Category Archives: Blog

What Bezos got when he bought the Washington Post

Posted on by
Reply

What Bezos got when he bought the Washington Post

The new purchaser of the Washington Post, Jeffrey Bezos of Amazon, has stated publicly that when he takes the Post private the newspaper will be a stand-alone business, separate from the company of which Bezos is CEO. Bezos has also assured Post employees that he is committed to quality journalism, even suggesting a new golden era at the Post. There is no reason to doubt the statements, but independence from Amazon is hardly the sole concern raised by this remarkable purchase.

Bezos

Consider the concerns raised by the equally remarkable material leaked by former NSA employee and Booz Allen Hamilton contractor Edward Snowden. While Snowden may not have carried “four laptops” laden with documents, as first reported, he left Booz Allen loaded with information, and what he turned over to the Washington Post, the Post now owns.

 

Snowden

Not that you can accuse the Post of bragging about it. The exact extent of material provided by Snowden to the Post has not been fully reported. The material may not even be catalogued, although there have been hints in print that it is secure.

Still, according to the Post’s own reporting, the NSA material includes information on the U.S. intelligence budget; extrajudicial killings in Pakistan; CIA investigation of applicants seeking jobs in the U.S. intelligence community; an estimated 4,000 recent NSA internal probes of staff activity; information about the investigation of the 2009 Detroit ‘underwear bomber’; “231 offensive cyber-operations” by U.S. intelligence in 2011; the GENIE program, where “U.S. computer specialists break into foreign networks so they can be put under surreptitious U.S. control”; major expansion of the CIA’s Information Operations Center (IOC); information on NSA bulk collection of hundreds of millions of Americans’ phone records under a program started in 2006; construction and expansion of NSA data storage facilities in Ft. Meade and Utah; the official “178-page budget summary for the National Intelligence Program,” which “details the successes, failures and objectives” of the intelligence community with its (reported) “107,035 employees”; and “cutting-edge technologies, agent recruiting and ongoing operations.” This in just a quick overview, with presumably more revelations to come.

And all of this invaluable material will now be owned by one man, Jeffrey Bezos. Or looking at it another way, the trove of material will no longer be owned by Post Company shareholders including the Graham family, and will be owned instead by the private company Bezos sets up, whose management will have corporate authority to call the shots on the foregoing. In short, Mr. Bezos now owns documents concerning NSA metadata.

 

Amazon book sales

Not to be accused of being anti-business, and in the interest of full disclosure, I should clarify that I am an Amazon customer myself. I am generally a fan of delivery in commerce, saving time, travel, traffic and the nation’s energy resources–UPS, eBay, Amazon, FedEx, etc. As such, I deplore Texas Governor Rick Perry’s slapping an 8.25 percent sales tax on online sales to Texas customers. So much for that anti-tax, anti-Big Brother, pro-‘growth’ Red State policy we hear so much about. EBay sellers have to stick on an extra eight-and-a-quarter-per-cent for customers in Texas.

Amazon’s service has been generally okay, if nothing to write home (to Texas) about. Amazon makes millions from selling books, and the process seems to be getting smoother. However, the company has been no help whatsoever for individual authors trying to track the sales of their books, when publishers fail to pay royalties owed under contract to their authors. Perhaps that will improve over time, but I have found what a company does in one direction to be a pretty accurate gauge of its quality in another. It is a reasonable working hypothesis, for example, that federal contractor Booz Allen’s faulty vetting of Snowden was not the company’s only lapse.* (For what it’s worth, Amazon Web Services partners with Booz Allen on ‘data science’ and ‘cloud infrastructure’, and Booz Allen has rolled out a cloud computing service using Amazon SQS elements.)

Speaking of intellectual property, Bezos is now also the proud owner of information about data encrypting by competitors Apple, Facebook, Google, Hotmail, Microsoft, and Yahoo. In other words, the CEO of Amazon now owns a trove of NSA information about Amazon’s top competitors.

The Washington Post is not Amazon, of course. But it is ironic that Bezos’ Amazon cut off services for Wikileaks in 2010 after Wikileaks’ famous document dump, mostly from recent years, and now Amazon’s CEO owns copious information on “data from American technology companies, including Google,” collected by PRISM. The Post reported September 6 that the NSA “has made great strides in foiling encryption techniques used to protect Internet communications, and has established back doors to some companies’ encryption software,” according to Snowden documents.

Encryption, NSA bring the world together

By the way, we now also know via Snowden and the Post that under the Corporate Partner Access Project, NSA has paid “hundreds of millions of dollars a year to U.S. companies for clandestine access to their communications networks.” Not all of the companies compensated are Amazon competitors, although some are. Presumably Amazon was not among those compensated.

One final note. It is intriguing that the above story has been so little reported, i.e. not at all. No one pointed out the Snowden acquisition when Bezos purchased the Washington Post. No one has pointed it out since, either, until this writing. Arguably the two biggest names in the Post’s orbit this year were, one, Snowden, and two, Bezos, and until now, no one has connected the two.

