Posts

The Julian Assange Question: True Claims about Prison Conditions or Lies in Service of Martyrdom?

/54 Comments/in /by

Today and tomorrow, the United States will appeal Judge Vanessa Baraitser’s decision in the Julian Assange case that American prisons are too inhumane to house someone with suicidal tendencies safely. The US will argue several things about the decision, including that Baraitser had wrongly credited testimony of an expert that, like that of several others presented in Julian Assange’s extradition defense, was obviously misleading.

On Wednesday, judges said the weight given to a misleading report from Assange’s psychiatric expert that was submitted at the original hearing in January could form part of Washington’s full appeal in October.

Sitting in London, Lord Justice Holroyde said he believed it was arguable that Judge Vanessa Baraitser had attached too much weight to the evidence of Prof Michael Kopelman when deciding not to allow the US’s appeal.

[snip]

Delivering the latest decision, Holroyde said it was “very unusual” for an appeal court to have to consider evidence from an expert that had been accepted by a lower court, but also found to have been misleading – even if the expert’s actions had been deemed an “understandable human response” designed to protect the privacy of Assange’s partner and children.

The judge said that, in those circumstances, it was “at least arguable” that Baraitser erred in basing her conclusions on the professor’s evidence.

“Given the importance to the administration of justice of a court being able to reply on the impartiality of an expert witness, it is in my view arguable that more detailed and critical consideration should have been given to why [the professor’s] ‘understandable human response’ gave rise to a misleading report.”

The US government had previously been allowed to appeal against Baraitser’s decision on three grounds – including that it was wrong in law. Assange’s legal team had described the grounds as “narrow” and “technical”. The two allowed on Wednesday were additional.

One key issue is whether assurances the US offered to the UK that Assange won’t be held under Special Administrative Measures are worth the paper they were written on (they’re probably not).

The summary of the decision to accept the appeal said that the United States had “provided the United Kingdom with a package of assurances which are responsive to the district judge’s specific findings in this case.”

Specifically, it said, Mr. Assange would not be subjected to measures that curtail a prisoner’s contact with the outside world and can amount to solitary confinement, and would not be imprisoned at the supermax prison in Florence, Colo., unless he later did something “that meets the test” for imposing such harsh steps.

“The United States has also provided an assurance that the United States will consent to Mr. Assange being transferred to Australia to serve any custodial sentence imposed on him,” the summary said.

While the basis for refusing extradition — expanding on a precedent established with Lauri Love, whose Aspergers was far more severe and better established than Assange’s depression — may be controversial, the severe conditions in American prisons are not.

And that’s why the focus of Assange’s team over the past nine months and in the next few days will be so telling.

Assange’s team would need to look no further than Joshua Schulte — the accused source for the stolen CIA hacking tools who has been held under draconian Special Administrative Measures (which sharply curtail Schulte’s ability to communicate with anyone besides his lawyers and immediate family) for over three years — to demonstrate how WikiLeaks associates have been treated in US jails. Judge Paul Crotty recently rejected Schulte’s latest bid to end the SAMs before the case got reassigned — with no public explanation — to Judge Jesse Furman (Crotty must be getting close to going senior status, but Schulte also asked Crotty to recuse). In his order affirming the SAMs on Schulte, Crotty noted that the former CIA developer, “intentionally disclosed information he knows to be classified–including in a recently filed motion seeking declassification of that very information,” and prosecutors just warned that Schulte may face additional consequences for doing so.

In recent weeks, the defendant has, through standby counsel, attempted to file several documents on ECF that appear to contain classified information. Section 5 notices are particularly likely to contain classified information, since the statute requires the defendant to “include a brief description of the classified information” at issue, and prohibits the defendant from “disclos[ing] any information known or believed to be classified in connection with a trial or pretrial proceeding until notice has been given under this subsection” and the United States has had an opportunity to seek a CIPA § 6 hearing and, if applicable, an appeal from the Court’s determination under § 7. Should the defendant knowingly and intentionally publicly file or attempt to publicly file information “known or believed to be classified,” including as part of a § 5 notice, he could be subject to penalties.

Likewise Assange’s team could point to the case of Daniel Hale, who was jailed prior to sentencing because it was feared he would harm himself, but then was placed in the Marion Communications Management Unit, a less harsh regime restricting prisoners’ communications than SAMs, but nevertheless not something known to be justified by anything Hale did during pre-trial release, and something that exacerbates Hale’s isolation in prison.

Rather than focusing on these very uncontroversial issues, Assange’s team has spent the last nine months spinning wildly about topics other than US prison conditions. They did so, first, by falsely claiming that an article in which Siggi Thordarson reaffirmed one of the most damning things he said about Assange would doom the case against Assange, even though as a co-conspirator, Siggi is unlikely to be called as a witness. More recently, Assange’s team has embraced an article showing that CIA Director Mike Pompeo was unable to pursue a variety of measures to attempt to thwart the release of (still substantially unreleased) stolen hacking tools, even though the article proves that Assange lied wildly in his extradition hearing about when and why the US government changed its understanding of his actions and further shows that the US didn’t charge Assange in the face of Pompeo’s pressure, but only did so when Russia attempted to exfiltrate Assange.

Assange has a really good case to make about US jail and prison conditions.

Instead, Assange has spent the last nine months telling wild stories in an effort to make a man credibly accused of conspiring to hack US targets a martyr of journalism.

DOJ Was Still Working to Access Joshua Schulte’s Phone in September 2019

/33 Comments/in , , , /by

Glenn Greenwald is making factually unsupported defenses of Russia on Twitter again.

Yesterday, he made an argument about what he sees as one of the most overlooked claims in the Yahoo piece suggesting there was an assassination plot against Julian Assange and then, 100-something paragraphs into the thing, admitting that discussions of killing Assange were really regarded in the CIA as, “a crazy thing that wastes our time.”

Glenn doesn’t, apparently, think the overlooked detail is that the timeline in the story describing the changing US government understanding towards Assange, including Edward Snowden’s central role in that, shows that Assange’s defense lied shamelessly about the timeline in his extradition hearing.

Nor does Glenn seem interested that DOJ didn’t charge Assange during the summer of 2017 after Mike Pompeo started plotting against the Australian, but only did so on December 21, 2017, as the US and UK prepared for what they believed to be an imminent exfiltration attempt by Russia.

Intelligence reports warned that Russia had its own plans to sneak the WikiLeaks leader out of the embassy and fly him to Moscow, according to Evanina, the top U.S. counterintelligence official from 2014 through early 2021.

The United States “had exquisite collection of his plans and intentions,” said Evanina. “We were very confident that we were able to mitigate any of those [escape] attempts.”

[snip]

Narvaez told Yahoo News that he was directed by his superiors to try and get Assange accredited as a diplomat to the London embassy. “However, Ecuador did have a plan B,” said Narvaez, “and I understood it was to be Russia.”

Aitor Martínez, a Spanish lawyer for Assange who worked closely with Ecuador on getting Assange his diplomat status, also said the Ecuadorian foreign minister presented the Russia assignment to Assange as a fait accompli — and that Assange, when he heard about it, immediately rejected the idea.

On Dec. 21, the Justice Department secretly charged Assange, increasing the chances of legal extradition to the United States. That same day, UC Global recorded a meeting held between Assange and the head of Ecuador’s intelligence service to discuss Assange’s escape plan, according to El País. “Hours after the meeting” the U.S. ambassador relayed his knowledge of the plan to his Ecuadorian counterparts, reported El País.

What Glenn thinks is important is that, on April 13, 2017, when Mike Pompeo labeled WikiLeaks a non-state hostile intelligence service, the CIA did not yet have proof that “WikiLeaks was operating at the direct behest of the Kremlin,” though of course Glenn overstates this and claims that they had “no evidence.”

Glenn then claimed that CIA’s lack of proof on April 13, 2017 is proof that all claims about Assange’s ties with Russia made in the last five years — that is, from roughly October 7, 2016 through October 12, 2021 — lacked (any!) evidence. In other words, Glenn claims that CIA’s lack of proof, before UC Global ratcheted up surveillance against Assange in June 2017 and then ratcheted it up much more intensively in December 2017, and before US intelligence discovered the Russian exfiltration attempt, and before they had enough evidence to charge Joshua Schulte in 2018, and before they seized Assange’s computer in 2019, and before Snowden wrote a book confirming WikiLeaks’ intent in helping him flee, is proof that they never acquired such proof in the 1600 days since then.

At the time Pompeo made his comments, FBI was just five weeks into the Vault 7 investigation. They were chasing ghosts in the Shadow Brokers case, which also implicated Assange. Robert Mueller had not yet been appointed and, perhaps a month after he was, Andrew Weissmann discovered that, “the National Security Division was not examining what the Russians had done with the emails and other documents they’d stolen from those servers.” Pompeo’s comments came four months before Mueller obtained the first warrant targeting Roger Stone. They came seven months before Mueller obtained a warrant targeting Assange’s Twitter account. They came sixteen months before Mueller obtained a warrant describing a hacking and foreign agent investigation into WikiLeaks and others. They came 25 months before Mueller released his report while redacting the revelation that multiple strands of the investigation into Stone were ongoing (though also stating they did not have enough admissible evidence to prove Assange knew that Russia continued to hack the DNC). They came three years before DOJ kept the warrants reflecting the foreign agent investigation into WikiLeaks and others largely redacted, presumably because that investigation remained ongoing. They came three and a half years before the government withheld almost all of WikiLeaks lawyer Margaret Kunstler’s two interviews with Mueller’s team because of an ongoing investigation.

And all that’s separate from the long-standing WikiLeaks investigation at EDVA that led to Assange’s charges, which Rod Rosenstein has said never fully moved under Mueller.

On April 13, 2017, the investigation into Assange’s activities in 2016 had barely begun. Yet the fact that CIA couldn’t prove Assange was a Russian agent before most investigation into these things had started, Glenn claims, is proof that Assange is not a Russian agent.

It’s a logically nonsensical argument, but because certain gullible WikiLeaks boosters don’t see the flaws in the argument, I’d like to point to something fascinating disclosed just recently in the Joshua Schulte case: as late as September 2019, DOJ was still trying to get a full forensic image of the the phone Schulte was using when he was first interviewed on March 15, 2017.

That was revealed in the government’s response to a Schulte motion to suppress evidence from the Huawei he used at the time, in the early stages of the FBI’s investigation. We saw many of these warrants from Schulte’s first attempt to get these early warrants suppressed (in which his attorney noted that the government got a second device-specific warrant). But Schulte is challenging the search on a basis that even Sabrina Shroff didn’t raise two years ago.

As the government tells it, FBI agents used a subpoena to get Schulte to hand over his phone during the interview on March 15 before they all returned to his apartment where they had a warrant for all his devices, then got a separate warrant at 1:26AM that night to search the phone specifically. They were unable to do so because it was locked, so in an interview on March 21 — at which time the search warrant was still valid — they got Schulte to open his phone (something his attorney at the time boasted he did voluntarily during a 2017 bail hearing).

Someone must have lost their job at FBI, though, because after Schulte opened the phone, it rebooted, preventing them from obtaining a full forensic copy of the device.

On March 20 and 21, 2021, the defendant, accompanied by his attorneys, was interviewed by the Government and law enforcement agents at the U.S. Attorney’s Office. At the interview on March 21, 2021, the defendant, in the presence of counsel, consented to a search of the Cellphone and entered his password to unlock it. (Id. ¶ 13(b)). When the Cellphone was unlocked, however, it rebooted, and FBI was able to obtain only a logical copy of the Cellphone rather than a complete forensic image. (Id. ¶ 13(c)).

However, in its response to Schulte, the government is relying on two documents that it released for the first time. First, a location warrant/pen register targeting three different phones, which the government submitted to show that Schulte’s Google history obtained on March 14 showed that he searched for ways to delete files in the time period he is accused of stealing the CIA files and deleting evidence of doing so. The affidavit is useful for explaining how Schulte was using phones in that period of 2017. In addition to the Huawei, for example, Schulte had a phone with a Virginia number he used to call at least one of his CIA colleagues between March 7 and when he canceled the phone on March 12. Then, after he gave the FBI his Huawei phone, he bought one that night he used to call Bloomberg (his employer), and another on March 17.

More importantly, the government released the affidavit and warrant from September 9, 2019, providing more explanation why they weren’t able to fully exploit the phone in 2017.

After Schulte unlocked the phone, FBI personnel attempted to forensically image the Subject Device so that the FBI could review its contents. However, because the Subject Device rebooted during that process, the FBI was able to obtain only a logical forensic image of the Subject Device (the “Logical Forensic Image”). Although the Logical Forensic Image contains some content from the Subject Device, the Logical Forensic Image does not contain all data that may be on the Subject Device, including deleted information and data from applications. The data and information from the Subject Device that is missing from the Logical Forensic Image would likely be captured on a complete forensic image of the phone (“Complete Forensic Image”). However, in March 2017, the FBI was unable to obtain a Complete Forensic Image of the Subject Device because the Subject Device locked after it rebooted and the FBI did not know the password to unlock the phone again to attempt to obtain a Complete Forensic Image.

On or about August 12, 2019, FBI personnel involved in this investigation successfully unlocked the Subject Device using a portion of a password identified during the course of the investigation (“Password-1”). Forensic examiners with the FBI believe that they will be able to obtain a Complete Forensic Image of the Subject Device using Password-1.

After unlocking the Subject Device using Password-1, an FBI agent promptly contacted the Assistant United States Attorneys involved in this investigation to inform them of this development, and the decision was made to seek a warrant to search the Subject Device for evidence, fruits, and instrumentalities of the Subject Offense.

The affidavit explains, among other things, that Schulte first obtained the phone on September 21, 2016 and logged into Google right away (somewhere in the vast paperwork released in the case, Schulte admitted that Google was his big weakness — and how!).

In the government response, they describe that the government did search the phone. They say the phone contains images of a woman Schulte lived with that he was charged, in Virginia, with assaulting in 2015.

The FBI searched the Cellphone pursuant to that warrant. The Cellphone contains, among other things, images of an individual identified as Victim-1 in the Government’s prior filings.

