing about this matter time and time again.

According to the New York Times, the FBI is currently trying to establish whether or not this supposed data extraction is linked to the recent NSA hack conducted by the Shadow Brokers or to the not-so-recent public revelation by Edward Snowden. This second lead turned out false, as it appears that Harold Martin was active way before the famous whistleblower.

In retrospect, perhaps the title “Snowden: The Origins” would have been more suitable for this article. The suspect had apparently been copying secret source codes developed by the intelligence agency in order to infiltrate the IS of other states for almost two decades. With all that, he is now facing 10 years of imprisonment for government hacking.

Insider threats are ringing at the door…will cybersecurity answer?

The news is not only embarrassing for the NSA, which, for the second time in the past three years, has seen one of its subcontractors engage in a game of “who spies who?”, but also raised questions where the Booz Allen Hamilton group is concerned. After all, Edward Snowden was one of their employees as well. We think one simple meme can be used to summarize this whole affair:
Shame NSA

If, until now, malware was the main worry for cybersecurity experts, recent events have changed this reality. According to a study conducted by HfSResearch, insider threats have now joined the top of major cyber-fears. Whether intended to cause damage or just accidental, the insider threat is something that over 69% of respondents said they’ve already been confronted with.

In the world of spying, being able to trust one’s agents is a must. In the event one of them turns out to be a double-agent, roles are reversed and the spying agency becomes the spied. This can also be applied to companies, when talking about the relationship between management and its employees. How do we make sure that this trust is well placed? And how can we surpass a failure? In the blink of an eye, we’re caught in an endless vicious cycle of paranoia. Which is exactly the ongoing situation in the United States.

Without a doubt, we owe our gratitude to the NSA for the numerous debates it has stimulated within the cybersecurity public forum debate. The imminent premiere on the big screen of Oliver Stone’s movie comes just in time for another wave of appeals directed at President Obama in order to pardon Edward Snowden. The Harold T. M. incident only adds insult to injury. Should we or should we not clear of all charges the now Moscow-based whistleblower? Public opinion is divided in two. The final decision is even more awaited, as it may set a precedent for similar cases to come.

In response, The Washington Post published an editorial in which it underlines, again, the fact that Snowden violated the law, as well as broke his contractual obligations by copying 1,5 million confidential documents and then leaking them to the press. The journal made it clear that it places national security above all and reproaches to the fugitive that, by revealing top-secret information with concern to the Prism surveillance project, it has gravely endangered the United States.

Aside from the very obvious downside, Antoine Lefebure, French Media Historian, specialised in Communications Technologies and author of “The Snowden affair: how the United States is spying on the world”, considers that the ex-subcontractor working for the NSA actually did a huge favor for his country.

Before the Snowden affair, there was no debate whatsoever at a parliamentary level or even at a public level with concern to the dangers of cyber-surveillance … Snowden had a very positive influence on the matter, even though, in doing so, he had broken the confidentiality pledge”.source: Sputnik News.

If knowledge is power, then knowing the NSA’s secrets is a huge gain for the enemy, whoever that enemy might be. At the same time, knowing all that the agency still has to hide, this is a huge step forward for the American people.

Having chosen privacy over security, the NSA is now standing bare before the very citizens it is trying to protect. It remains to be seen if the Harold T. M. affair is a prequel to the original Snowden? Or is he just your ordinary double agent?

Information- Management:  Secret Arrest Of A National Security Agency Contractor:  

Second Snowden Has Leaked Drone Docs:

 

« Artificial Intelligence & Machine Learning Market To Grow Fivefold By 2020
Internet of Things – For Smart and Secure Cities »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Allianz

Allianz

Allianz Cyber Protect is a comprehensive cyber insurance provided internationally and tailored to your company´s risk profile.

Guardtime

Guardtime

Guardtime's Black Lantern platform provides real-time cybersecurity and data-centric asset protection.

Seagate Technology

Seagate Technology

Seagate data storage systems are purpose-built for enterprise and data centre performance, scalability, reliability and security.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

InfoSec Conferences

InfoSec Conferences

InfoSec Conferences is an online directory of infosec conferences. We list every single Information Security conference, event and seminar within every niche in Cybersecurity.

Atakama

Atakama

With Atakama, data remains encrypted until the very moment it is used, and the ability to decrypt is based on zero trust architecture.

Cira Info Tech

Cira Info Tech

Cira InfoTech’s cyber security and network consulting and managed services deliver unmatched talented resources and capabilities required to design and build an agile and adaptive IT environment.

Axitea

Axitea

Axitea designs, implements and develops the solutions best suited to its customers’ needs and their physical and cyber security requirements.

Zephyr Project

Zephyr Project

The Zephyr Project strives to deliver the best-in-class RTOS for connected resource-constrained devices, built to be secure and safe.

FYEO

FYEO

FYEO is a threat monitoring and identity access management platform for consumers, enterprises and SMBs.

Silicon Labs

Silicon Labs

Silicon Labs are a leader in secure, intelligent wireless technology for a more connected world. We provide award-winning hardware and software security to help safeguard connected devices.

Mission Critical Partners (MCP)

Mission Critical Partners (MCP)

Mission Critical Partners is committed to delivering innovative solutions that help our clients enhance and evolve their critical-communications systems and operations.

MailChannels

MailChannels

MailChannels protects companies against malicious email threats. Used by 750+ hosting providers around the world.

Opus Security

Opus Security

Opus dramatically reduces cloud security risks by enabling teams to define, orchestrate, automate and measure remediation processes across the entire distributed organization.

Guardz

Guardz

Guardz helps small and growing businesses to go from zero or low cyber protection to having comprehensive security – in the quickest and most straightforward way.

Mindgard

Mindgard

The Mindgard Security Copilot platform secures your Artificial Intelligence, GenAI and LLMs.