 

This lacuna may be the power of narrative–the arc of the story dominates its content. Two flamboyant stories, one about Snowden and the NSA, and the other about the sale of the Washington Post to the CEO of Amazon, have been completely two different and separate stories.

The stories were separate for me also, as a reader; reading about them separately, I was slow putting them together, although presumably the lawyers doing due diligence for the sale took them into account. Exact dates for the chronology of the newspaper sale have not been reported. Edward Snowden’s first releases came the first week of June; the Post went quietly on the market, or put out feelers, reportedly early this year. I for one cannot help wondering whether Snowden would have given his information to the Post if he had known the newspaper was going to be sold. He was not in a position to hire due diligence attorneys.

*We now know that the same contractor who vetted Snowden, USIS, also vetted Washington Navy Yard shooter Aaron Alexis.

 

Another Psychologically Troubled Individual with a Gun, another Military Contractor with Security Clearance

Posted on by
Reply

Another Psychologically Troubled Individual with a Gun, another Military Contractor with Security Clearance

What does it add up to? –another mass shooting, another crime at a federal facility, this time the U.S. Navy Yard in Washington, D.C.

 

Alexis

No need for lengthy soul-searching. The shooter had already been identified as psychologically troubled, before Monday’s mass killing. Aaron Alexis was displaying symptoms often associated with schizophrenia and had sought help. Several police stations were already acquainted with him.

A former Navy Petty Officer, he had been disciplined repeatedly for misconduct, leaving the Navy though remaining on the list as a reservist–honorably discharged under early-release, the service unable to general-discharge.

He had had several scrapes with the law, including at least two incidents involving guns–using firearms without need, shooting out the cars of a tire in Washington state and shooting into an upstairs neighbor’s apartment in Fort Worth, Texas.

As often happens, Alexis purchased his most recent guns in Virginia, hub of weapons commerce on the East Coast.

Thirteen people dead, including the shooter. Mental disease or defect, a pattern of erratic behavior, violent incidents including altercations involving shooting guns, military experience and clearance giving him access to a U.S. armed forces facility.

A danger to self and others.

And what do we do, presented with an individual like this? –Why, under the guidance of the cartel-supporting National Rifle Association, we do the obvious: we let him buy all the weapons he wants. Then the led-by-the-nose-by-the-NRA GOP screams ‘Obama’, or ‘government’, or ‘bureaucracy’, or whatever feeble CouldaShouldaWoulda it will use this time, conveyed by the silk-stocking law-lobbying firms its sponsors fund, to the ever-accepting dues-paying ignorant and resentful. The party line is getting thinner by the month, thinner with wear from every drearily predictable incident–but not necessarily thin enough to defeat every well-funded and highly hyped recall effort in every remote area in the U.S.

The only mystery about this mass shooting is why any respectable media outlet in America would pretend that the NRA has any credibility.

George Zimmerman killed an unarmed teen and got off

Posted on by
4

George Zimmerman killed an unarmed teen and got away with it

This is not a proud moment for American justice. Notwithstanding every effort to obscure the facts of the George Zimmerman case, the facts remain: an armed man, George Zimmerman, shot and killed Trayvon Martin, an unarmed teenager. And for this he was not even convicted on a manslaughter charge. He is walking free.

Zimmerman in court

Even with the racial disparities with which our justice system is still rife, and has been rife for years, the Zimmerman case is one for the history books. However reluctant juries are to convict in general–and it is no easy matter to send someone to jail–generally, in a case where someone ends up dead, a jury will be willing to convict on something. One can only hope that civil lawsuits for wrongful death could go better for the Martin family. In most states, states other than Florida, if you had only shot someone by pure accident, you would receive more legal sanctions than George Zimmerman has received. A parent who accidentally causes a child’s death by leaving the child in a locked car in hot weather, purely unintentionally, receives more sanctions. (Admittedly Casey Anthony walked after the death of her child, but then that was also in Florida.) A motorist who accidentally kills or injures a cyclist or a pedestrian gets more sanctions. A swimming pool owner gets sanctioned if a neighbor gets hurt in the pool. For that matter, suing swimming pool manufacturers is a whole sub-industry in law. Et cetera.

Conversely, if Trayvon Martin had (actually) gotten George Zimmerman’s gun away from him–and there is absolutely no evidence that he tried to do so–and had injured Zimmerman, and Zimmerman had then sued Martin in a civil case, a jury would likely have thrown out the case. (That’s assuming, of course, that race would not have unduly influenced the outcome in a civil suit.) Any good lawyer could make the argument that Zimmerman’s own actions had led to the event. Conversely again, if Trayvon Martin had had the gun (and within a year, that will be the prevailing representation, if the Zimmermans have their way) and Zimmerman had gotten it away from him, but had been injured, and had sued Martin, he could still have lost. Again, any good lawyer could argue that his own actions had led to the event. “You could have stayed in your vehicle. You could have called the police. You could have left . . .”

