Risk
6/24/2013
11:07 AM
Connect Directly
RSS
E-Mail
50%
50%
Repost This

NSA Leaker Snowden On The Run

U.S. files charges against former National Security Agency contractor Edward Snowden, who is seeking asylum in Ecuador. To date, Hong Kong and Moscow have declined to detain him.

Former National Security Agency (NSA) contractor and whistleblower Edward Snowden, 30, is on the move, reportedly attempting to gain asylum in Ecuador. But after reportedly arriving in Moscow, by Monday evening Moscow time his whereabouts were unknown.

Snowden flew from Hong Kong to Moscow Sunday, where he was reportedly met on the tarmac by Venezuelan diplomats. "He has arrived. He cannot leave the terminal, since he doesn't have a Russian visa," an Aeroflot source told Russian news agency Interfax.

U.S. authorities have charged Snowden with criminal and espionage crimes relating to his leaking information about numerous NSA surveillance programs, including Prism.

But government officials in Russia, who claimed they hadn't known Snowden was Moscow-bound, declined to detain him, saying there was no warrant for his arrest issued via Interpol. "It is not a question for us," President Vladimir Putin's spokesman Dmitry Peskov told The Wall Street Journal. "We don't know what his plans are and we were unaware he was coming here." Russia has no extradition treaty with the United States.

[ Is Snowden an altruistic whistle-blower, reckless criminal, outright traitor or somewhere in between? See NSA Prism Whistleblower Snowden Deserves A Medal. ]

An Interpol official told the Wall Street Journal that the United States could have issued a "red notice" for Snowden that would have served as an international arrest warrant for Interpol's 190 member countries -- except that such notices can't be issued for espionage, which is considered to be a political crime. Interpol's charter prohibits the organization from getting involved in military, political or religious matters.

While last seen in Moscow, according to a statement issued Sunday by WikiLeaks, Snowden is ultimately "bound for the Republic of Ecuador via a safe route for the purposes of asylum, and is being escorted by diplomats and legal advisers from WikiLeaks."

"The Government of Ecuador has received an asylum request from Edward J. #Snowden," tweeted Ecuador's foreign minister, Ricardo Patiño on Sunday. He told the Associated Press Monday that the Ecuadorean government has been "analyzing it with a lot of responsibility," and said its decision would factor in "freedom of expression and with the security of citizens around the world." While the United States and Ecuador have a joint extradition treaty -- first signed in 1872 -- it doesn't apply "to crimes or offenses of a political character."

U.S. officials revealed Friday that Snowden has been charged for leaking classified information. A one-page sealed criminal complaint filed by the FBI in federal court charged Snowden with theft of government property, unauthorized communication of national defense information, and willful communication of classified communications intelligence information to an unauthorized person. Each of the charges carries up to 10 years in prison. Although the complaint was filed June 14, 2013, it wasn't made public until June 21, and an accompanying affidavit still remains under seal.

As noted, by Monday evening Moscow time, Snowden's whereabouts were unknown, after he failed to show for a Cuba-bound flight. "Edward Snowden not on Aeroflot flight to Havana. But a bunch of reporters are. (Bad news for them: it's dry)," tweeted the Guardian. Why skip the Cuba-bound flight? Legal experts said that if the plane's route took it over North American airspace, U.S. authorities could have compelled it to land. Then again, it could also have been a ruse intended to throw any pursuers off Snowden's tracks.

Regardless, an unnamed Aeroflot official told Interfax that Snowden was still in the airport's transit area. "Everything has been done to allow Snowden to spend the night peacefully at the airport's capsule hotel and to fly quietly to Cuba," according to the official.

Furthermore, Snowden may eventually take a chartered plane, since WikiLeaks has offered to fly him to a destination of his choice. "The WikiLeaks legal team and I are interested in preserving Mr. Snowden's rights and protecting him as a person," Baltasar Garzon, legal director of WikiLeaks -- and also Julian Assange's attorney -- said in a statement.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-3946
Published: 2014-04-24
Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.

CVE-2012-5723
Published: 2014-04-24
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.

CVE-2013-6738
Published: 2014-04-24
Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 before 1.2.0.0-CSI-SCALA-IF0003 allows remote attackers to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.

CVE-2014-2391
Published: 2014-04-24
The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 makes an improper decision about the sensitivity of a string representing a previously used but currently invalid password, which allows remote attackers to obtain potent...

CVE-2014-2392
Published: 2014-04-24
The E-Mail autoconfiguration feature in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 places a password in a GET request, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer log...

Best of the Web