It’s an interesting defense of the import of the warrant. As the government explained in 2017 when it first informed Judge Paul Crotty of the Virginia assault charge, the incriminating photos had already been found on one of Schulte’s phones (it’s unclear whether these were found on the Huawei or the phone shut down on March 12), so the State of Virginia presumably doesn’t need any images discovered after 2019 to prosecute him on the assault charge.

As relevant here, the Government discussed several photographs recovered from the defendant’s cellphone that depicted an unknown individual using his hands to sexually assault an unconscious female woman (the “Victim”). (See Exhibit A, Aug. 24, 2017 Tr. at 12-13). At the time, the Government was aware that the Victim knew the defendant and had lived in his apartment as a roommate in the past. (Id.) Magistrate Judge Henry B. Pitman, who presided over the presentment, did not consider the information proffered by the Government regarding the Victim, explaining that “facts have [not] been proffered that . . . tie Mr. Schulte to the conduct in that incident.” (Id. at 48-89). Nevertheless, Judge Pitman detained the defendant concluding that the defendant had not rebutted the presumption that he was a danger to the community. (Id. at 47-49).

[snip]

On or about November 15, 2017, the defendant was charged in Loudoun County Virginia with two crimes: (i) object sexual penetration, a felony, in violation Virginia Code Section 18.2-67.2; and (ii) the unlawful creation of an image of another, a misdemeanor, in violation of Virginia Code Section 18.2-386.1. The Government understands that these charges are premised on the photographs of the Victim. Specifically, the Loudoun County Commonwealth’s Attorneys Office has developed evidence that the defendant was the individual whose hands are visible in the photographs sexually penetrating the Victim.

But whatever they found on the phone, the government made an effort to make clear that even this 2019 search — which might have obtained deleted WhatsApp or Signal texts, both of which Schulte has used — was covered by a search warrant, something Schulte is currently trying to suppress only on a poison fruit claim.

This wasn’t the only evidence the government obtained years after Schulte became the primary suspect, though. They didn’t obtain full cooperation from Schulte’s closest buddy from when he was at the CIA, Michael, until January 2020, just before his first trial (which is one of the reasons the government provided fatally late notice to Schulte that the friend had been placed on leave at CIA). Michael helped Schulte buy the disk drives the government seems to suspect Schulte used in the theft, he also knew of Schulte’s gaming habits, and the CIA believed he might know more about Schulte’s theft from CIA.

So it’s clear that for most of the time that Glenn says the investigation as it stood in April 2017 must reflect all the evidence about Schulte, Assange, and Russia, the government continued to investigate.

None of that says DOJ obtained information from Schulte in that time implicating Assange in ties with Russia (though, as I’ve noted, someone close to WikiLeaks told me Schulte reached out to Russia well before ambiguous references to Russia showed up at Schulte’s trial). But to suggest all the evidence the government might now have was already in their possession on April 13, 2017, requires ignoring everything that has happened since that time.

Timeline

October 7, 2016: In statement attributing DNC hack to Russia, DHS and ODNI include documents released by WikiLeaks; an hour later WikiLeaks starts Podesta release

January 6, 2017: Intelligence Community Assessment assesses, with high confidence, that GRU released stolen documents via exclusives with WikiLeaks

March 7, 2017: First Vault 7 release, including unredacted names of key CIA developers

March 13, 2017: Affidavit supporting covert warrant approving search of Schulte’s apartment, including the devices found there

March 14, 2017: Affidavit supporting overt warrant approving search of Schulte’s apartment, including devices

March 14, 2017: Search warrants for Schulte’s Google account and other electronic accounts

March 15, 2017: 302 from interview with Schulte and testimonial subpoena and cell phone subpoena handed to him at interview

March 16, 2017: Affidavit supporting search warrant authorizing search of Schulte’s Huawei smart phone

March 31, 2017: Warrant and pen register for three different Schulte phones — one serviced by Sprint that he had used through all of 2016 but canceled on March 12, 2017, one he obtained after his phone was seized on March 15, 2017 serviced by Virgin, another he bought on March 17, 2017 serviced by AT&T

April 13, 2017: Mike Pompeo declares WikiLeaks a non-state hostile intelligence service

May 17, 2017: Robert Mueller appointed

August 7, 2017: Mueller obtains first warrant targeting Stone, covering hacking

August 23, 2017: Schulte charged with possession of child pornography

September 6, 2017: Schulte indicted on child pornography charges

September 26, 2017: Roger Stone testifies before HPSCI, lies about source for advance knowledge

October 19, 2017: Stone falsely claims Credico is his intermediary with WikiLeaks

November 6, 2017: Mueller obtains warrant targeting Assange’s Twitter account, citing hacking, conspiracy, and illegal foreign political contribution

November 8, 2017: Schulte claims to have been approached by foreign spies on Subway between his house and court appearance

November 9, 2017: WikiLeaks releases source code, billing it Vault 8

November 14, 2017: Assange invokes CIA’s source code (Vault 8) in suggesting Don Jr should get him named Ambassador to the US

November 16, 2017: Schulte tells FBI story about approach on Subway, accesses Tor

November 17, 2017: Schulte accesses Tor

November 26, 2017: Schulte accesses Tor

November 30, 2017: Schulte accesses Tor

December 5, 2017: Schulte accesses Tor

December 7, 2017: Schulte detained pursuant to charges of sexual assault in VA and violating release conditions

December 12, 2017: Randy Credico invokes the Fifth

December 21, 2017: Assange first charged with CFAA charge

March 6, 2018: Assange indicted on single CFAA charge

June 18, 2018: Superseding Schulte indictment adds Vault 7 leak charges

June 19, 2018: WikiLeaks links to Schulte diaries

August 20, 2018: Mueller obtains warrant describing investigation of WikiLeaks and others into conspiracy, hacking, illegal foreign contribution, and foreign agent charges

September 25, 2018: Schulte posts diaries from jail

October 31, 2018: Second Schulte superseding indictment adds charges for leaking from MCC

April 11, 2019: Assange seized from Embassy

May 23, 2019: Superseding Assange indictment adds Espionage Act charges

August 16, 2019: After FBI interview, CIA places Schulte buddy, “Michael” on leave

September 9, 2019: Affidavit in support of warrant authorizing search of Huawei phone

February 4, 2020: Schulte trial opens

February 12, 2020: Schulte attorneys reveal “Michael” was put on paid leave in August 2019

March 6, 2020: In effort to coerce Jeremy Hammond to testify, AUSA twice tells Hammond that Julian Assange is a Russian spy

March 9, 2020: Judge Paul Crotty declares mistrial on most counts in Schulte case

April 28, 2020: DOJ continues to redact Foreign Agent warrants targeting WikiLeaks and others because of ongoing investigation

June 8, 2020: Third superseding Schulte indictment adds clarification to the charges

June 24, 2020: Second superseding Assange indictment extends CFAA conspiracy through 2015, citing efforts to use Snowden to recruit more leakers

November 2, 2020: BuzzFeed FOIA reveals that Mueller referred “factual uncertainties” regarding possible Stone hacking charge to DC US Attorney for further investigation, but also finding that it did not have admissible evidence that Assange knew Russia continued to hack the DNC

September 3, 2021: Schulte submits motion to suppress cell phone content

September 31, 2021: Schulte’s motion to suppress docketed

October 1, 2021: Government response to Schulte motion to suppress

Snowden

WikiLeaks’ Intent in Publishing (and Not Publishing) CIA’s Hacking Tools Was To Wreck the Agency

/26 Comments/in /by

Several things are missing from Yahoo’s clickbait story about the things CIA was not permitted to do in the wake of learning its hacking tools had been stolen. An important one is any mention that WikiLeaks helped Edward Snowden flee Hong Kong with the specific intent of inspiring someone like Joshua Schulte, the alleged Vault 7 leaker, to steal those files with the goal of “wrecking” the CIA.

In Yahoo’s original story, it mentions the first superseding indictment against Assange, but not the second.

The U.S. government unsealed its initial indictment of Assange the same day.

That indictment focused exclusively on allegations that in 2010, Assange offered to help Manning, the Army intelligence analyst, crack a password to break into a classified U.S. government network, an act that would have gone beyond journalism. But in a move that drew howls from press advocates, prosecutors later tacked on Espionage Act charges against Assange for publishing classified information — something that U.S. media outlets do regularly.

That’s not uncommon among those reporting on the Julian Assange case who haven’t followed it closely, as is true of the three journalists on this piece. But the omission is particularly problematic for their story.

Then, in a follow-up reporting Mike Pompeo’s comments that some of the story is true (he implies much is fiction, but he’s also a liar so I don’t put much stock in that), Yahoo quoted Ben Wizner twice, identifying him only as an ACLU lawyer.

“We now know that this unprecedented criminal case was launched in part because of the genuinely dangerous plans that the CIA was considering,” said Ben Wizner, director of the American Civil Liberties Union’s Speech, Privacy and Technology Project. “This provides all the more reason for the Biden Justice Department to find a quiet way to end this case.”

[snip]

Wizner, the ACLU lawyer, said Pompeo’s comments effectively “just verified the truth of the [Yahoo News] story. Because the only reason to prosecute someone is that they revealed legitimate classified information. … This was public interest journalism of the first order and the question is whether the public has a right to know that the government is engaged in this kind of conduct.”

Describing Wizner as an ACLU lawyer here, and not the defense attorney for Ed Snowden, is journalistic malpractice. (Plus, Ben is wrong: the Yahoo story makes it clear that the Russian exfiltration attempt was the precipitating event, not what Pompeo had considered but not pursued six months earlier.)

That’s because Snowden is personally implicated in the Vault 7/Vault 8 leak (and in fact named in the superseding indictment that Yahoo chose not to mention). As Snowden himself described in his book, WikiLeaks helped him flee Hong Kong with the specific intent of ensuring that he had a better outcome than Chelsea Manning did.

It was only once we’d entered Chinese airspace that I realized I wouldn’t be able to get any rest until I asked Sarah [Harrison] this question explicitly: “Why are you helping me?” She flattened out her voice, as if trying to tamp down her passions, and told me that she wanted me to have a better outcome. She never said better than what outcome or whose, and I could only take that answer as a sign of her discretion and respect.

As Bart Gellman described in his book, Snowden attempted to take several steps to achieve the same goal.

After meeting with the Post editors, I remembered that I could do an elementary check of the signature on my own. The result was disappointing. I was slow to grasp what it implied.

gpg –verify PRISM.pptx.sig PRISM.pptx

gpg: Signature made Mon May 20 14:31:57 2013 EDT

using RSA key ID ⬛⬛⬛⬛⬛⬛⬛⬛

gpg: Good signature from “Verax”

Now I knew that Snowden, using his Verax alter ego, had signed the PowerPoint file himself. If I published the signature, all it would prove to a tech-savvy few was that a pseudonymous source had vouched for his own leak. What good would that do anyone?

In the Saturday night email, Snowden spelled it out. He had chosen to risk his freedom, he wrote, but he was not resigned to life in prison or worse. He preferred to set an example for “an entire class of potential whistleblowers” who might follow his lead. Ordinary citizens would not take impossible risks. They had to have some hope for a happy ending.

To effect this, I intend to apply for asylum (preferably somewhere with strong Internet and press freedoms, e.g. Iceland, though the strength of the reaction will determine how choosy I can be). Given how tightly the U.S. surveils diplomatic outposts (I should know, I used to work in our U.N. spying shop), I cannot risk this until you have already gone to press, as it would immediately tip our hand. It would also be futile without proof of my claims—they’d have me committed—and I have no desire to provide raw source material to a foreign government. Post publication, the source document and cryptographic signature will allow me to immediately substantiate both the truth of my claim and the danger I am in without having to give anything up. . . . Give me the bottom line: when do you expect to go to print?

Alarm gave way to vertigo. I forced myself to reread the passage slowly. Snowden planned to seek the protection of a foreign government. He would canvass diplomatic posts on an island under Chinese sovereign control. He might not have very good choices. The signature’s purpose, its only purpose, was to help him through the gates.

Whether or not the government will argue that this shared goal amounts to entering into a conspiracy, it is unquestionable that both Snowden and WikiLeaks shared the goal of encouraging more leakers.

And as the second superseding indictment that Yahoo omitted from their story lays out, after successfully delivering Snowden to the protection of Russia, Assange publicly called on people to join the CIA as Systems Administrators with the goal of “wrecking or disabling” the organization.

83. In June 2013, media outlets reported that Edward J. Snowden had leaked numerous documents taken from the NSA and was located in Hong Kong. Later that month, an arrest warrant was issued in the United States District Court for the Eastern District of Virginia, for the arrest of Snowden, on charges involving the theft of information from the United States government.

84. To encourage leakers and hackers to provide stolen materials to WikiLeaks in the future, ASSANGE and others at WikiLeaks openly displayed their attempts to assist Snowden in evading arrest.

85. In June 2013, a WikiLeaks association [Sarah Harrison, described as WLA-4 in the indictment] traveled with Snowden from Hong Kong to Moscow.

86. On December 31, 2013, at the annual conference of the Chaos Computer Club (“CCC”) in Germany, ASSANGE, [Jacob Appelbaum] and [Harrison] gave a presentation titled “Sysadmins of the World, Unite! A Call to Resistance.” On its website, the CCC promoted the presentation by writing, “[t]here has never been a higher demand for a politically-engaged hackerdom” and that ASSANGE and [Appelbaum] would “discuss what needs to be done if we re going to win.” ASSANGE told the audience that “the famous leaks that WikiLeaks has done or the recent Edward Snowden revelations” showed that “it was possible now for even a single system administrator to … not merely wreck[] or disabl[e] [organizations] … but rather shift[] information from an information apartheid system … into the knowledge commons.” ASSANGE exhorted the audience to join the CIA in order to steal and provide information to WikiLeaks, stating, “I’m not saying don’t join the CIA; no, go and join the CIA. Go in there, go into the ballpark and get the ball and bring it out.”

87. At the same presentation, in responding to the audience’s question as to what they could do, [Appelbaum] said “Edward Snowden did not save himself. … Specifically for source protection [Harrison] took actions to protect [Snowden] … [i]f we can succeed in saving Edward Snowden’s life and to keep him free, then the next Edward Snowden will have that to look forward to. And if look also to what has happened to Chelsea Manning, we see additionally that Snowden has clearly learned….” [my emphasis]

Less than three years later, someone — allegedly Joshua Schulte, who is accused of repeatedly hacking development servers to restore his administrator privileges over the backup files that were stolen — did just that.