Where were those lawyers for the prosecution? Even if Zimmerman had been beaten by Trayvon Martin–and again, there is absolutely no evidence that he was–any good lawyer could make the argument that Zimmerman’s own actions had led to the event. He was the one following the other guy. Trayvon Martin’s phone conversation–recorded AT THE TIME–clearly indicates that he was alarmed at being followed.

Yet, after a sequence of events in which Zimmerman was the aggressor, he gets to claim ‘self-defense’? And television networks and cable channels back him up on the claim, by posing it as a fifty-fifty possibility in a multiple-choice quiz?

Who pulled the trigger? Who shot the gun? Who HAD the gun in the first place?

At the substantial risk of seeming to belabor the obvious, one unassailable fact remains: had Zimmerman really been intent on self-protection, he could have stayed in his vehicle.

Instead, he tells a story–inconsistent, shifting, and contradicted by recordings–and gets off. That’s all he has to do; tell a story. The living trump the dead, every time. Trayvon Martin never got to tell his side of the story.

Comparisons to Simi Valley and the beating of the late Rodney King do come to mind, but this is not to say that race is the only major factor in the Zimmerman case. All these years after O. J. Simpson was acquitted in the killings of his former wife, Nicole Brown, and her friend Ronald Goldman, I still think that the factor of race was overemphasized in commentary and in reporting on that infamous case. In that one, the elephant in the room was domestic violence. If two men had been killed, or Ron Goldman alone, the defendant (Simpson) would have been convicted for something. What threw the monkey wrench into the works, in the Simpson prosecution, was not the race difference between defendant and victims–contrary to what you might think, the defendant’s being African-American did not make him a shoo-in for acquittal–but the fact that one of the victims was Simpson’s ex-wife. Even people who should know better put domestic violence into a separate category from other violent crimes. This salient fact was not evident in media coverage at the time, which harped on race race race race race race.

In this one, the elephant in the room was a thoroughly under-qualified man’s being allowed to drive around armed to the teeth. In fact, George Zimmerman was not only allowed to drive around armed, and repeatedly to try to coordinate with law enforcement as part of an unauthorized patrolling activity, part of his self-identification as wannabe law enforcement; Zimmerman was allowed to follow an unarmed teenager–in his vehicle–while armed; and then to get out of his vehicle and to follow the same unarmed teenager on foot, while armed. “Shit, he’s getting away.” –and a bored, ignorant, unachieving guy, frustrated at the idea that he’ll just have to go home to dinner and television, won’t be able to make his cop, decides for absolutely no good reason to get out of his vehicle and follow Trayvon Martin on foot. And yet, when Zimmerman fatally shoots the unarmed teen, a jury of six women lets him off on any culpability whatsoever.

In any state with responsible gun laws, Zimmerman–with his questionable track record including brushes with the law–would not have been given a permit to carry in the first place. He was not a good candidate for gun ownership. Events have placed this statement beyond reasonable doubt.

But in Florida, as said, Zimmerman not only had the gun but carried it, not only carried it but used it. Not only used it but killed someone. Not only killed someone, but killed an unarmed teenager. And the Zimmerman camp, in his defense, did not even try to claim that the gun went off by accident.

And he still got off. This is basically the National Rifle Association defense: anything you do with a gun is okay. In previous decades–years ago–the NRA used to represent itself as standing for responsible gun ownership and responsible gun handling. But nowadays, all you have to do is line up the gun lobbyists and the gun crowd, and your defense is set in motion. During the belated legal process leading up to the trial, Zimmerman’s relatives and defense team were out in front with the news media, representing Zimmerman as the victim in the case, claiming on television that he was going to end up a vegetable if he did not shoot the unarmed teen he himself had been following, and doing everything they could to discredit the seventeen-year-old fatally shot–who was, by all accounts, walking peaceably in the rain back to his father’s place, and minding his own business at the time Zimmerman caught sight of him and began following him. The Zimmerman camp has made more of Trayvon Martin’s supposedly taking some martial-arts/wrestling classes than of Zimmerman’s carrying a 9-mm semi-automatic. In the last few days, Zimmerman’s attorney has publicly suggested that Zimmerman will not be safe, and the Zimmerman camp and allied media have joined to exhort elements of the public not to riot or whatever after the verdict, not to turn to violence, you see. In psychology this is known as projecting.

In the NRA defense, furthermore, not only is it okay to do anything you like with a gun, as long as you have one–that being the important point. If you pursue someone while armed, and the other person hits you, then you can present yourself as the victim, even if the other person is unarmed.

This is the classic definition of tyrannous behavior–the exercise of power beyond right.

