03:02 PM
Connect Directly

11 Alleged Russian Secret Agents Charged

The complaints filed against the alleged spies reveal a sophisticated high-tech investigation.

In two legal complaints that read like a cold war espionage thriller, the U.S. Department of Justice on Monday charged 11 people with carrying out deep-cover intelligence-gathering missions for the Russian Federation.

The multi-year investigation by the FBI, the U.S. Attorney's Office for the Southern District of New York, and the Department of Justice's Counterespionage Section and Office of Intelligence has led to the arrest of 10 people. One defendant is still at large.

The defendants allegedly served as Russian secret agents who were living in the U.S. on long-term deep-cover assignments.

Image Gallery: Who's Who In U.S. Intelligence
(click for larger image and for full photo gallery)

A coded message allegedly sent by the SVR, the Russian foreign intelligence service, to two of the defendants was intercepted and decrypted by the FBI. It explains their mission:

"You were sent to USA for long-term service trip," the note reads, according to one of the complaints. "Your education, bank accounts, car, house etc . -- all these serve one goal: fulfill your main mission, i.e. to search and develop ties in policymaking circles in US and send intels [intelligence reports] to C[enter]."

The SVR's headquarters is known as "Moscow Center."

The Russian Foreign Ministry has called the charges baseless, according to The Washington Post, and suggested the charges arise from an anti-Russian faction in the U.S. government that seeks to prevent improved relations between the U.S. and Russia.

Beyond cracking encrypted codes, government investigators appear to have brought considerable high-tech expertise to bear in their evidence gathering. The complaints describe extensive use of court-authorized electronic surveillance, including covert microphones in defendants' residences, covert video cameras in public locations and hotel rooms, and the monitoring of defendants' phone calls and e-mails. FBI agents covertly entered some of the defendants' residences and copied electronic media and took photographs there.

The alleged conspirators likewise are said to have made use of covert communication technology, specifically steganography, in which encrypted messages are concealed inside other data, and radiograms, coded messages sent by short wave radio.

Searches of defendants' residences uncovered software, allegedly provided by the SVR, that encrypted messages and concealed them in image files. The encryption code used by the steganography software was defeated because one of the defendants had written down the 27 character password. Following the recovery of this password in a clandestine 2005 search in New Jersey, the FBI was able to access protected files. Links to other Web sites containing image files with hidden messages were discovered in an electronic address book.

A search in Boston produced computer disks with deleted messages that proved to be recoverable by computer technicians. Other searches in Boston and Seattle provided evidence that the defendants were communicating using radiograms.

Money for the operation was allegedly provided by Russian government officials in the U.S. Investigators tracked one of the defendants in 2004 via a covert GPS tracking device as he drove to bury a bag of money provided by his handlers. Investigators subsequently found a package wrapped in duct tape buried beneath five inches of dirt, photographed the package, and re-buried it.

All of the defendants are charged with acting as an unauthorized agent of a foreign government, a charge that carries a maximum penalty of five years in prison. All but two are also charged with conspiracy to launder money, which carries a maximum 20-year sentence.

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "Why else would HR ask me if I have a handicap?"
Current Issue
The Changing Face of Identity Management
Mobility and cloud services are altering the concept of user identity. Here are some ways to keep up.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio

The cybersecurity profession struggles to retain women (figures range from 10 to 20 percent). It's particularly worrisome for an industry with a rapidly growing number of vacant positions.

So why does the shortage of women continue to be worse in security than in other IT sectors? How can men in infosec be better allies for women; and how can women be better allies for one another? What is the industry doing to fix the problem -- what's working, and what isn't?

Is this really a problem at all? Are the low numbers simply an indication that women do not want to be in cybersecurity, and is it possible that more women will never want to be in cybersecurity? How many women would we need to see in the industry to declare success?

Join Dark Reading senior editor Sara Peters and guests Angela Knox of Cloudmark, Barrett Sellers of Arbor Networks, Regina Wallace-Jones of Facebook, Steve Christey Coley of MITRE, and Chris Roosenraad of M3AAWG on Wednesday, July 13 at 1 p.m. Eastern Time to discuss all this and more.