And all the evidence submitted at Schulte’s trial suggests that his goal in sharing both the development notes that WikiLeaks published and the source code that (with just a few exceptions) WikiLeaks did not was to wreck the Agency out of vengeance for what he saw as unfair treatment of him in a personnel dispute.

One can still believe that it is noble to help a former intelligence official flee to Russia with the goal of encouraging more leaks. One can even explicitly share the goal of wrecking the CIA. But to understand the CIA’s reaction to the leak of its hacking tools in 2017, one has to understand that after Julian Assange helped Snowden flee to Russia, he used having done so to explicitly encourage someone like Joshua Schulte to steal files that would wreck the CIA.

The Yahoo Story about All the Things CIA Wasn’t Allowed to Do Against WikiLeaks

/41 Comments/in , , /by

When last we saw Zach Dorfman get a big scoop, he managed to present claims about Eric Swalwell appropriately cooperating with the FBI in a counterintelligence investigation so wildly out of context that the story fed false claims about Swalwell for most of a year.

His big story about Mike Pompeo’s vendetta against WikiLeaks — with Sean Naylor and Michael Isikoff — is bound to be a similar example.

Wherein paragraph 100-something debunks paragraphs 1 and 2

The first two paragraphs claim that there were discussions about assassinating Julian Assange.

In 2017, as Julian Assange began his fifth year holed up in Ecuador’s embassy in London, the CIA plotted to kidnap the WikiLeaks founder, spurring heated debate among Trump administration officials over the legality and practicality of such an operation.

Some senior officials inside the CIA and the Trump administration even discussed killing Assange, going so far as to request “sketches” or “options” for how to assassinate him. Discussions over kidnapping or killing Assange occurred “at the highest levels” of the Trump administration, said a former senior counterintelligence official. “There seemed to be no boundaries.”

Paragraph 12 says that lots of those things described in paragraphs one and two weren’t approved.

There is no indication that the most extreme measures targeting Assange were ever approved, in part because of objections from White House lawyers, but the agency’s WikiLeaks proposals so worried some administration officials that they quietly reached out to staffers and members of Congress on the House and Senate intelligence committees to alert them to what Pompeo was suggesting. “There were serious intel oversight concerns that were being raised through this escapade,” said a Trump national security official.

Around about paragraph 67 the piece describes Mike Pompeo asking for “the art of the possible,” something CIA Directors have a history of doing as a way to think outside the box.

Soon after the speech, Pompeo asked a small group of senior CIA officers to figure out “the art of the possible” when it came to WikiLeaks, said another former senior CIA official. “He said, ‘Nothing’s off limits, don’t self-censor yourself. I need operational ideas from you. I’ll worry about the lawyers in Washington.’” CIA headquarters in Langley, Va., sent messages directing CIA stations and bases worldwide to prioritize collection on WikiLeaks, according to the former senior agency official.

Around the 90s, Yahoo claims someone learned second-hand that Trump asked about killing Assange, but then suggests that wasn’t real, then describes top CIA officials talking about killing Assange, then admits such plans may have never gotten to the White House.

Some discussions even went beyond kidnapping. U.S. officials had also considered killing Assange, according to three former officials. One of those officials said he was briefed on a spring 2017 meeting in which the president asked whether the CIA could assassinate Assange and provide him “options” for how to do so.

“It was viewed as unhinged and ridiculous,” recalled this former senior CIA official of the suggestion.

It’s unclear how serious the proposals to kill Assange really were. “I was told they were just spitballing,” said a former senior counterintelligence official briefed on the discussions about “kinetic options” regarding the WikiLeaks founder. “It was just Trump being Trump.”

Nonetheless, at roughly the same time, agency executives requested and received “sketches” of plans for killing Assange and other Europe-based WikiLeaks members who had access to Vault 7 materials, said a former intelligence official. There were discussions “on whether killing Assange was possible and whether it was legal,” the former official said.

Yahoo News could not confirm if these proposals made it to the White House. Some officials with knowledge of the rendition proposals said they had heard no discussions about assassinating Assange.

And then well past paragraph 100, Yahoo admits the plans to assassinate Assange went nowhere, in significant part because doing so would be illegal.

A primary question for U.S. officials was whether any CIA plan to kidnap or potentially kill Assange was legal. The discussions occurred under the aegis of the agency’s new “offensive counterintelligence” authorities, according to former officials. Some officials thought this was a highly aggressive, and likely legally transgressive, interpretation of these powers.

Without a presidential finding — the directive used to justify covert operations — assassinating Assange or other WikiLeaks members would be illegal, according to several former intelligence officials. In some situations, even a finding is not sufficient to make an action legal, said a former national security official. The CIA’s newfound offensive counterintelligence powers regarding WikiLeaks would not have stretched to assassination. “That kind of lethal action would be way outside of a legitimate intelligence or counterintelligence activity,” a former senior intelligence community lawyer said.

In the end, the assassination discussions went nowhere, said former officials.

The idea of killing Assange “didn’t get serious traction,” said a former senior CIA official. “It was, this is a crazy thing that wastes our time.”

As to the discussions of kidnapping Assange, both the UK and NSC nixed those ideas, though White House Counsel lawyer John Eisenberg (who is presented as the hero of the Yahoo story, and who was a national security lawyer at DOJ during the Bush Administration when such things did get approved) worried that CIA would do it without alerting him and others, and so pressed DOJ to indict Assange if they were going to.

“There was a discussion with the Brits about turning the other cheek or looking the other way when a team of guys went inside and did a rendition,” said a former senior counterintelligence official. “But the British said, ‘No way, you’re not doing that on our territory, that ain’t happening.’” The British Embassy in Washington did not return a request for comment.

In addition to diplomatic concerns about rendition, some NSC officials believed that abducting Assange would be clearly illegal. “You can’t throw people in a car and kidnap them,” said a former national security official.

In fact, said this former official, for some NSC personnel, “This was the key question: Was it possible to render Assange under [the CIA’s] offensive counterintelligence” authorities? In this former official’s thinking, those powers were meant to enable traditional spy-versus-spy activities, “not the same kind of crap we pulled in the war on terror.”

In short, this is a very long story that spends thousands of words admitting that its lead overstates how seriously this line of thought, particularly assassination, was pursued.

I will have lots more to say about several things that discredit this story. But for now that’s the important thing: The story admits that the story oversells its lead.

Yahoo describes the changing view regarding WikiLeaks

The story is useful because it lays out a chronology that few people understand, how over years the US view on Assange gradually changed (the view is entirely based on “former” officials and likely doesn’t reflect even what happened with Assange in the last years of the Trump Administration). The events it describes that led to a gradual change in the way the US treated Assange as depicted in this story are:

  • In response to the 2010 releases, the Obama Administration, “restricted investigations into Assange and WikiLeaks”
  • “In the wake of the Snowden revelations, the Obama administration allowed the intelligence community to prioritize collection on WikiLeaks,” no longer requiring a warrant for intel; but when “top intelligence officials” tried to get the White House to deem people like Laura Poitras and Glenn Greenwald “information brokers,” Obama refused
  • In spite of the changes described as occurring in 2013, in 2015 DOJ remained, “very protective,” of its authorities over whether to charge Assange and whether to treat WikiLeaks “like a media outlet”
  • “The events of 2016 ‘really crystallized’ U.S. intelligence officials’ belief that the WikiLeaks founder ‘was acting in collusion with people who were using him to hurt the interests of the United States,’ … But there was still ‘sensitivity on how we would collect on them.'” [Yahoo says NSA “surveilled” Guccifer 2.0’s Twitter accounts but we know that DOJ obtained warrants to read them, as well, which it doesn’t mention]
  • Yahoo presents a series of seemingly conflicting claims about how things changed in 2016, but does say that shortly before Trump took over Obama’s view on WikiLeaks underwent a “sea change”
  • On April 13, 2017, over a month after the first Vault 7 releases, Pompeo declared WikiLeaks a non-state hostile intelligence agency, thereby accessing “offensive counterintelligence” activities to use against WikiLeaks, including disruption efforts (though the article suggests none were ever used); this label did result in far more collection on WikiLeaks associates traveling around the world
  • In summer 2017, Pompeo embraced proposals to kidnap Assange, which was ultimately pitched to the British, but they refused and NSC officials argued it would be illegal
  • In December 2017, the Five Eyes worked together to thwart a believed Russian exfiltration attempt, and on the same day, DOJ charged Assange by complaint
  • In April 2019, Assange was booted from the Embassy and arrested under a single CFAA count, which DOJ has twice superseded (Yahoo makes no mention of the second superseding indictment and the story seems to drop well before the end of the Trump Administration; it makes no mention of whether Gina Haspel continued the policies pursued by Pompeo after he moved to State in 2018)

The timeline laid out here conflicts with virtually everything Assange claimed about the genesis of his charges during his extradition hearing: showing that Assange’s help getting Snowden out of Hong Kong is what started the process of revising views of WikiLeaks, showing that the US changed their understanding of Assange in 2016, not in 2017, as Assange repeatedly claimed in his extradition hearing, and showing that things really started ratcheting up after the Vault 7 release, at a time when Assange was also under investigation for several things unrelated to journalism (though Yahoo doesn’t mention those investigations, even though they are public), and was therefore separate from Trump’s election or Jeff Sessions’ later leak-driven commitment to crack down on journalists.

In short, amidst a jillion words making claims that the article itself discredits, the article proves that Assange lied, repeatedly, in his extradition hearing, and that the precipitating event in originally charging him was credible information about a Russian exfiltration plot.

Roger Stone reporter Michael Isikoff appears to be unfamiliar with the entire Roger Stone case

One thing that this story never explains is why, if the entire Trump Administration were so opposed to Assange as they claim, Pompeo would have to declare WikiLeaks a non-state hostile intelligence service rather than relying on a Presidential finding to spy on WikiLeaks’ associates.

The immediate question facing Pompeo and the CIA was how to hit back against WikiLeaks and Assange. Agency officials found the answer in a legal sleight of hand. Usually, for U.S. intelligence to secretly interfere with the activities of any foreign actor, the president must sign a document called a “finding” that authorizes such covert action, which must also be briefed to the House and Senate intelligence committees. In very sensitive cases, notification is limited to Congress’s so-called Gang of Eight — the four leaders of the House and Senate, plus the chairperson and ranking member of the two committees.

But there is an important carveout. Many of the same actions, if taken against another spy service, are considered “offensive counterintelligence” activities, which the CIA is allowed to conduct without getting a presidential finding or having to brief Congress, according to several former intelligence officials.

Often, the CIA makes these decisions internally, based on interpretations of so-called “common law” passed down in secret within the agency’s legal corps. “I don’t think people realize how much [the] CIA can do under offensive [counterintelligence] and how there is minimal oversight of it,” said a former official.

That’s what gave Pompeo broader authorities to operate on his own (and thereby creating the risk he might try to assassinate Assange without White House knowledge). But it’s also what limited his options legally. Had Pompeo gotten a finding, kidnapping and assassination would be less obviously prohibited, and just the Gang of Eight would have been briefed. But by making this announcement publicly, everyone learned about it. Ron Wyden predictably raised concerns (and there was a perennial battle over whether Congress would agree with Pompeo’s label as a sense of Congress).

Effectively, Pompeo got fewer authorities and more political pushback, literally the opposite of why Yahoo claims why he went this route.

I don’t know the answer. But I do know that this story’s treatment of Trump is bizarre and ignores a lot of known facts, so it’s possible the answer is the most obvious one: Pompeo couldn’t get a Presidential finding because the President wouldn’t sign off.

As noted above, the article does describe that a source heard second-hand that Trump asked for options to kill Assange, though it doesn’t date it more specifically than spring 2017 and dismisses the statement as one of Trump’s routine attacks.

The story describes that Mike Pompeo was terrified of briefing Trump on the Vault 7 breach, the first releases of which were published on March 7, 2017.

Pompeo, apparently fearful of the president’s wrath, was initially reluctant to even brief the president on Vault 7, according to a former senior Trump administration official. “Don’t tell him, he doesn’t need to know,” Pompeo told one briefer, before being advised that the information was too critical and the president had to be informed, said the former official.

It doesn’t explain, then, whether Pompeo, or Jim Comey, was the source of the briefing that Trump promptly shared with Tucker Carlson literally the day when the FBI would first interview suspected Vault 7 source Joshua Schulte in an urgent attempt to prevent him from fleeing the country with his diplomatic passport. It sure as hell doesn’t explain how the President, in his first known big leak of classified information, almost blew the entire Vault 7 investigation, and how that’s consistent with a plan to assassinate Assange.

Even crazier, especially given Michael Isikoff’s participation in the story, is that there’s no mention of the disclosures that came out as part of the Roger Stone investigation and the Mueller investigation more generally.

No later than November 15 (and possibly even before the election), Trump’s rat-fucker was working with Assange’s lawyer brokering a pardon deal.

In April, Stone called on Pompeo to resign for his comments in the wake of Vault 7.

Stone took to InfoWars on April 18, calling on Pompeo to either provide proof of those Russian ties or resign, defending the release of the Vault 7 tools along the way.

The Intelligence agencies continue to insist that Julian Assange is an active Russian Agent and that Wikileaks is a Russian controlled asset. The agencies have no hard proof of this claim whatsoever. Assange has said repeatedly that he is affiliated with no nation state but the Intelligence Agencies continue to insist that he is under Russian control because it fits the narrative in which they must produce some evidence of Russian interference in our election because they used this charge to legally justify and rationalize the surveillance of Trump aides, myself included.

[snip]

President Donald Trump said on Oct, 10, 2016 “I love Wikileaks” and Pompeo who previously had praised the whistleblowing operation now called Wikileaks “a non-state hostile Intelligence service often abetted by state actors like Russia”. Mr. Pompeo must be pressed to immediately release any evidence he has that proves these statements. If he cannot do so ,the President should discharge him.

[snip]

Julian Assange does not work for the Russians. Given the import of the information that he ultimately disclosed about the Clinton campaign, the Obama administration and the deep secrets in the CIA’s Vault 7, he has educated the American people about the tactics and technology the CIA has used to spy on ordinary Americans.

Assange personally DMed Stone to thank him for the article, while claiming that Pompeo had stopped short of claiming that WikiLeaks had gotten the stolen DNC emails directly, thereby making WikiLeaks like any other media outlet.