Last birthday

The reason this nonsense worked in the Florida justice system is that the Florida justice system has been knuckling under to the NRA for decades. For Trayvon Martin, justice delayed was justice denied. All signs are that the shooting was initially just not taken seriously. Even a non-expert in law enforcement can see the sloppy way this fatality was treated, a few of which include the following:

  • the scene at the shooting was not secured; among other problems, it was trampled on by too many people
  • there was no continuous video recording of law enforcement activity at the scene of the shooting
  • Trayvon Martin’s seventeen-year-old body was not carefully, minutely and scrupulously examined, with the details of the examination continuously recorded
  • the body was not protected, to keep its medical evidence protected from the elements, from handling, and from passage of time
  • George Zimmerman was not thoroughly examined by medical professionals under the auspices of law enforcement, with continuous recording of the details of examinations

Zimmerman’s father was connected with the justice system. All Zimmerman had to do was claim injuries suffered at Martin’s hands–and decline to go to a doctor. No medical records, no rebuttal evidence. No adequate rebuttal, no conviction. This in spite of the obvious discrepancies in Zimmerman’s narrative throughout: as prosecutors pointed out, if Zimmerman was in fear for his own safety, it was odd for him to get out of his vehicle in the first place.

This is a set-up that automatically works to the advantage of the living over the dead.

It is also a dilatory and lackadaisical mode of law enforcement. Racial complacencies, yes; but also a passive-aggressive mode of dealing with any neighborhood conflict involving guns but not involving gangs.

“I have always thought the actions of men the best interpreters of their thoughts.” –John Locke

Rest in peace, Trayvon Martin (1995-2012)

Trayvon Martin

No, Zimmerman wasn’t beaten up

Posted on by
Reply

No, Zimmerman wasn’t beaten up.

George Zimmerman soon after

Why is the defense trying to maximize injuries that everyone can see were not extensive? Is there really a chance that any literate person believes Zimmerman was the victim here?

Again, not to sound too harsh, but if, underscore if, Zimmerman got punched in the nose, he deserved it. Has collective amnesia set in?

Recall:

  • Zimmerman was in his vehicle, watching Trayvon Martin, who was on foot.
  • Zimmerman followed Trayvon Martin, both in his vehicle and–after he got out–on foot. Trayvon Martin’s phone conversation is evidence that he was being followed.

Recall:

  • Zimmerman GOT OUT of his vehicle, to pursue Trayvon Martin, who was at the time walking back to his dad’s place, having walked to a convenience store.
  • Zimmerman got out of his vehicle even after being told by law enforcement that “we don’t need you to do that.”

Recall:

  • Zimmerman was armed.
  • Trayvon was unarmed.

Recall:

  • It was Zimmerman who was the older guy. Zimmerman was the adult; Trayvon Martin the teenager.
  • It was Zimmerman who was the bigger guy.

Recall:

  • It was Zimmerman who pursued Trayvon Martin, not the other way around.
  • It was Zimmerman who lighted on Martin, even phoning about Martin’s presence to authorities, although Martin had a perfect right to be where he was.

Recall:

  • It was Zimmerman who shot a weapon, not Trayvon Martin.
  • It was Martin who ended up killed, lying on the grass, with no sign on him of having been in an altercation anything like what Zimmerman and his family members have tried to represent.

There is not one iota of credible evidence that Zimmerman was in danger from Trayvon Martin. Had he been in danger from Martin, by the way, after accosting Martin and picking a fight, Martin would have been justified under the stand-your-ground  mindset in becoming dangerous.

On top of everything else, copious information has already shown that Zimmerman was a cop-wannabe, that he had vigilante tendencies; there is no question that he was riding around armed, though for what purpose has never been clarified.

And the defense is trying to make a big deal of Trayvon Martin’s having done some work in high school gym class?

Is this the thinnest defense since O. J. Simpson’s?

Of course George Zimmerman’s no commando

Posted on by
Reply

Of course, George Zimmerman, the cop- or security guard-wannabe, was no trained commando. Who said he was?

Zimmerman heads to court

It is to HLN’s credit that coverage of Zimmerman’s trial for shooting the unarmed Trayvon Martin can roll nearly full-footage. A relatively unfiltered perspective on what happens in the courtroom is a less accurate view than from inside the room, but it’s the next best thing.

Still, some byways of the over-all presentation in the trial come as a surprise. Or perhaps ‘smokescreen’ would be a better term.

Not to sound too harsh, but a pudgy guy can shoot a gun.

A pudgy, out of shape, overweight, soft, flabby martial-arts wannabe can both carry a gun–regrettably–and shoot one.

It is to be hoped that the defense in the Zimmerman case is not putting up a straw man, that is, knocking down the notion that Zimmerman was some kind of Michael Westen type–when no objective observer would argue either 1) that he was; or 2) that he needed to be.

I am all in favor of getting in shape. But exercising is neither necessary nor sufficient to turn somebody into a shooter.

Is a red herring alert needed?

On other matters touched on in the trial, I continue to believe that it was Trayvon Martin whose screams were caught on the painful tape recording. The voice was a teen’s. Unlike some other commentators, I don’t think it’s too close to call.

Defense does not seem to be unduly concerned with appealing to the jurors’ intelligence.

btw Michael Westen, of Burn Notice fame, is a fictional character.

