Risk
6/24/2013
11:07 AM
50%
50%

NSA Leaker Snowden On The Run

U.S. files charges against former National Security Agency contractor Edward Snowden, who is seeking asylum in Ecuador. To date, Hong Kong and Moscow have declined to detain him.

Former National Security Agency (NSA) contractor and whistleblower Edward Snowden, 30, is on the move, reportedly attempting to gain asylum in Ecuador. But after reportedly arriving in Moscow, by Monday evening Moscow time his whereabouts were unknown.

Snowden flew from Hong Kong to Moscow Sunday, where he was reportedly met on the tarmac by Venezuelan diplomats. "He has arrived. He cannot leave the terminal, since he doesn't have a Russian visa," an Aeroflot source told Russian news agency Interfax.

U.S. authorities have charged Snowden with criminal and espionage crimes relating to his leaking information about numerous NSA surveillance programs, including Prism.

But government officials in Russia, who claimed they hadn't known Snowden was Moscow-bound, declined to detain him, saying there was no warrant for his arrest issued via Interpol. "It is not a question for us," President Vladimir Putin's spokesman Dmitry Peskov told The Wall Street Journal. "We don't know what his plans are and we were unaware he was coming here." Russia has no extradition treaty with the United States.

[ Is Snowden an altruistic whistle-blower, reckless criminal, outright traitor or somewhere in between? See NSA Prism Whistleblower Snowden Deserves A Medal. ]

An Interpol official told the Wall Street Journal that the United States could have issued a "red notice" for Snowden that would have served as an international arrest warrant for Interpol's 190 member countries -- except that such notices can't be issued for espionage, which is considered to be a political crime. Interpol's charter prohibits the organization from getting involved in military, political or religious matters.

While last seen in Moscow, according to a statement issued Sunday by WikiLeaks, Snowden is ultimately "bound for the Republic of Ecuador via a safe route for the purposes of asylum, and is being escorted by diplomats and legal advisers from WikiLeaks."

"The Government of Ecuador has received an asylum request from Edward J. #Snowden," tweeted Ecuador's foreign minister, Ricardo Patiño on Sunday. He told the Associated Press Monday that the Ecuadorean government has been "analyzing it with a lot of responsibility," and said its decision would factor in "freedom of expression and with the security of citizens around the world." While the United States and Ecuador have a joint extradition treaty -- first signed in 1872 -- it doesn't apply "to crimes or offenses of a political character."

U.S. officials revealed Friday that Snowden has been charged for leaking classified information. A one-page sealed criminal complaint filed by the FBI in federal court charged Snowden with theft of government property, unauthorized communication of national defense information, and willful communication of classified communications intelligence information to an unauthorized person. Each of the charges carries up to 10 years in prison. Although the complaint was filed June 14, 2013, it wasn't made public until June 21, and an accompanying affidavit still remains under seal.

As noted, by Monday evening Moscow time, Snowden's whereabouts were unknown, after he failed to show for a Cuba-bound flight. "Edward Snowden not on Aeroflot flight to Havana. But a bunch of reporters are. (Bad news for them: it's dry)," tweeted the Guardian. Why skip the Cuba-bound flight? Legal experts said that if the plane's route took it over North American airspace, U.S. authorities could have compelled it to land. Then again, it could also have been a ruse intended to throw any pursuers off Snowden's tracks.

Regardless, an unnamed Aeroflot official told Interfax that Snowden was still in the airport's transit area. "Everything has been done to allow Snowden to spend the night peacefully at the airport's capsule hotel and to fly quietly to Cuba," according to the official.

Furthermore, Snowden may eventually take a chartered plane, since WikiLeaks has offered to fly him to a destination of his choice. "The WikiLeaks legal team and I are interested in preserving Mr. Snowden's rights and protecting him as a person," Baltasar Garzon, legal director of WikiLeaks -- and also Julian Assange's attorney -- said in a statement.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2004-2771
Published: 2014-12-24
The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.

CVE-2014-3569
Published: 2014-12-24
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected handshake, as demonstrated by an SSLv3 handshak...

CVE-2014-4322
Published: 2014-12-24
drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or c...

CVE-2014-6132
Published: 2014-12-24
Cross-site scripting (XSS) vulnerability in the Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.3 through 6.3.0.5, 7.0.x through 7.0.0.5, 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 allows remote authenticated users to inject arbitrary web script or HTML vi...

CVE-2014-6153
Published: 2014-12-24
The Web UI in IBM WebSphere Service Registry and Repository (WSRR) 6.3.x through 6.3.0.5, 7.0.x through 7.0.0.5, 7.5.x through 7.5.0.4, 8.0.x before 8.0.0.3, and 8.5.x before 8.5.0.1 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture ...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.