On or about April 19, 2017, Assange, using Target Account 2, wrote to Stone, “Ace article in infowars. Appreciated. But note that U.S. intel is engages in slight of hand maoevers [sic]. Listen closely and you see they only claim that we received U.S. election leaks \”not directly\” or via a \”third party\” and do not know \”when\” etc. This line is Pompeo appears to be getting at with his \”abbeted\”. This correspnds to the same as all media and they do not make any allegation that WL or I am a Russia asset.”

The Mueller investigation even showed that in the very same time period where Pompeo was considering assassination attempts on Assange, Trump’s rat-fucker was leveraging the “highest level of Government” to address Assange’s issues.

On June 10, 2017, according to affidavits submitted as part of the Mueller investigation, Roger Stone DMed Julian Assange and told him he was doing everything he could to “address the issues at the highest level of Government.”

57. On or about June 10, 2017, Roger Stone wrote to Target Account 2, “I am doing everything possible to address the issues at the highest level of Government. Fed treatment of you and Wikileaks is an outrage. Must be circumspect in this forum as experience demonstrates it is monitored. Best regards R.” Target Account 2 wrote back, “Appreciated. Of course it is!”

Nine days after the rat-fucker who had a notebook that recorded all the communications he had with Trump during the election described working at the highest level of government to help Assange, Trump attempted to shut down the entirety of the hack-and-leak investigation.

On June 19, 2017, according to the Mueller Report, the President dictated a message for Corey Lewandowski to take to Jeff Sessions, telling the (recused) Attorney General to meet with Robert Mueller and order him to limit his investigation only to future election meddling, not the election meddling that had gotten Trump elected.

During the June 19 meeting, Lewandowski recalled that, after some small talk, the President brought up Sessions and criticized his recusal from the Russia investigation.605 The President told Lewandowski that Sessions was weak and that if the President had known about the likelihood of recusal in advance, he would not have appointed Sessions.606 The President then asked Lewandowski to deliver a message to Sessions and said “write this down.” 607 This was the first time the President had asked Lewandowski to take dictation, and Lewandowski wrote as fast as possible to make sure he captured the content correctly.608 The President directed that Sessions should give a speech publicly announcing:

I know that I recused myself from certain things having to do with specific areas. But our POTUS . .. is being treated very unfairly. He shouldn’t have a Special Prosecutor/Counsel b/c he hasn’t done anything wrong. I was on the campaign w/ him for nine months, there were no Russians involved with him. I know it for a fact b/c I was there. He didn’t do anything wrong except he ran the greatest campaign in American history.609

The dictated message went on to state that Sessions would meet with the Special Counsel to limit his jurisdiction to future election interference:

Now a group of people want to subvert the Constitution of the United States. T am going to meet with the Special Prosecutor to explain this is very unfair and let the Special Prosecutor move forward with investigating election meddling for future elections so that nothing can happen in future elections.610

Days after Roger Stone told Julian Assange that he was trying to resolve matters at the highest level of government, the President of the United States tried to issue a back channel order that would shut down the investigation into Assange — and by association, Stone.

And it went on like that for some time, possibly up to the time when Mueller asked Trump about any pardon discussions for Assange. Only after that did Don Jr’s buddy tell former Sputnik employee Cassandra Fairbanks that the pardon discussion was off, whereupon she flew to London to tell Assange herself.

Particularly pertinent to the question of why CIA was working via offensive counterintelligence authorities rather than a Presidential finding, in October, after weeks of prodding from Trump, Pompeo took a meeting with Bill Binney to hear a theory that would have undermined the entire Intelligence Community’s attribution of the DNC hack via which emails shared with WikiLeaks were stolen. According to The Intercept’s report of the meeting, it led others in the Intelligence Community to worry that Pompeo had stopped heeding intelligence, particularly regarding Russia, that Trump didn’t like.

Some senior CIA officials have grown upset that Pompeo, a former Republican representative from Kansas, has become so close to Trump that the CIA director regularly expresses skepticism about intelligence that doesn’t line up with the president’s views. Pompeo has also alienated some CIA managers by growing belligerent toward them in meetings, according to an intelligence official familiar with the matter.

[snip]

[I]ndications of Pompeo’s willingness to support Trump at the risk of tainting the intelligence process have occasionally broken into the open in recent months. In August, the Washington Post reported that Pompeo had taken the unusual step of having the CIA’s Counterintelligence Mission Center, which would likely play a role in any inquiries by the agency into Russian election meddling, report directly to him. That move has raised concerns within the agency that Pompeo is seeking to personally control the CIA’s efforts to investigate accusations of collusion between the Trump campaign and Russia.

At the very least, by fall this put Pompeo in a more precarious position regarding his vendetta against Assange.

The thing is, the hero of this Yahoo story, John Eisenberg, must know parts of this story, because he was a key part of efforts to protect Trump. He played a role in protecting Mike Flynn after he lied to the FBI and an even bigger role in protecting Trump after he tried to coerce election help from Ukraine, so who knows what his motives really are here. But he certainly must know these details … but they don’t show up in the story.

Crazier still, Isikoff must know parts of these stories, because he reported on the Stone case.

Yet not only don’t those details appear in this story, but the depiction of an entire Administration, save for heroes like John Eisenberg, intent on assassinating Julian Assange is inconsistent with those public facts about Trump’s repeated efforts to undermine any attribution implicating Assange to say nothing of discussions of pardons for Assange.

The truth may be somewhere in the middle, with Trump vacillating between wanting to kill Assange and wanting to liberate him (in this story, however, he’s quoted complaining that Assange was treated badly). But what the President did to undermine the investigation targeting Assange seems to be as important a part of this story as the claim that he mouthed off once about the possibility of assassinating Assange, something he has done with a slew of other journalists and perceived enemies.

The UC Global timeline

Among all the 30 sources cited in the story and the reports that CIA ratcheted up spying on WikiLeaks associates under Pompeo, Yahoo didn’t succeed in getting more clarity on the — by the end of 2017 — very intrusive surveillance of Assange inside the Ecuadorian Embassy by a contractor called UC Global, citing just one source confirming the US did have access to video surveillance without even naming UC Global or revealing which agency UC Global was working with.

A former U.S. national security official confirmed that U.S. intelligence had access to video and audio feeds of Assange within the embassy but declined to specify how it acquired them.

So instead of new information from those 30 sources, Yahoo instead relies on the prior reports from some UC Global whistleblowers. As I noted here, based on their Assange extradition hearing testimony, one of them is quite credible while the other is far less so.

It’s important that Yahoo relies on the whistleblowers, because it provides another way, along with the public details they inexplicably leave out, to test their narrative. Yahoo describes, accurately, that UC Global was sharing information with the US by mid-2017 (the credible witness described key developments in June and July).

By late 2015, Ecuador had hired a Spanish security company called UC Global to protect the country’s London embassy, where Assange had already spent several years running WikiLeaks from his living quarters. Unbeknownst to Ecuador, however, by mid-2017 UC Global was also working for U.S. intelligence, according to two former employees who testified in a Spanish criminal investigation first reported by the newspaper El País.

Yahoo doesn’t note, however, that data collection first started to expand in 2016, and formal vetting for what was presumably this relationship started by January 24, 2017, just one day after Pompeo was confirmed.

I also recall that once Donald Trump won the elections, at the end of 2016, the collection of information intensified as Morales became more obsessed with obtaining as much information as possible.

[snip]

On 24 January 2017, once Donald Trump had acceded to the presidency of the United States, David Morales sent a message over Telegram in which he wrote, “Well, I want you to be alert because I am informed that we are being vetted, so everything that is confidential should be encrypted […] That’s what I’m being told. Everything relates to the UK issue. I am not worried about it, just be alert […] The people vetting are our friends in the USA”.

That is, this process started after WikiLeaks’ cooperation with Russia in 2016 caused a “sea change” in US treatment of Assange, but before Pompeo’s vendetta in response to Vault 7.

And while the surveillance absolutely ratcheted up during that summer (so potentially consistent with Pompeo’s vendetta, but also at a time when WikiLeaks was also under several different criminal investigations), Yahoo neglects to mention that the really intrusive surveillance came in December, at the same time (it reports) that the IC had credible reports of an exfiltration attempt.

In early December 2017, I was instructed by David Morales to travel with a colleague to install the new security cameras. I carried out the new installation over the course of several days. I was instructed by Morales not to share information about the specifications of the recording system, and if asked to deny that the cameras were recording audio. I was told that it was imperative that these instructions be carried out as they came, supposedly, from the highest spheres. In fact, I was asked on several occasions by Mr. Assange and the Political Counsellor Maria Eugenia whether the new cameras recorded sound, to which I replied that they did not, as my boss had instructed me to do. Thus, from that moment on the cameras began to record sound regularly, so every meeting that the asylee held was captured. At our offices in UC Global it was mentioned that the cameras had been paid for twice, by Ecuador and the United States, although I have no documentary evidence to corroborate this assertion.

The story Yahoo tells significantly amounts to Mike Pompeo proposing some illegal options to take out Assange, only to be thwarted by (at a minimum) the lawyers in place to prevent such things — though there’s good reason to believe DOJ played a big role in it too. And then, at a time when Pompeo had lost or was losing his bid to pursue illegal activities, the Five Eyes (presumably including Australia) identified and countered a Russian exfiltration attempt.

That presumably changed a lot of things about how the IC dealt with Assange. But those details don’t appear in this story. Aside from the mentions of DOJ successfully retaining the gatekeeper role on these questions in 2015 and 2017 (something I have some, albeit limited, reason to believe continued through 2019), the story doesn’t consider — at all! — the various criminal investigations at the time, not even the one that Isikoff has covered in the past.

Crazier still, it presents this as a story about the Trump Administration, while ignoring public details about a key player in that Administration — some guy named Trump — was doing that at the least conflicted with Pompeo’s actions.

Pompeo is and was batshit crazy and I’m glad, for once, the lawyers managed to rein in the CIA Director. But this seems to be, largely, a story about crazy Mike Pompeo being reined in by lawyers.

At Lunchtime on March 15, 2017, Joshua Schulte Went Home and Got His Passport[s]

/22 Comments/in , , /by

“Whoever committed the leak” of CIA hacking tools Joshua Schulte stands accused of, Schulte said in his first FBI interview on March 15, 2017, “was guilty of espionage and deserved to be executed.”

Schulte submitted the 302 from that interview to accompany a motion to suppress the initial search of his cell phone (remember, he went pro se last month, so he’s formulating this defense himself, and this challenge not one the supremely competent Sabrina Shroff mounted when she was in charge of his defense). Schulte based his motion to suppress on a claim that the FBI used a subpoena, not a warrant, to authorize the seizure of his phone.

Schulte’s challenge is, from a legal standpoint, transparent garbage. He claims that the FBI seized his phone with a subpoena. That’s not what the record he submits shows. It shows, instead, that the FBI handed him a subpoena for both grand jury testimony and his phone, then walked back to his apartment with him, then executed a search warrant that included his electronic devices among the items to be searched.

[Schulte, referred to as KP, for either Kinetic Panda or Kinetic Piranha] was presented with a subpoena to appear at a grand jury hearing, scheduled to occur on March 17, 2017. KP was also served with a subpoena, authorizing the FBI to seize KP’s phone. From PERSHING SQUARE, the interviewing Agents and KP walked to KP’s residence, 200 East 39th Street, Apartment 8C, New York, New York, where FBI personnel executed a search warrant.

[snip]

SSA HUI thereafter served KP with a subpoena to appear at a grand jury hearing on March 17, 2017 and a subpoena that authorized the FBI to seize KP’s phone. SSA HUI also stated the FBI would soon execute a search warrant at KP’s residence. KP read the documents and stated he did not know what it all meant. KP was told by the interview Agents that he had every right to seek legal counsel. KP was also told by the interview Agents that he could return to the residence and be present during the search. KP voluntarily agreed to return to the residence and provide access to the search team.

The FBI obtained two warrants to search items including Schulte’s electronic devices first one permitting a covert search and then a second one that permitted that overt search. He knew of the warrant before the search of the phone occurred.

Which means the other details of the 302, which don’t help Schulte but which provide new insight on him and the investigation, are the most interesting details of this new release.

Consider his comment that the leaker should be executed. In the interview, he places blame on “Karen,” for lax security. “KP stated he didn’t want to place blame on anyone in terms of being negligent, but her approach to security was lax.” Trial testimony makes it clear this is a reference to the second-level supervisor he blamed for being disciplined at CIA. So from the very first moment, he seemed to frame Karen as a target of a ruthless Espionage investigation. He would continue from jail, suggesting the “Information War” he launched from a jail cell was actually continuous with an earlier effort to blame Karen, contrary to what Schulte argued at his first trial.

Just as interesting, the comment claiming such a leaker would be guilty of espionage matches something he said to his co-worker, “Jeremy Weber” (whom he also tried to blame for the leak) in conversations about Edward Snowden.

Q. You don’t remember him ever discussing leakers with you?

A. I, I do remember talking about leakers.

Q. Okay. What do you recall?

A. There was discussion around Snowden.

Q. Okay. And?

A. Schulte felt that Snowden was a — had betrayed his country.

Q. That doesn’t, you know, he seems to have strong opinions on everything. You sure he didn’t say more?

A. He probably would have call him a traitor. Said he should be executed for sure. I don’t remember specific verbiage, but he did express his typical strong opinions.

Schulte made those comments to Weber, even though the government claims to have chat logs in which Schulte said that Snowden, unlike Chelsea Manning, didn’t endanger anyone with his leaks.

More recently, Schulte has been fighting to have a home server, including a selection of Snowden files on it, returned to him.

But I’m particularly interested in the comments Schulte made about his planned trip to Cancun.

KP advised that he planned to travel to Cancun, Mexico on Thursday, March 16, 2017 with his brother who lived in Dallas, Texas. KP stated he has three younger brothers who all lived in Texas. KP had discussed moving back to Texas at some point and running a business with his brother in Dallas. KP stated the trip cost him approximately $1,200.00 and they planned to stay at a resort. KP stated he had no plans to meet up with anyone other than his brother during the trip, and he planned to return to the U.S. on March 20, 2017. KP stated he and his brother wanted to take a trip to either Cancun or Denver, Colorado, but they ultimately chose Cancun.