BOOZ ALLEN ETC and the Washington Post

Posted on by
3

BOOZ ALLEN ETC and the Washington Post

 

The Washington Post has extensively covered Edward Snowden, the 29-year-old hacker hired by prime contractor Booz Allen Hamilton to work for the National Security Agency, who was given global access to online information that he then leaked. One question still unanswered, however, is how much material if any Snowden gave to the Post itself. Follow-up: what if anything does the Post have from Snowden, or from the NSA?

 

Future plans

According to the Guardian interview with Snowden, in the extensive June 9 article revealing Snowden’s identity, he had “copied the last set of documents he intended to disclose” three weeks earlier. Snowden then packed and boarded a plane for Hong Kong.

Questions for the press: Where are those documents? What is in them?

Snowden, as quoted in the Guardian interview, distinguishes himself from Daniel Ellsworth and Bradley Manning thus:

“”I carefully evaluated every single document I disclosed to ensure that each was legitimately in the public interest,” he said. “There are all sorts of documents that would have made a big impact that I didn’t turn over, because harming people isn’t my goal. Transparency is.””

The quoted statement comes in a long article written mostly in third-person paraphrase. Along with the previous question–what is on the documents Snowden turned over to the press?–it raises another. What is on the documents he has not disclosed?

 

Former Booz Allen executive and now DNI, testifying

Among the items of information paraphrased third person:

  • Snowden broke both his legs training in the U.S. Army Special Forces, at some time between 2003 and 2007
  • he then got his first NSA job, as a security guard in a covert NSA facility at the University of Maryland
  • “From there, he went to the CIA, where he worked on IT security.”
  • he rose quickly in the CIA because of his computer skills, without a high school diploma
  • “By 2007,” the CIA stationed him in Geneva, “with diplomatic cover”
  • in 2009 he went to work for a private contractor for NSA, on a military base in Japan

Edifice wrecks

It would be good to know the exact date on which Snowden began working for Booz Allen Hamilton. The company’s publicly released statement and news reports put it at about three months before Snowden leaked the NSA material–the company says “less than three months.” That would be early March, 2013. The Guardian’s first exclusive, based on contacts with Snowden, appeared June 5. In an online chat, Snowden subsequently said he had taken the Booz Allen job for the purpose of collecting proof of NSA surveillance activities.

“”My position with Booz Allen Hamilton granted me access to lists of machines all over the world the NSA hacked,” he told the [South China] Post on June 12. “That is why I accepted that position about three months ago.”

The surveillance license was approved on April 25. In other reports, The Guardian’s Glenn Greenwald and documentary film maker Laura Poitras began working with Snowden back in February 2013.

 

Poitras

Questions about the documents and other NSA material are by no means the only questions. They are just the biggest, the weirdest, and the most immediate elephant-in-the-room. What if anything is the Post sitting on? As a Washington Post subscriber and faithful reader, I would like to be alerted beforehand, if my paper plans to run a series based on primary sources from inside the NSA. I would think Post reporters not in the loop would be curious themselves. Where if anywhere is the Post housing these materials, if any? Who is responsible for them, if anyone? Are there backup copies, and if so, where? According to The Hindu, Snowden left carrying “four laptop computers.”

 

Further questions, as mentioned, are not as big–less global–but still intriguing. Here are a few, categorized for convenience into first, the question of particular fact, and second, the broader questions stemming from the fact.

Fact question one:

As we know, Reuters reported days ago that Booz Allen hired Snowden despite “discrepancies” on his resume. What were the discrepancies?

Broader question/s one:

Why is it not policy to deny a security clearance to any job applicant, anyone without exception, whose resume or job application contains “discrepancies”?  Has acceptance of middle-class, white-collar lying on the job gotten so broad that anything goes, even in high-level clearance work? Have four-plus years of relentless press trashing the national economy taken such a toll that no (white-collar) job can be denied or removed, even justifiably?

 

Fact question two:

Aside from the Booz Allen job, how long, exactly, had Snowden been working for or on NSA facilities? Snowden told the Guardian four years; NSA Director Keith Alexander testified to Congress that Snowden had held a position at the NSA for twelve months.

Broader question/s two:

Are there any safeguards in place [YES, FUNNY WAY TO START A QUESTION], so that red flags go up when a subcontractor jumps from job to job, especially in high-level clearance positions? Have the broader attacks on 1) company pensions and 2) “government jobs” taken such a toll nationally that job-jumping is now assumed to be a resume brightener, even in high-level clearance positions?

 

Fact question three:

How, exactly, did Snowden get his series of NSA jobs? Did he apply through regular channels? Was it through someone he knew? We already know that he was ‘vetted’ for Booz Allen by USIS. Who recommended him? Who if anyone were his references, for a string of six-figure high-level security jobs?

Broader question/s three:

Is there such a thing as ‘regular channels’ when you apply for a job as a security contractor for the NSA? Are there any protocols in place [YES, YES, I KNOW; FUNNY WAY TO BEGIN A QUESTION] applied uniformly to every applicant? Or are the hoops just something to be sidestepped, rather than jumped through, for someone who knows someone?