KP stated he returned to his residence during lunchtime earlier in the day to retrieve his passport so he could check-in online. KP said his passport was currently located inside his backpack, which was on the floor next to KP at PERSHING SQUARE. KP said he printed out his travel documents earlier. (Agent Note. KP reached inside his backpack and showed SA DONALDSON the documents he printed for the Cancun trip.)

KP said he understood how his potential travel abroad could cause angst at high levels of government; however, KP said if he was guilty, then he would have already left the country. KP stated he booked the Cancun trip prior to the WIKILEAKS publication. [my emphasis]

According to the trial interview of Robert Evanchec, one of the agents who conducted this investigation, they already knew of this trip when then went to interview him (indeed, they included it in the warrant affidavits). “[W]e learned that within a week’s time he was planning to travel, for the second time in his life, outside the United States.” As described in that testimony, it was why they chose to interview Schulte so early in the investigation.

Q. I think you said earlier that early in the investigation, you learned that the defendant was traveling or planning to travel?

A. That’s correct.

Q. Where was he planning to travel to?

A. To Cancun, Mexico.

Q. When was the defendant scheduled to travel?

A. He was scheduled to depart on March 16, 2017.

Q. How, if at all, did that impact your investigation?

A. It accelerated our need to quickly understand what this defendant had done, and what his intentions were in traveling to Cancun. As I said earlier, it was only the second time in his life that he left the United States. And certainly his departure this close to the WikiLeaks release was of concern to us, and necessitated that we escalate our investigation and look into other ways to find out why he was traveling.

Q. What did you do as a result of that?

A. As a result of that, we had planned and actually ended up interviewing the subject Mr. Schulte.

While the 302 doesn’t record it, according to Evanchec’s testimony, after telling the FBI he had gone home at lunch to retrieve “his passport,” Schulte then told FBI Agents his diplomatic passport was back at his apartment.

Q. Did the defendant say anything about a diplomatic passport at the residence?

A. He did.

Q. What did he say about that?

A. He indicated that he had retained a diplomatic passport from his time at the CIA that he had not returned that was inside of his residence.

Schulte accompanied the FBI back to the apartment, let them in, hung around for a bit, then returned to Bloomberg, staying longer than he told them he would.

While he was at Bloomberg, FBI got far enough in their search of Schulte’s apartment to determine that the diplomatic passport was not there.

Q. You testified that the defendant told you that that diplomatic passport was in his apartment; is that correct?

A. That’s correct, sir.

Q. Was the diplomatic passport found in his apartment?

A. It was not.

When Schulte didn’t return when he said he would, Evanchec intercepted Schulte again as he was about to leave Bloomberg. The 302 redacts the reference to the FBI telling him they did not find his diplomatic passport at the apartment.

As Evanchec testified, when they intercepted Schulte on his way out, he admitted that he had stashed his diplo passport at his work station at Bloomberg, and they all went to his workstation and got both passports.

A. I believe it was just after midnight, around 12:15 p.m. We observed him again in the lobby of the Bloomberg building at 120 Park Avenue.

Q. Did you approach him?

A. We did.

Q. Who was with you at that time?

A. At the time it was myself, Special Agent Gary Ido, and Special Agent John Summers.

Q. What, if anything, did you say to the defendant at that time?

A. We indicated to him that we had obtained classified information or found classified information in his residence. And we also indicated that we had not recovered his diplomatic passport.

Q. What, if anything, did the defendant say in response?

A. He indicated the diplomatic passport was actually in his office at Bloomberg.

Q. Did he go anywhere after that?

A. Yes, he escorted us along with a security official from Bloomberg to his desk where we took possession of the diplomatic passport.

Q. Did you take possession of any other passport at that time?

A. Yes.

Q. What passport?

A. His personal passport.

Now, virtually all of this has previously been made public (presumably, Evanchec reviewed the 302s before testifying at the trial).

What’s new is that, at least per Schulte, he went home in the middle of the day to get his passport(s). His excuse for doing so might make sense — he was trying to check in online, which you can only do a day in advance. He might have been able to check in from his house, at lunch, unless he tried and discovered he could only check in 24-hours before his flight (he was scheduled to leave work before the end of the day on March 16).

Except none of that would require Schulte to bring two passports back to work, his regular passport and his diplomatic passport (the latter of which he should have but did not turn in when he left the CIA the previous November). Indeed, given the scrutiny Schulte had to have known he would be under, flying under the diplo passport would provoke alarm all by itself, so presumably he was checking in with his regular passport.

What I find particularly interesting, however, is the timing.

That’s because sometime between 10:50 AM and 3:30 PM that same day, Trump said the following in a recorded interview with Tucker Carlson, leaking classified information that would have alerted Schulte, if he had a way to hear it, that the government had determined that “a lot of things were taken” from the CIA under Obama, not under Trump.

Trump: Because I don’t want to do anything that’s going to violate any strength of an agency. You know we have enough problems. And by the way, with the CIA, I just want people to know, the CIA was hacked and a lot of things taken. That was during the Obama years. That was not during, us, that was during the Obama situation. Mike Pompeo is there now, doing a fantastic job. But we will be submitting certain things, and I will be perhaps speaking about this next week. But it’s right now before the Committee, and I think I want to leave it at that. I have a lot of confidence in the committee.

If Schulte had some way of seeing this, then, he would have been alerted that FBI had learned enough to know that he was a likely culprit for the leak.

Around the time Trump said this, Schulte (by his own telling) left work and got the passport he needed to check in for his second-ever flight out of the country — he reserved the flight on February 27. He never showed which passport he had in his bag to the FBI Agents, so it’s possible he also got the diplo passport he shouldn’t have even had, much less needed to check in for a flight.

For what it’s worth, it doesn’t seem possible that Schulte would have gotten advance notice he was the suspect for the leak from Trump’s blabbing to Tucker Carlson. I’ve not found any evidence that that interview played live; rather, it appears to have first aired at 9PM, by which point Schulte would have already been intercepted by FBI Agents in the Bloomberg lobby as he left from work.

But the 302 shows that, at around the same time that Trump was blabbing non-public details of the investigation into Schulte to a cable TV personality, Schulte left work and got his passport, possibly even the diplomatic passport he shouldn’t have had.

Charlie Savage Plays with His Magic Time Machine To Avoid Doing Journalism

/26 Comments/in , , /by

Charlie Savage just did something astonishing in the name of press freedom. He said that the truth doesn’t matter now, in 2021, because he reported a different truth eleven years ago.

He took issue with my headline to this piece, noting that he was obfuscating the facts about the Julian Assange prosecution so as to shoehorn it into a story about actual journalists.

Charlie made several obfuscations or clear errors in that piece:

  • He didn’t explain (as he hasn’t, to misleading effect, in past stories on Assange) the nature of the 2nd superseding indictment and the way it added to the most problematic first superseding one
  • He said the 2019 superseding indictment (again, he was silent about the 2020 superseding indictment) raised the “specter of prosecuting reporters;” this line is how Charlie shoehorned Assange into a story about actual journalists
  • He claimed that the decision to charge Assange for “his journalistic-style acts” arose from the change in Administrations, Obama to Trump (and specifically to Bill Barr), not the evidence DOJ had obtained about Assange’s actions over time

Charlie presented all this as actual journalism about the Assange prosecution, but along the way, he made claims that were either inflammatory and inexact — a veritable specter haunting journalism — or, worse, what I believe to be false statements, false statements that parrot the propaganda that Wikileaks is spreading to obscure the facts.

The “specter” comment, I take to be a figure of speech, melodramatic and cynical, but mostly rhetorical.

The silence about the 2020 superseding indictment is a habit I have called Charlie on before, but one that is an error of omission, rather than of fact.

It’s this passage that I objected to at length:

But the specter of prosecuting reporters returned in 2019, when the department under Attorney General William P. Barr expanded a hacking conspiracy indictment of Julian Assange, the WikiLeaks founder, to treat his journalistic-style acts of soliciting and publishing classified information as crimes.

Obama-era officials had weighed charging Mr. Assange for publishing leaked military and diplomatic files, but worried about establishing a precedent that could damage mainstream news outlets that sometimes publish government secrets, like The Times. The Trump administration, however, was undeterred by that prospect.

As presented, this passage made several claims:

  1. “Obama-era officials” had considered charging Assange for publishing activities, but “Obama-era officials” did not do so because it might damage “mainstream news outlets” like the NYT
  2. The reason that the Trump administration was willing to charge Assange for publishing was because they were “undeterred” from the prospect of doing damage to the NYT
  3. DOJ under Billy Barr expanded a hacking conspiracy “to treat his journalistic-style acts of soliciting and publishing classified information as crimes”

I believe the last claim is largely factual but misleading, as if the operative issue were Barr’s involvement or as if Barr deliberately treated Assange’s “journalistic-style acts” — as distinct from that of actual journalists — as a crime. There may be evidence that Barr specifically had it in for WikiLeaks or that Barr (as distinct from Trump’s other Attorneys General) treated Assange as he did out of the same contempt with which he treated actual journalists. There may be evidence that Barr — whose tenure as AG exhibited great respect for some of the journalists he had known since his first term as AG — was trying to burn down journalism, as an institution. But Charlie provides no evidence of that, nor has anyone else I know. (Indeed, Charlie’s larger argument presents evidence that Barr’s attacks on journalism, including subpoenas that may or may not have been obtained under Barr in defiance of guidelines adopted under Eric Holder, may only differ from Obama’s in their political tilt.)

Of course, one of the worst things that the Trump Administration did to a journalist, obtaining years of Ali Watkins’ email records, happened under Jeff Sessions, not Barr.

The first and second claims together set up a clear contrast. Obama-era officials — and by context, this means the entirety of the Obama Administration — did not prosecute Assange for publication because of what became known — based off a description that DOJ’s spox Matthew Miller gave publicly in 2013 — as the NYT problem, the risk that prosecuting WikiLeaks would endanger NYT. But the Trump Administration was willing to charge Assange for publication because they didn’t think the risk that such charges posed to the NYT were all that grave or damaging or important.

There’s no way to understand these two points except as a contrast of Administrations, to suggest that Obama’s Administration — which was epically shitty on leak investigations — wouldn’t do what the Trump Administration did do. It further involves treating the Department of Justice as an organization entirely subject to the whims of a President and an Attorney General, rather than as the enormous bureaucracy full of career professionals who guard their independence jealously, who even did so, with varying degrees of success, in the face of Barr’s unprecedented politicization of the department.

It’s certainly possible that’s true. It’s possible that Evan Perez and three other CNN journalists who reported in 2017 that what actually changed pertained to Snowden simply made that report up out of thin air. It’s certainly possible that under a President who attempted to shut down the Russian hacking investigation to protect Assange even after his CIA Director declared war on Assange, who almost blew up the investigation into Joshua Schulte, who entertained pardoning Assange in 2016, in 2017, in 2018, and in 2020, at the same time viewed the Assange prosecution as a unique opportunity to set up future prosecutions of journalists. It’s certainly possible that Billy Barr, who sabotaged the Mike Flynn and Roger Stone prosecutions to serve Trump’s interests, went rogue on the Assange case.

But given the abundant evidence that this prosecution happened in spite of Trump’s feelings about WikiLeaks rather than because of them, you would need to do actual reporting to make that claim.

And, as noted, I asked Charlie whether he had done the reporting to sustain that claim before I wrote the post…

… just as I — months earlier — asked Charlie why he was falsely claiming Assange was charged in 2018 rather than within a day of a Russian exfiltration attempt in 2017, something that probably has far more to do with why DOJ charged Assange when and how they did than who was Attorney General at the time.

After his bullshit attempt to explain that date error away, Charlie removed the date, though without notice of correction, must less credit to me for having to fact check the NYT.

Anyway, Charlie apparently didn’t read the post when I first wrote it, but instead only read it yesterday when I excused Icelandic journalists for making the same error — attributing the decision to prosecute Assange to Billy Barr’s animus rather than newly discovered evidence — that Charlie had earlier made. And Charlie went off on a typically thin-skinned tirade. He accused me (the person who keeps having to correct his errors) of being confused. He claimed that the thrust of my piece — that he was misrepresenting the facts about Assange — was “false.” He claimed the charges against and extradition of Assange was a precedent not already set by Minh Quang Pham’s extradition and prosecution. He accused me of not grasping that this was a First Amendment argument and not the journalism argument he had shoehorned it into. He suggested my insistence on accurate reporting about the CFAA overt acts against Assange (including the significance of Edward Snowden to them) was a “hobbyhorse,” and that I only insisted on accurate reporting on the topic in an effort to, “us[e] something [Charlie] said as a peg to artificially sex it up (dumb NYT!) even though it doesn’t actually fit.” He then made a comment that still treats the prosecution of Assange as binary — the original indictment on a single CFAA charge or the first superseding indictment that added the dangerous Espionage Act charges — rather than tertiary, the second superseding indictment that, at least per Vanessa Baraitser, clearly distinguished what Assange did from what journalists do.

That’s when things went absolutely haywire. Pulitzer prize winning journalist Charlie Savage said that his repeated claim that the charges against Assange arose from a change in Administration rather than a changed understanding of Assange did not rely on what Miller said, because he had “been writing since 2010 about deliberations inside DOJ re wanting to charge Assange/WL,” linking to this story.

 

That is, Charlie presented as a defense to my complaint that he was misrepresenting what happened in 2016 and 2017 by pointing to reporting he did in 2010, which — I pointed out — is actually before 2013 and so useless in offering a better reason to cling to that 2013 detail rather than rely on more recent reporting. Because DOJ did not have the same understanding of WikiLeaks in 2010 as they got after Julian Assange played a key role in a Russian intelligence operation against the United States, obtained files from a CIA SysAdmin after explicitly calling on CIA SysAdmins to steal such things (in a speech invoking Snowden), attempted to extort the US with those CIA files, and then implicitly threatened the President’s son with them, Charlie Savage says, it’s okay to misrepresent what happened in 2016 and 2017. Charlie’s reporting in 2010 excuses his refusal to do reporting in 2021.

Given his snotty condescension, it seems clear that Charlie hasn’t considered that, better than most journalists in the United States, I understand the grave risks of what DOJ did with Assange. I’ve thought about it in a visceral way that a recipient of official leaks backed by an entire legal department probably can’t even fathom. But that hasn’t stopped me from trying to understand — and write accurately about — what DOJ claims to be doing with Assange. Indeed, as someone whose career has intersected with WikiLeaks far more closely than Charlie’s has and as someone who knows what people very close to Assange claim to believe, I feel I have an obligation to try to unpack what really happened and what the real legal implications of it are, not least because that’s the only way to assess where DOJ is telling the truth and whether they’re simply making shit up to take out Assange. DOJ is acting ruthlessly. But at the same time, at least one person very close to Assange told me explicitly she wanted me to misrepresent the truth in his defense, and WikiLeaks has been telling outrageous lies in Assange’s defense with little pushback by people like Charlie because, I guess, he thinks he’s defending journalism.

As I understand it, the entire point of journalism is to try to write the truth, rather than obfuscate it in an attempt to protect an institution called journalism. It does no good to the institution — either its integrity or the ability to demonstrate the risks of the Assange prosecution — to blame it all on Billy Barr rather than explore how and why DOJ’s institutional approach to Assange has changed over time.

More on Joshua Schulte’s Attempted Hack of the Justice System

/23 Comments/in , /by

A few weeks ago, I described what I believed was an attempt by Joshua Schulte to hack the judicial system — not by using computer code, but by exploiting legal code. In a status hearing, he claimed that he had informed prosecutors that he wanted to proceed pro se (representing himself). The sole remaining member of the prosecution team, David Denton, said he hadn’t heard of it.

A letter submitted by Denton and AUSA Michael Lockard today, who has joined the team, explains why: after they reviewed one of many appeals Schulte had filed (this one a demand for the judge in this case to recuse), he actually informed of his purported decision Judge Paul Crotty ex parte, before he sent a contrary filing, also ex parte. Crotty, having gotten no unequivocal indication that Schulte intended to proceed pro se, did nothing, which is part of the basis for Schulte’s mandamus filing.

On June 9, 2021, the defendant filed a pro se petition for a writ of mandamus in the Second Circuit seeking to recuse the District Court, claiming, among other things, that the defendant “petitioned [the Court] to represent himself in multiple letters throughout November 2020,” and that the Court “did not hold a Faretta hearing as required by law.” In Re: Joshua Schulte, 21-1445, Dkt. 1 at 10 (2d Cir. 2021). At the status conference in this matter on June 15, 2021, the Government noted that no such request appeared on the docket for this case, and that the Government was not aware of the defendant expressing “an unequivocal intent to forego the assistance of counsel.” Williams, 44 F.3d at 100. At the conference, defense counsel, at the defendant’s apparent request, stated that this was incorrect, and the defendant did wish to proceed pro se. Following the conference, defense counsel forwarded the Government a copy of a letter dated November 6, 2020, in which the defendant indicated his desire to proceed pro se, and informed the Government that the request had been submitted by the defendant to the Court ex parte. Defense counsel further explained that, in subsequent ex parte communication with the Court following the defendant’s November 2020 letter, defense counsel had advised the Court that the defendant intended to continue with counsel.

Much of the letter submitted today is routine process for when a defendant claims to want to represent himself. Among the precedents the government cites are two (one in this circuit) holding that a defendant cannot be co-counsel with his defense attorney, which is effectively what Schulte has done.

(4) a defendant who elects to proceed pro se “has no constitutional or statutory right to represent himself as co-counsel with his own attorney,” United States v. Tutino, 883 F.2d 1125, 1141 (2d Cir. 1989); see also Schmidt, 105 F.3d at 90 (“[T]here is no constitutional right to hybrid representation.”).

And while at the hearing Sabrina Shroff had suggested she and Deborah Colson serve as stand-by counsel, the government rightly notes that in his mandamus petition, Schulte raised conflicts reviewed before his first trial, which is something amounting to advice from Shroff that Schulte write down everything he wanted to leak in his prison notebook. They’re using that to ask that Crotty appoint someone besides Shroff (though they don’t name her) as standby counsel.

With regard to the appointment of standby counsel, the Government notes that the defendant’s recently filed pro se mandamus petition reiterates his prior claims that he wishes to call as witnesses certain of his prior and current counsel from the Federal Defenders of New York, although that claim is framed in the context of arguing that the Court’s prior rulings on this issue demonstrate bias that requires the Court’s recusal, rather than seeking relief from the Court’s orders themselves. See In Re: Joshua Schulte, 21-1445, Dkt. 1 at 4-9 (2d Cir. 2021). Accordingly, in order to avoid later claims alleging any purported conflict-of-interest, the Government respectfully suggests that it would be prudent for the Court to appoint as standby counsel one of the defendant’s current or former attorneys not implicated in the defendant’s claims asserting conflict or implicating the attorney-witness rule.

So the letter explains what, in a normal court room, is going on. But I maintain that Schulte is (and has been, for some time) attempting to do what he did with CIA’s computer systems: send a bunch of conflicting messages to get the machine to operate in a way entirely unexpected. Indeed, one tactic he’s using is one he used several times at CIA, the same tactic small children use when one parent gives them a response they don’t like: Schulte is bypassing his criminal docket (both through the use of the ex parte letters and the non-associated dockets, to ensure the government didn’t learn of this ploy until all the Speedy Time would, if the ploy is successful, have elapsed).

If I were the government I’d have some good hacking investigators review the docket to try to understand it all from a hacker’s brain. Because, at the very least, I suspect Schulte plans to claim that the government simply forgot to hold his second trial.

Joshua Schulte Attempts to Hack the Court System

/24 Comments/in /by

Joshua Schulte attempted to complete a hack of the court system yesterday.

I don’t mean that Schulte used computer code to bring down the court systems. His laptop doesn’t connect to the Internet, and so he does not have those tools available. Rather, over the 3.5 years he has been in jail, he has tested the system, figured out which messages can be used to distract adversaries, and which messages have an effect that will lead the system to perform in unexpected ways. He identified vulnerabilities and opportunities — SDNY arrogance, the pandemic and related court delays, Louis DeJoy’s postal system, and even the SAMs imposed on him — and attempted to exploit them.

As a reminder, a jury hung on the most serious charges against Schulte in March 2020. Afterwards, the government moved to retry Schulte quickly, but his defense attorneys said they needed more time, in part because their expert, Steve Bellovin, was for health reasons unwilling to serve as an expert during COVID. Last November, Judge Paul Crotty scheduled a trial to start June 7, 2021, which would have been a week ago Monday. In March, Schulte’s superb attorney, Sabrina Shroff, moved to delay the trial once more, to October, still citing Bellovin’s withdrawal.

Meanwhile, starting in January, Schulte started submitting pro se filings, some filed through Shroff, and some sent directly. The government responded to a motion for habeas corpus (basically, to point out he needs to file suit against the Warden of MCC, not the prosecution), but did not respond to his motion to suppress evidence seized from the MCC jail. When Schulte filed to request direct access to Lexus Nexis, the government responded, in part, by asking Judge Crotty to force Schulte to decide whether he was representing himself, pro se, or, if not, then to solely allow Shroff and her team to make filings on his behalf.

The defendant’s request appears to be an attempt to further his pattern of engaging in inappropriate, quasi-pro se litigation. The Court should not consider the defendant’s instant letter for that reason. “A defendant has a right either to counsel or to proceed pro se, but has no right to ‘hybrid’ representation, in which he is represented by counsel from time to time, but may slip into pro se mode for selected presentations.” United States v. Rivernider, 828 F.3d 91, 108 (2d Cir. 2016). Although the Court has “discretion to hear from a represented defendant personally,” id. at 108 n.5, “the interests of justice will only rarely be served by a defendant’s supplementation of the legal services provided by his . . . counsel,” United States v. Swinton, 400 F. Supp. 805, 806 (S.D.N.Y. 1975). To the extent the defendant has any colorable claims for relief, his attorneys can present them to the Court, and the Court should reject the defendant’s attempts to “slip into pro se mode,” Rivernider, 828 F.3d at 108, whenever it suits him. See, e.g., United States v. Crumble, No. 18 Cr. 32 (ARR), 2018 WL 3112041, at *4 (E.D.N.Y. June 25, 2018) (“As Markus has not elected to represent himself, he does not have a right to make a motion on his own behalf, nor does he have a right to insist that the district court hear his applications. While I have previously exercised my discretion to entertain Markus’s pro se submissions, I will do so no longer. If Markus wishes to file any further motions, he is directed to ask his trial counsel—or appellate counsel— to adopt this motion. I trust that assigned counsel will file any motions that they do not view as frivolous on Markus’s behalf. Any pro se motions made by Markus, however, will be summarily denied.” (cleaned up)).

In any event, even if the Court considers the defendant’s submission, it is without merit. As his letter acknowledges, he has access to legal databases (a fact confirmed by the volume of his recent pro se filings), but additionally he demands special access to “filings, briefs, modern search, and the ability to print.” The defendant’s claims about the purported deficiencies of the databases to which he does in fact have access do not support such demands or establish a basis for relief. “[A]n inmate cannot establish relevant actual injury simply by establishing that his prison’s law library or legal assistance program is subpar in some theoretical sense.” Lewis v. Casey, 518 U.S. 343, 351 (1996). The defendant identifies no reason he should be afforded special access beyond that which the facility provides in the normal course, and at bottom, he is represented by counsel who have the ability to make well-researched and thoroughly prepared legal claims on his behalf.

Crotty denied Schulte’s request for Lexus Nexis, but didn’t address the pro se request.

Meanwhile, two of the three prosecutors on the team, Matthew LaRoche and Sidhardha Kamaraju, withdrew from the case, both because they’ve left government. LaRoche was involved in a prosecution that collapsed because the government committed a Brady violation, but Kamaraju was not. Kamaraju, however, probably has the most computer expertise of the original three.

Yesterday there was a remarkable status hearing. Crotty started by asking the remaining prosecutor, David Denton, when replacement prosecutors will file an appearance. Imminently, Denton said, though it sounded like he didn’t believe that.

Crotty asked whether Shroff has found an expert. Curiously, she explained that Bellovin still can’t do it, even with the waning risk of COVID, because of his schedule at Columbia University. Crotty noted that it is her responsibility to find an expert (she had said in a November status conference that it would amount to ineffective assistance not to have one).

But the real stunner came at the end, when Shroff said that Schulte wanted her to tell the court that he had told the government back in November that he was proceeding pro se. Denton responded that this was the first he had heard of such a thing, and Shroff responded that he was incorrect; Schulte had informed the government in November.

The hearing ended with a commitment to brief whether Schulte can proceed pro se.

It is almost without exception an insanely bad idea for a defendant to represent themselves, and this is probably not that exception. Still, there are advantages that Schulte would get by representing himself. He’s brilliant, and clearly has been studying the law in the 3.5 years he has been in prison (though he has made multiple errors of process and judgment in his own filings). He has repeatedly raised the Sixth Amendment problems with Special Administrative Measures, notably describing how delays in receiving his mail make it impossible for him to respond to legal developments in timely fashion. So I imagine he’d prepare a Sixth Amendment challenge to everything going forward. He’d be able to demand access to the image of the server he is alleged to have hacked himself. By proceeding pro se, Schulte could continue to post inflammatory claims to the docket for sympathetic readers to magnify, as happened with a filing he submitted earlier this year. And after the government has made clear it will reverse its disastrous strategy from the first trial of making the trial all about Schulte’s conflicts with the CIA, by questioning witnesses himself, Schulte would be able to make personality conflicts central again, even against the government’s wishes. Plus, by not replacing Bellovin, Schulte would serve as expert himself. In that role, Schulte would present the false counter story he has been telling since he was jailed, but in a way that the government couldn’t cross-examine him. So it would probably be insanely detrimental, but less so than for most defendants that try it. It certainly would provide a way to mount the defense that Schulte clearly wants to pursue.

But I think that’s just Schulte’s fall-back plan.

I think his current plan is to argue that, because anything his attorneys did in his name after he purportedly informed prosecutors he was proceeding pro se would be a legal nullity, then two things have happened since that allegedly occurred that will permit him to demand immediate release. First, if his attorneys’ agreements to exclude time from the Speedy Trial clock were not valid, then it would mean the government has run out of time to prosecute Schulte. Additionally, if a request that Shroff made in March to reschedule the trial was not valid, then the trial would have still been scheduled for last week. I suspect Schulte will try to argue that the government forgot to hold their trial and so must be released.

Mind you, there’s no evidence in the docket that Schulte informed prosecutors, much less the court, that he was proceeding pro se. There’s a filing he made in April 2020 that claimed he had no lawyers and made requests as if he was proceeding pro se, one that everyone ignored. But according to Shroff, that’s not the notice; the notice took place in November. Still, given how Schulte has carefully tested how the mail system works with SAMs and COVID, I don’t rule out him sending a letter directly to prosecutors.

The other problem with his claim to be proceeding pro se is that in a May filing, Schulte referred to the October trial (meaning, he recognizes the validity of both that request and Shroff’s exclusion of time under the Speedy Trial Act) and complained that his attorney-client mail was being opened. If he were proceeding pro se without Crotty formally appointing Shroff as standby counsel, their communications would have no privilege. So he has said two things in a pro se filing that are inconsistent with really proceeding pro se.

Certainly, Shroff has said things — in multiple venues — that indicate she believed she remained Schulte’s lawyer.

Given that Schulte claims everything his legal team has done since November was done without his sanction, though, the government would seem to have cause to ask Crotty to assign entirely different lawyers to serve as Schulte’s stand-by counsel, if indeed he does proceed pro se going forward. Which would make his plan for the actual trial, if it ever happens, untenable.

To be sure, I’m not saying this is going to work. But the government — what’s left of the prosecution team, anyway — had better understand that Schulte has been treating the court system with the same adversarial approach as he allegedly did the CIA’s servers. Schulte is claiming to have entered a command into his prosecution back in November that hacked the system, effectively changed the effect of everything that has happened since. Just trusting that such a possibility cannot happen under the legal system is probably a bad idea given where the CIA’s trust that Schulte wouldn’t hack the system turned out.

Update: Via InnerCity Press, there’s the transcript of the hearing.