 

As both a U.S. citizen and a journalist, I am eager not to jump to conclusions. We have an ethical obligation to use our judgment to the best of our ability. I cannot see Snowden as either a ‘hero’ or a ‘traitor.’ I have no desire to see him hounded into prison or chased around the globe, let alone worse. There is far too much passive complicity at multiple levels in the quasi-private, excessively outsourced, limply ‘privatized’ intelligence-security realm that hired Snowden and basically bred him, to make him a person of interest in isolation.

Both as a person and a journalist, however, I cannot help being curious. As indicated in the previous posts, I continue to be curious about the multi-billion layers of private contracting–an ironic term, at this point–as well as about government surveillance. So questions will continue to arise.

Back to that press coverage. The Guardian, unlike the Washington Post, has published aptly on Booz Allen. See here and here and here, for example.

To be continued

 

BOOZ ALLEN ETC and subcontractors

Posted on by
Reply

BOOZ ALLEN ETC and subcontractors

 

Part of the fallout from the spectacular security breach at Booz Allen Hamilton itself–when its contractor Edward Snowden, hired at age 29 to monitor global classified security from inside a National Security Agency station in Hawaii, revealed the capabilities–is that the subcontractor who vetted Snowden for Booz Allen is being investigated.

Quis custodiet ipsos custodes?

Snowden

The subcontractor is northern-Virginia based US Investigations Services (USIS). The company is not connected to the federal United States Information Service. The USIS web site bills it as “the leader in federal background investigations.” From a recent media release comes this announcement that USIS has won a contract from the Department of Homeland Security:

“FALLS CHURCH, Va., – US Investigations Services Professional Services Division, Inc. (USIS PSD), a subsidiary of US Investigations Services, LLC (USIS), the largest commercial provider of background investigations to the federal government, has been awarded a prime contract by the Department of Homeland Security, U.S. Citizenship and Immigration Services (USCIS), to provide biometric capture services in support of applications for a variety of immigration benefits and U.S. citizenship. The indefinite-delivery/indefinite-quantity contract is for one base year with four one-year options and has a potential value of $889 million over a five-year period.”

More good news for immigrants. Further information on USIS, from the company:

“USIS provides services under more than 100 contracts. It is the largest commercial provider of background investigations to the federal government. It has more than 6,000 employees providing services in all 50 states and U.S. territories and overseas. USIS offers a variety of adjudication support, including background checks, litigation support, records support, investigative analytics and biometric services, as well as customized solutions that help government clients manage records, information and documents. Learn more at www.USIS.com.”

Also provided is the company’s statement on the June 20 Senate Homeland Security Subcommittee hearing–Yes, we are being investigated–but it was not about Snowden, at least not last year–Nobody knew about Snowden then, including us:

FALLS CHURCH, VA, June 20, 2013 — At a Senate hearing today, questions were raised as to whether USIS is under “criminal investigation.” USIS has never been informed that it is under criminal investigation. In January 2012, USIS received a subpoena for records from the U.S. Office of Personnel Management’s (OPM) Office of Inspector General (OIG). USIS complied with that subpoena and has cooperated fully with the government’s civil investigative efforts.

In the same Senate hearing, questions were raised as to whether USIS had conducted the initial background investigation, or a periodic reinvestigation, for the security clearance of Edward Snowden. USIS conducts thousands of background investigations annually for OPM and other government agencies. These investigations are confidential and USIS does not comment on them.”

The federal investigation into USIS itself was first reported by the Wall Street Journal:

“USIS, a Falls Church, Va., company owned by private-equity firm Providence Equity Partners LLC, has more than 7,000 employees and conducts 45% of OPM investigations done by contractors, officials said. Last year, USIS received $200 million for its work, Ms. McCaskill said.”

The Washington Business Journal faults lack of competition in contracting for problems:

“So what is this type of work worth? In 2011, USIS was awarded a multiyear contract by OPM to conduct background investigative fieldwork for government agencies. The estimated total value of the contract was about $2.45 billion over five years. And USIS held the same contract before that award.”

Bloomberg News blames the outsourcing on Al Gore:

“The revelation that Snowden disclosed two classified U.S. surveillance programs after being vetted by USIS may have damaged the company’s reputation and prompted questions about the wisdom of outsourcing security reviews.”

Olbermann on Countdown

Bloomberg has a point. I, for one, also blame Al Gore for firing Keith Olbermann from CurrentTV.

But I digress.

 

Tom Lehrer, mathematician, humorist and song writer

Moving away from humor, Sourcewatch, among other sites, noted much earlier that the company was involved in the 2004 assault on Fallujah, in Iraq, and in an investigation on the assault connected to the death of Col. Ted Westhusing in 2005.

The company that owns USIS, Providence Equity Partners LLC, focuses according to its web site and company filings on investing in “media, communications, education and information.” More information:

“Established in 1989, the firm pioneered a sector-based approach to private equity, convinced that a dedicated team of industry experts could build companies of enduring value in the dynamic communications industry. Guided by this commitment, we have led some of the most exciting and successful companies in our sectors, generating superior investment returns across economic cycles. Today, having invested in more than 130 companies over our 23-year history, Providence is one of the world’s premiere private equity firms and a dominant global franchise in the media, communications, education and information industries. . . .