April 12, 2020: Schulte claims he has no attorneys, claims only a few months remain on Speedy Trial

May 31, 2020: Shroff asks for a week extension to respond to government scheduling motion

June 8, 2020: Schroff requests a status conference for August or September 2020, acting as if Schulte’s request did not exist

June 15, 2020: Shroff initiates White Plains grand jury challenge

June 19, 2020: SDNY extends Speedy Trial to July 1, 2020

July 16, 2020: Shroff informs Judge Crotty Schulte will not reply to Rule 29 motion

July 27, 2020: Shroff asks for extension on grand jury challenge

July 28, 2020: Shroff asks for ESXi server (basically a repeat of Schulte’s April request)

July 30, 2020: Shroff asks for two week delay on status hearing citing (in part) Steve Bellovin’s withdrawal

August 14, 2020: Shroff asks for two week extension on reply to request for ESXi server

September 15, 2020: Shroff reply on ESXi laptop

September 16, 2020: SDNY proposes schedule, with January 2021 trial date

September 21, 2020: SDNY responds to Bellovin submission of ex parte declaration

October 14, 2020: SDNY asks for 30 day exclusion

October 30, 2020: Shroff requests Schulte appear remotely

November 4, 2020: Status conference, trial set for June 7, 2021, with time excluded; Shroff maintains it would be ineffective counsel to go to trial without expert

THE COURT: Are you entitled to an expert?

MS. SHROFF: In a case like this, yes. I’m quite certain I’m entitled to an expert. I think it would be clear error and ineffective assistance of counsel to try this case without an expert, without a doubt.

November 16, 2020: Shroff-submitted motion to dismiss on White Plains grand jury

November 19, 2020: Shroff submits request for VTC meeting with Schulte’s family

January 1, 2021: Schulte motion to suppress MCC evidence (docketed February 24)

January 7, 2021: Shroff requests 2 week extension on White Plains grand jury reply

January 19, 2021: Shroff files Schulte pro se motion for writ of habeas corpus regarding SAMs, dated December 25, 2020

January 22, 2021: Shroff requests two week extension on January 21 deadline for reply on White Plains grand jury reply

January 22, 2021: Shroff requests funds for new laptop for Schulte

January 27, 2021: Civil Division AUSA asks Crotty to dismiss motion for writ so it can be refiled naming Warden as defendant

February 22, 2021: Shroff submits reply on White Plains grand jury challenge

February 24, 2021: Schulte files motion to reconsider decision on habeas (docketed March 4)

March 19, 2021: Schulte calls on Crotty to decide his motion to suppress on the merits, given government non-response (docketed April 5)

March 22, 2021: Shroff moves, with consent of Schulte, to reschedule trial to last quarter of 2021

March 24, 2021: Crotty denies motion to dismiss; Crotty reschedules trial for October 25, excludes time

April 12, 2021: Schulte asks for Lexus Nexis (docketed April 29)

May 5, 2021: Schulte complains about mail delays (docketed May 19); among other things it reflects an October trial date and references attorney-client mail

May 7, 2021: Matthew LaRoche withdraws

May 11, 2021: SDNY submits opposition to Lexus Nexis request, including request for order that Schulte not submit pro se

June 3, 2021: Sidhardha Kamaraju withdraws

June 7, 2021: Date of trial scheduled in November 2020

June 15, 2021: Status hearing at which Schulte claims to have been representing himself pro se since November

Snowden

Insurance File: Glenn Greenwald’s Anger Is of More Use to Vladimir Putin than Edward Snowden’s Freedom

/105 Comments/in , , , , /by

Glenn Greenwald risks making his own anger more valuable to Vladimir Putin than Edward Snowden’s freedom.

When WikiLeaks helped Snowden flee Hong Kong eight years ago, both WikiLeaks and Snowden had the explicit goal of using Snowden’s successful flight from prosecution to entice more leakers.

In his book, Snowden described that Sarah Harrison and Julian Assange’s goal in helping him flee Hong Kong was to provide a counterexample to the draconian sentence of Chelsea Manning.

People have long ascribed selfish motives to Assange’s desire to give me aid, but I believe he was genuinely invested in one thing above all—helping me evade capture. That doing so involved tweaking the US government was just a bonus for him, an ancillary benefit, not the goal. It’s true that Assange can be self-interested and vain, moody, and even bullying—after a sharp disagreement just a month after our first, text-based conversation, I never communicated with him again—but he also sincerely conceives of himself as a fighter in a historic battle for the public’s right to know, a battle he will do anything to win. It’s for this reason that I regard it as too reductive to interpret his assistance as merely an instance of scheming or self-promotion. More important to him, I believe, was the opportunity to establish a counterexample to the case of the organization’s most famous source, US Army Private Chelsea Manning, whose thirty-five-year prison sentence was historically unprecedented and a monstrous deterrent to whistleblowers everywhere. Though I never was, and never would be, a source for Assange, my situation gave him a chance to right a wrong. There was nothing he could have done to save Manning, but he seemed, through Sarah, determined to do everything he could to save me. That said, I was initially wary of Sarah’s involvement. But Laura told me that she was serious, competent, and, most important, independent: one of the few at WikiLeaks who dared to openly disagree with Assange. Despite my caution, I was in a difficult position, and as Hemingway once wrote, the way to make people trustworthy is to trust them.

[snip]

It was only once we’d entered Chinese airspace that I realized I wouldn’t be able to get any rest until I asked Sarah this question explicitly: “Why are you helping me?”

She flattened out her voice, as if trying to tamp down her passions, and told me that she wanted me to have a better outcome. She never said better than what outcome or whose, and I could only take that answer as a sign of her discretion and respect.

It’s not just Snowden’s impression, though, that WikiLeaks intended to make an example of him. The superseding indictment against Assange cites several times when Assange invoked WikiLeaks’ role in Snowden’s successful escape to encourage others (including CIA Systems Administrators like Joshua Schulte, who had a ticket to Mexico when the FBI first interviewed him and seized his passports) to go do what Snowden did. British Judge Vanessa Baraitser even included one of those speeches in paragraphs distinguishing what Assange is accused of from legal journalism. And as early as 2017, public reporting said that WikiLeaks’ assistance to Snowden was what changed how DOJ understood WikiLeaks and why it began to consider prosecuting Assange. It wasn’t Trump that led DOJ to stop treating Assange as a journalist, it was Snowden.

According to Snowden’s own words, he shared WikiLeaks’ goal of setting an example to inspire others. In an email that Snowden must have sent Bart Gellman weeks before the exchange between him and Harrison above, Snowden described steps he took to give other leakers (this may be Gellman’s paraphrase), “hope for a happy ending.”

In the Saturday night email, Snowden spelled it out. He had chosen to risk his freedom, he wrote, but he was not resigned to life in prison or worse. He preferred to set an example for “an entire class of potential whistleblowers” who might follow his lead. Ordinary citizens would not take impossible risks. They had to have some hope for a happy ending.

To effect this, I intend to apply for asylum (preferably somewhere with strong internet and press freedoms, e.g. Iceland, though the strength of the reaction will determine how choosy I can be). Given how tightly the U.S. surveils diplomatic outposts (I should know, I used to work in our U.N. spying shop), I cannot risk this until you have already gone to press, as it would immediately tip our hand. It would also be futile without proof of my claims—they’d have me committed—and I have no desire to provide raw source material to a foreign government. Post publication, the source document and cryptographic signature will allow me to immediately substantiate both the truth of my claim and the danger I am in without having to give anything up. . . . Give me the bottom line: when do you expect to go to print?

Citizenfour also quotes Snowden describing how he hoped that proof that his “methods work[]” would encourage others to leak.

If all ends well, perhaps the demonstration that our methods worked will embolden more to come forward.

Snowden’s “methods” don’t work — they certainly haven’t for Daniel Hale, Reality Winner, or Joshua Schulte. But for each, Snowden played at least some role (there is ambiguity about how Schulte really felt about Snowden) in inspiring them to ruin their lives with magical thinking and inadequate operational security.

One of Snowden’s “methods” appears to entail quitting an existing job and then picking another at an Intelligence Community contractor with the intent of obtaining documents to leak. Snowden did this at Booz Allen Hamilton, and his book at least suggests the possibility he did that with his earlier job in Hawaii.

The government justified the draconian sentence that it had negotiated with Winner’s lawyers, in part, by claiming that she premeditated her leak.

Around the same time the defendant took a job with Pluribus requiring a security clearance in February 2017, she was expressing contempt for the United States, mocking compromises of our national security, and making preparations to leak intelligence information

Along with evidence Winner researched The Intercept’s SecureDrop before starting at her new job, the government supported this claim by pointing to three references Winner made to Snowden as or shortly after she started at Pluribus, including texts in which Winner told her sister she was on Assange and Snowden’s side the day the Vault 7 leak was revealed. That was still two months before she took the files she would send to The Intercept.

Had Hale gone to trial, the government would have shown that Hale discussed serving as a source for Jeremy Scahill by May 30, 2013, the day before he left NSA, and discussed Snowden — and hanging out with the journalists reporting on him — the day Snowden came forward on June 9. Then, on July 25, Hale sent Scahill a resume showing he was looking for counterterrorism or counterintelligence jobs. In December, Hale started the the job at Leidos where he would print out the files he sent to The Intercept.

You can think these leaks were valuable and ethical without thinking it a good idea to leave a months-long trail of evidence showing premeditation on unencrypted texts and social media.

Similarly, one of Snowden’s “methods” was to claim he had expressed concerns internally, but was ignored, a wannabe whistleblower stymied by America’s admittedly failed support for whistleblowers, especially those at contractors.

In the weeks before Snowden left NSA, he made a stink about some legal issues and NSA’s training programs (about how FISA Section 702 interacted with EO 12333) that he subsequently pointed to as his basis for claiming to be a whistleblower. The complaint was legit, and one NSA department actually did take notice, but it was not a formal complaint; indeed, it was more a complaint about US law. But his complaint had nothing to do with the vast majority of the documents that have been published based off his files, to say nothing of the far greater set of documents he took. And he made the complaint long after having prepared for months to steal vast amounts of files.

Similarly, Joshua Schulte wrote two emails documenting purported concerns about CIA security, one to a colleague less than a month before he left, which he didn’t send, and then, on his final day, one to CIA’s Inspector General that he falsely claimed was unclassified, a copy of which he was seen taking with him when he packed up. In the first search warrant for Schulte’s house obtained on March 13, 2017, less than a week after the initial Vault 7 release, the FBI had already found those emails and deemed Schulte’s treatment of them as suspect. And when they found a copy of the classified letter to the IG stashed in his headboard, it gave them cause to seize Schulte’s passports on threat of arrest. Snowden’s “methods” didn’t deliver Schulte a “happy ending;” they made Schulte’s apprehension easier.

To the extent Schulte could be shown to be following Snowden’s “methods” (again, that question was not resolved at his first trial) it would be a fairly damning indictment of those methods, since this effort to create a paper trail as a whistleblower was such an obvious attempt to retroactively invent cover for leaks for which there was abundant evidence Schulte’s motivation was spite and revenge. Maybe that’s why someone close to Assange explicitly asked me to stop covering Schulte’s case.

Had Daniel Hale gone to trial, the government undoubtedly would have used the exhibits showing that Hale had never made any whistleblower claims in any of the series of government jobs where he had clearance as a way to push back on his claim of being a whistleblower, though Hale was outspoken about his criticisms of the drone program before he took most of the files he shared with The Intercept. Indeed, given the success of Hale’s earlier anti-drone activism, his case raises real questions about whether leaking was more effective than Hale’s frank, overt witness to the problems of the drone program.

Worse still, Snowden’s boasts about his “methods” appear to have made prosecutions more likely. An early, mostly-sealed filing in Hale’s case, reveals that the government set out to investigate whether Hale was The Intercept’s source because they were trying to figure out whom Snowden had “inspired” to leak.

Specifically, the FBI repeatedly characterized its investigation in this case as an attempt to identify leakers who had been “inspired” by a specific individual – one whose activity was designed to criticize the government by shedding light on perceived illegalities on the part of the Intelligence Community.

That explains why the government required Hale to allocute to being the author of an essay in a collection of Hale’s leaked documents involving Snowden: by doing so, they obtained sworn proof that Hale is the person Snowden and Glenn Greenwald were discussing, while the two were sitting in Moscow, in the closing sequence of Citizenfour. In the scene, Glenn flamboyantly wrote for Snowden how this new leaker and The Intercept’s journalist were communicating, what appears to be J-A-B-B-E-R. That stunt for the camera would have tipped the government off, in cinema release just two months after they had raided Hale’s home, to look for and reconstruct Hale’s Jabber communications with Jeremy Scahill, which they partly succeeded in doing.

Rather than being means to a “happy ending,” then, prosecutors have found Snowden’s “methods” useful to pursuing increasingly draconian prosecutions of people inspired by him.

And now, after Snowden and Greenwald failed to persuade Trump to pardon Snowden, Assange — and in a secondary effort — The Intercept’s sources (perhaps, like Assange, they find the association with Schulte counterproductive, because they didn’t even try to get him pardoned, even though Trump himself almost bolloxed that prosecution), Snowden is left demanding pardons on Twitter for the people he set out to convince leaking could have a “happy ending.”

By associating these leaks with someone being protected by Russia so that — in Snowden’s own words — he could encourage more leaks, Snowden only puts a target on these people’s back, making a justifiable commutation of Winner’s sentence less likely (Winner is due to get out on November 23, two days before the most likely time for Joe Biden to even consider commuting her sentence).

I’m grateful for Snowden’s sacrifices to release the NSA files, but his efforts to lead others to believe that leaking would be easy was bound to, and has, ended badly.

If Vladimir Putin agreed to protect Snowden in hopes that he would inspire more leakers to release files that help Russia evade US spying (as Schulte’s leak did, at a time when the US was trying to understand the full scope of what Russia had done in 2016), the US prosecutorial focus on Snowden-related leakers undermines his value to Putin, probably by design. As that happens, Snowden might reach the moment that observers of his case have long been dreading, the moment when Putin’s utilitarian protection of Snowden will give way to some other equally utilitarian goal.

This is all happening as Putin adjusts to dealing with Joe Biden rather than someone he could manipulate by (at the very least) feeding his narcissism, Donald Trump. It is happening in the wake of new sanctions on Russia, in response to which Putin put US Ambassador John Sullivan on a plane to deliver some message, in person, to Biden. It is happening as Biden’s response to the Colonial Pipeline attack, in which ransomware criminals harbored by Putin shut down US critical infrastructure for fun and profit, includes noting that he and Putin will meet in person soon, followed by the unexplained disabling of the perpetrators in the wake of the attack.