Our team actively seeks investment opportunities on a global basis from offices in Providence, New York, London, Hong Kong, Beijing and New Delhi. We partner with companies across different stages in their development, from growth capital and complex recapitalizations of family-owned businesses to large buyouts and take-privates. We can employ a variety of financing structures and target equity investments of $150 million to $800 million. We prefer to lead our investments, serve on company boards, and work collaboratively with company management. From broadband to broadcast, music to film, wireline to wireless, publishing to Internet, we bring unparalleled industry, financial and operational expertise to each of our portfolio companies.”

Sounds secure, doesn’t it? Who would imagine that a global company, its offices around the world connected by thousands of electronic messages and transactions weekly, could have any problems–even indirect–with security breaches on its watch?

When again did satire die, exactly?

Among those companies is Altegrity, the parent company of USIS. Altegrity is among other things the holding company for Kroll Ontrack Inc. and London-based Kroll Advisory Solutions, spin-offs from the former Kroll Inc, which provided security services in Iraq. Kroll, like Booz Allen Hamilton with which it had significant interchange, was up to its eyeballs in boosting war with Iraq, a war for which it also helped prepare and from which it received substantial government contracting business. Kroll was previously owned by Marsh & McLennan, also involved both in boosting the invasion of Iraq and in Iraq war business once the war was underway. So once again–not to hammer a point that should be sufficiently obvious by now–we have security and investigation companies participating in monitoring, oversight, or investigation of what amounts to their own previous work. The companies, furthermore, having won government contracts for their previous work, are now winning government contracts to retrace the steps–so to speak–on a global scale.

 

Another company held by Altegrity, by the way, is HireRight, “the commercial employment screening business of Altegrity that serves more than 30,000 commercial customers in the U.S. and overseas, including more than 25 percent of the Fortune 500.”

 

It remains to be seen whether the vetting for those 30,000 commercial customers rises to the standard of the vetting that gave us Edward Snowden.

 

To be continued

 

BOOZ ALLEN ETC and the Silver Line

Posted on by
Reply

BOOZ ALLEN ETC and the Silver Line

In a possible sign of the times, Corporate Counsel reports that references to cyber-security in SEC filings have gone up in the past year. Citing a white paper by the business intelligence firm Intelligicize, the article also reports that cybersecurity is referred to as a risk factor more by telecommunications companies than by any other kind of company, followed by computer and online services. References to antibribery measures also have increased in SEC filings. The SEC, meanwhile, is doing its bit to encourage whistleblowers against corporate fraud and abuses by giving a financial incentive, the annual Dodd-Frank whistleblower award; this year, three awardees will receive 5 percent each of $7.5 million.

 

Snowden

The recent case of 29-year-old Edward Snowden, employed by a major government contractor, who wielded cyber intrusions on a global scale and then revealed them, is a reminder that there are, of course, other problems besides fraud. Particularly in the realm of cybersecurity, what can go wrong will go wrong. When major contractors such as Booz Allen become Too Big to Expose, get to call the shots, and get hired to police their own work, what can go wrong will get ludicrous.

 

Billed as a watering hole for Wall Streeters

The company that hired Snowden for government work, paid for with federal tax dollars, is nothing loath to proclaim its ties with government. Under the heading “Who [sic] We Serve,” the company touts–along with its service to “foreign military programs of U.S. allies”–its services to the federal government, civilian and military, and to private firms in health, energy and financial services. (Telecommunications are not itemized in this short summary, although they have been referenced elsewhere.) Mentioning more specifically the Intelligence Community, the company boasts that “We serve the Director of National Intelligence, Undersecretary of Defense for Intelligence, National Intelligence and Civil Agencies, and Military Intelligence.”

It also serves all branches of the armed forces:

Army: “Booz Allen supports the Army, Army Reserves, and Army National Guard across the entire scope of responsibilities.”

Navy: “We assist Navy organizations from the Office of the Secretary of the Navy and Chief of Naval Operations to the Navy operating commands and systems commands.”

Air Force: “Serving Air Force headquarters and every major command, we work in areas as diverse as special operations, aircraft certification and accreditation, airborne networks, and next-generation C4ISR systems—always with an eye for maximizing Air Force investments.”

“In a fast-changing world of new threats and mission requirements, we help the Air Force be ready for what’s next.”

Marines: “We also assist organizations throughout the Marine Corps, including Marine Corps Headquarters, Combat Development Command, Training and Education Command, Special Operations Command, and Systems Command.”

Under civilian agencies, “The professionals at Booz Allen help civilian government agencies tackle their most complex challenges, such as reforming financial regulatory oversight, evolving our healthcare system, improving information sharing and mission integration among law enforcement organizations, strengthening cybersecurity, improving energy efficiency, supporting green building initiatives, and implementing our nation’s Next Generation Air Transportation System.”