Meanwhile, even as Snowden is of less and less use to Putin, Glenn Greenwald’s utility continues to grow. Snowden, for example, continues to speak out about topics inconvenient to Putin, like privacy. The presence in Russia of someone like Snowden with his own platform and international credibility may become increasingly risky for Putin given the success of protests around Alexei Navalny.

Greenwald, by contrast, seems to have dropped all interest in surveillance and has instead turned many of his grievances — even his complaint that former NSA lawyer Susan Hennessey will get a job in DOJ’s National Security Division, against whom one can make a strong case on privacy grounds — into a defense of Russia. Greenwald spends most of his time arguing that a caricature that he labels “liberals” and another caricature that he labels “the [American] Deep State,” followed closely by another caricature he calls “the  [non-right wing propaganda] Media,” are the most malignant forces in American life. In his rush to attack “liberals,” “the Deep State,” and “the Media,” Greenwald has coddled the political forces that Putin has found useful, including outright racists and other right wing extremists. By the end of the Trump presidency, Greenwald was excusing virtually everything Trump did, up to and including his attempted coup based on the utter denigration of democratic processes. In short, Greenwald has become a loud and important voice in support of the illiberalism Putin favors, to say nothing of Greenwald’s use of a rhetoric unbound by facts.

That Greenwald spends most of his days deliberately inciting Twitter mobs is just an added benefit, to those who want to weaken America, to Greenwald’s defense of fascists.

Most of us who used to know Greenwald attribute his Russian denialism and his apologies for Trump at least partly to his desire to free Snowden from exile. Yet Greenwald’s tantrums, because of their value to Putin, may have the opposite effect.

Stoking Greenwald’s irrational furor over what he calls “liberals” and “the Deep State” and “the Media” would actually be a huge incentive for Putin to deal Snowden to the US, in maximally symbolic fashion. There is nothing that could light up Greenwald’s fury like Putin bringing Snowden to a summit with Biden, wrapped up like a present, to send back on Air Force One. (That’s an exaggerated scenario, but you get my point.)

Plus, if Putin played it right, such a ceremonial delivery of Snowden might just achieve the completion of the Snowden operation, the public release of all of the files Snowden stole, not just those that one or another journalist found to have news value.

The Intelligence Community has, over the years, said a bunch of things about Snowden that were outright bullshit or, at least, for which they did not yet have evidence. But one true thing they’ve said is that Snowden took a great many files that had no imaginable privacy value. Even from a brief period working in the full archive aiming to answer three very discrete questions about FISA, I believe that to be true. While some (including Assange) pressured Snowden and others to release all these files, Snowden instead ensured that journalists would serve a vetting role, and after some initial fumbling, The Intercept did a laudable job of keeping those files safe. So up to now, the fact that Snowden took far more files than any privacy concern — even privacy concerns divorced from all question of nationality — could justify may not have mattered.

But as far as I know there are still full copies out there and Russia would love to spin up Glenn Greenwald’s fury so much he would attempt to burn down his caricature of “The Deep State” in retaliation — much like Schulte succeeded in badly damaging the CIA — by releasing his set.

I believe Russia has been trying to do this since at least 2016.

To be very clear, I’m not claiming that Greenwald is taking money from or is any way controlled by Russia. I am very much not claiming that, in part because it wouldn’t be necessary. Why pay Greenwald for what you can get him to do for free?

And while I assume Greenwald would respect Snowden’s stated wishes and protect the files, like Trump, Greenwald’s narcissism and resentment are very, very easy buttons to push. Greenwald has been heading in this direction without pushing. It would be child’s play to have people friendly to Russia’s illiberal goals (people like Steve Bannon or Tucker Carlson) exacerbate Greenwald’s anger at “the Deep State” to turn it into the frenzy it has become.

Meanwhile, custody of Edward Snowden would be a very enticing dangle for Putin to offer Biden as a way to reset Russia’s relationship with the US. One cannot negotiate with Putin, one can only adjust the points of leverage over each other and hope to come to some stable place, and Snowden has always been at risk of becoming a bargaining chip in such a relationship. By turning Snowden over to the US to be martyred in a high profile trial, Putin might wring the last bit of value out of Snowden. All the better, from Putin’s standpoint, if Greenwald were to respond by releasing the full Snowden set.

For the past four years, Greenwald seems to have believed that if he sucked up to Putin and Trump, he’d win Snowden’s freedom, as if either man would ever deal in good faith. Instead, I think, that process has had the effect of making Greenwald more useful to Russia than Snowden is anymore. And at this point, Greenwald seems to have lost sight of the likelihood that his belligerent rants may well make Snowden less safe, not more.

Update: According to the government sentencing memo for Hale, they didn’t write up the statement of offense, Hale did.

Hale pled guilty without any plea agreement, and submitted his own Statement of Facts. Def.’s Statement of Facts, Dkt. 197 (“SOF”).

The George Nader Problem: NSA Removes the Child Exploitation Content from Its Servers

/29 Comments/in , , /by

When Lebanese-American dual citizen George Nader was stopped at Dulles after arriving on a flight from Dubai on January 17, 2018, he had at least 12 videos on his phone depicting boys as young as two years old being sexually abused, often with the involvement of farm animals. In the days before a Mueller prosecutor obtained the contents of the three phones Nader had with him, Nader sat for at least four interviews with Mueller’s prosecutors and told a story (which may not have been entirely forthright) about how he brokered a meeting in the Seychelles between Russia and Erik Prince a year earlier. Nader exploited Prince’s interest in work with Nader’s own employer — Mohammed bin Zayed — to set up the back channel meeting, and as such was a very effective broker in the service of two foreign countries, one hostile to the US. As such, I assume, Nader became a key counterintelligence interest, on top of whatever evidence he provided implicating Trump and his flunkies.

Mueller’s team got the returns on Nader’s phones back on March 16. An FBI Agent in EDVA in turn got a warrant for the child porn. But two days after the agent got the warrant return, Nader skipped town and remained out of the country until days after Mueller shut down his investigation, at which point he returned to the US and was promptly arrested for his abuse of children. Even without the other influence peddling that Nader had done on behalf of the Emirates, he would have remained a key counterintelligence interest for the entire 14 months he remained outside the country. After all, Nader had been making key connections since at least the time he introduced Ahmed Chalabi to Dick Cheney, and probably going back to the Clinton Administration.

So it is quite possible that for the entire period Nader was out of the country, he was surveilled. If that happened, it almost certainly would have happened with the assistance of NSA. As an agent of Dubai, he would be targetable under FISA, but as a US citizen, targeting him under FISA would require an individualized FISA warrant, and the surveillance overseas would take place under 705b.

If the surveillance did happen, Nader’s sexual abuse of boys would have had foreign intelligence value. It would be of interest, for example, to know who knew of his abuse and whether they used it as leverage over Nader. The source of the videos showing the children being exploited would be of interest. So, too, would any arrangements Nader made to procure the actual boys he abused, particularly if that involved high powered people in Middle Eastern countries.

Understanding how George Nader fit in international efforts to intervene in US affairs would involve understanding his sexual abuse of boys.

And that poses a problem for the NSA, because it means that really horrible content — such as Nader’s videos showing young boys being abused with goats for the object of an adult’s sexual pleasure — is among the things the NSA might need to collect and analyze.

I’ve been thinking about George Nader as I’ve been trying to understand one detail of the recent FISA 702 reauthorization. In January 2020, the NSA got permission to — in the name of lawful oversight — scan its holdings for child exploitation, stuff like videos of adults using goats to sexually abuse very young boys.

In a notice filed on January 22, 2020, the government informed the Court that NSA had developed a method, [redacted] of known or suspected child-exploitation material (including child pornography), to identify and remove such material from NSA systems. To test this methodology, NSA ran the [redacted] against a same of FISA-acquired information in NSA systems. The government concedes that queries conducted for such purposes do not meet generally applicable querying standard; nor do they fall within one of the lawful oversight functions enumerated in the existing NSA querying procedures. Nevertheless, NSD/ODNI opined that “the identification and removal of child exploitation material … from NSA systems that is a lawful oversight function under section IV.C.6,” and that the deviation from the querying procedures was “necessary to perform this lawful oversight function of NSA systems.” Notice of Deviation from Querying Procedures, January 22, 2020, at 3; see Oct. 19, 2020, Memorandum at 10.

NSA anticipates using such queries going forward, likely on a recurring basis, to proactively identify and remove child-exploitation material from its systems. The government submits that doing so is necessary to “prevent [NSA] personnel from unneeded exposure to highly disturbing, illegal material.” October 19, 2020, Memorandum at 10. The Court credits this suggestion and likewise finds that performance of these queries qualifies as a lawful oversight function for NSA systems. But the Court encouraged the government to memorialize this oversight activity in § IV.C.6, among the other enumerated lawful oversight functions that are recognized exceptions to the generally acceptable querying standards.

The government has done so. Section IV.C.6 now includes a new provision for “identify[ing] and remov[ing] child exploitation material, including child pornography, from NSA systems.” NSA Querying Procedures § IV.C.6.f. The Court finds that the addition of this narrow exception has no material impact on the sufficiency of the querying procedures taken as a whole.

At first, I thought they were doing this to protect the children. Indeed, my initial concern was that NSA was using these scans to expand the use of NSA queries for what wound up being law enforcement action, such that they could ask to do similar scans for the seven other crimes they’ve authorized sharing FISA data on (though of the other crimes, only snuff videos would be as easy to automate as child porn, which has a well-developed technology thanks to Facebook and Google). I thought that, once they scanned their holdings, they would alert whatever authority might be able to rescue the children involved that they had been victimized. After all, under all existing minimization procedures, the NSA can share proof of a crime with the FBI or other relevant law enforcement agency. Indeed, in 2017, FISC even authorized NSA and FBI to share such evidence of child exploitation with the National Center for Missing and Exploited Children, so they could attempt to identify the victims, help bring the perpetrators to justice, and track more instances of such abuse.

But that doesn’t appear to be what’s happening.

Indeed, as described, “saving the victims” is not the purpose of these scans. Rather, preventing NSA personnel from having to look at George Nader’s pictures showing goats sexually abusing small boys is the goal. When I asked the government about this, NSA’s Director for Civil Liberties, Privacy and Transparency, Rebecca Richards, distinguished finding child exploitation material in the course of intelligence analysis — in which case it’ll get reported as a crime — from this, which just removes the content.

NSA does not query collected foreign intelligence information to identify individuals who may be in possession of child exploitation material. This particular provision allows NSA to identify and remove known or suspected child-exploitation material (including child pornography) from NSA systems.

The Court agreed that this was appropriate lawful oversight to “prevent [NSA] personnel from unneeded exposure to highly distributing, illegal material.” The point of the query is not to surface the material for foreign intelligence analysis, the function of the query is to remove the material. If NSA finds such information in the course of its analytic process to identify and report on foreign intelligence, it will review and follow necessary crimes reporting.

The Court credits the suggestion to conduct this activity as part of NSA’s lawful oversight function. [my emphasis]

I asked NSA a bunch of other questions about this, but got no further response.

First, isn’t the NSA required to (and permitted to, under the minimization procedures) alert the FBI to all such instances they find? So wouldn’t this be no different from a law enforcement search, since if found it will lead to the FBI finding out about it?

Second, as offensive as this stuff is, isn’t it also of value from a foreign intelligence perspective? Ignoring that George Nader is a US person, if a high profile advisor to MbZ was known to exploit boys, wouldn’t that be of interest in explaining his position in MbZ’s court and his preference for living in Dubai instead of VA? Wouldn’t it be of interest in understanding the counterintelligence threat he posed?

If it is of FI interest (I seem to recall a Snowden revelation where similar discoveries were used against a extremist cleric, for example), then how is it recorded to capture the FI use before it is destroyed? And in recording it, aren’t there NSA and/or FBI personnel who would have to look more closely at it? Wouldn’t that increase the amount of child exploitation viewed (presumably with the benefit of finding more predators, even if they are outside US LE reach)?

Finally, can you tell me whether NCMEC is involved in this? Do they receive copies of the material for their databases?

Are you saying that if the NSA finds evidence of child exploitation via these searches, it does not refer the evidence to FBI, even if it implicates victims in the United States?

Another question I have given Richards’ response is, why would NSA personnel be accessing collections that happen to include child exploitation except for analytic purposes?

But maybe that’s the real answer here: NSA employees would access child exploitation 1) for analytical purposes (in which case, per Richards, it would get reported as a crime) or 2) inappropriately, perhaps after learning of its presence via accessing it for analytic purposes (something that is not inconsistent with claims Edward Snowden has made).

After all, there have been two really high profile examples of national security personnel accused of critical leaks in the last decade who also have been accused of possessing child pornography: Donald Sachtleben, who after he was busted for (amazingly) bringing child porn on his laptop into Quantico, he later became the scapegoat for a high profile leak about Yemen, and Joshua Schulte, on whose computer the government claims to have found child porn on when it searched the computer for evidence that he stole all of CIA’s hacking tools.

So perhaps the NSA is just removing evidence of child exploitation from its servers — which it spent a lot of resources to collect as foreign intelligence — to avoid tempting NSA employees from accessing it and further victimizing the children?

If that’s correct, then it seems that NSA has taken a totally backwards approach to mitigating this risk.

If you’re going to scan all of NSA’s holdings to ID child exploitation, why not do so on intake, and once found, hash and encrypt it immediately. Some of what analysts would be interested in — tracking the dissemination of known child porn or the trafficking of known victims by transnational organized crime, for example — could be done without ever viewing it, solely after those existing hashes. If there were some other need — such as identifying a previously unidentified victim — then the file in question can be decrypted as it is sent along to FBI. That would have the added benefit of ensuring that if NSA personnel were choosing to expose themselves to George Nader’s videos of young boys being abused with farm animals, then the NSA would have a record of who was doing so, so they could be fired.

I get why the NSA doesn’t want to host the world’s biggest collection of child abuse, particularly given its difficulties in securing its systems. I don’t have any answers as to why they’re using this approach to purge their systems.