 

Again, the point of these reminders is not that the Booz Allen and Snowden flap is just business as usual. These are fertile fields for improvement. The less qualified echelons in the defense and security contracting world should never have become effectively ensconced in government in the first place. These are not the types who sit alone and quiet for a meditative twenty minutes at night, thinking, Now, what did I do that I could have done better? And How can we improve on this for next time?

Booz Allen, to focus on the current name in the news, has not been trolling for customers only in the federal government. As the Project for Government Oversight among others reminds, the company is a major contractor at all levels of government–federal, state, local. While the company’s revenue and personnel numbers are down somewhat, it is still riding high–in related news, its CEO got a 47 percent pay hike in the most recent year–and its executives serve on the boards of foundations and non-profits all over Washington.

Despite the company’s famous connectedness, I was struck by the extent to which the new Silver Line track in D.C.’s expanding Metrorail system will benefit Booz Allen. The northern Virginia company’s headquarters are at 8283 Greensboro Drive, where it leases from an REIT through 2016. The location, as noted by one eagle-eye real estate observer, “is less than 500 feet from the future Tyson’s Central 7 Metrorail station, due for completion in 2013.” Tyson’s 7, otherwise known as the Greensboro station on the D.C. Metro line, is part of Fairfax County’s Dulles Corridor Metrorail Project. The station, which will connect Tysons Corner and vicinity to Dulles Airport as well as to the rest of metro D.C., is slated to open by the end of 2013. I called Metro (MWATA) to find out whether a more exact timetable is available, but was told by the media office am told to call the Metropolitan Washington Airports Authority (MWAA). Metro says, “They have not given over that project to us,” and “we can’t comment on deadlines,” time frame, etc. Metro will be operating the station, as with the rest of the Silver Line. MWAA’s 16-member board, including Chairman and Vice Chairman, includes seven Virginia representatives, appointed by Gov. Robert F. McDonnell (after a contentious restructuring), three members appointed by the governor of Maryland, four by the mayor of D.C., and two by the White House. Ongoing controversies include continuing Virginia push-back against hiring union members to perform work on the Silver Line or on the Dulles Corridor Project in any way.

Silver Line track work

Members of the Metropolitan Washington Airports Authority board  include former GOP candidate for state senate in Virginia Caren Dewitt Merrick, also a member of the non-profit Women in Technology (WIT). Women in Technology hosted one of its ‘Meet the Company’ events last week in Vienna, Va. The company featured was Booz Allen Hamilton. Merrick’s husband, Philip Merrick, is chairman and co-founder of VisualCV, Inc. His former COO at VisualCV was Doug Meadows, now a senior associate at Booz Allen Hamilton. Another of MWAA’s Virginia appointees is Bruce A. Gates, a senior vice president at Altria Group, corporate parent of giant cigarette company Philip Morris. Booz Allen’s connections with Altria are too extensive to list, counting personnel, donations, corporate sponsorships and board memberships; both Booz Allen and Altria are also involved in the Aspen Institute among numerous similar networks. The Greensboro drive property where Booz Allen is located is owned by the Washington Real Estate Investment Trust (WRIT), which does its own extensive corporate shoulder-rubbing and which stands to benefit on its real estate investment once Booz Allen’s massive expansion and improvements are completed.

 

Plan

The benefits to Booz Allen from Metrorail’s expansion are too obvious to need belaboring. Company employees can take Metro to work–obviously a good thing in itself–and  company clients can visit more easily and quickly flying in via Dulles Airport, while company personnel can also leave ditto. (A future Edward Snowden will have the Silver Line for quick get-away.) The enhanced property values on which the company sits carry their own cachet. Meanwhile, the company will also have the benefit of additional convenience for the mammoth Tysons development area, and for D.C. and its Maryland suburbs. Construction of the Silver Line, and the Dulles Corridor Project itself, were issues of heated contention in Virginia for years. Ironically, many if not most of their political opponents were opposed on pro-‘business’ and pro-‘private enterprise’ grounds.

BOOZ ALLEN ETC Continued

Posted on by
Reply

BOOZ ALLEN ETC Continued

 

Again, the point of the reminders below is not that the more things change, the more they stay the same. The point is that previous lessons need to be re-learned. Next-to-the-top echelons in the defense and security contracting world, effectively ensconced in government, do not tend to head for the door when an administration changes. The recent news that 29-year-old Edward Snowden, employed by a major government contractor, wielded global cyber intrusions and then revealed them is another reminder that we are still dealing with the problems.

 

At home in Washington

The NSA contractor, of course, is Booz Allen Hamilton, the giant ex-spooks and black-hats company with government ties at federal, state and local levels. With Snowden, the company deviated from its strengths, hiring not an ex-spook but a future spook who seems to have decided he had gotten onto the wrong career path. Again ironically, in light of recent events, Booz Allen’s services include monitoring other surveillance programs. The recent predictable problems are now part of a well established track record.

 

Snowden

Take the 2006 flap over Booz Allen’s monitoring the SWIFT project. This, to recap briefly, was the George W. Bush administration’s examination of records of the Society for Worldwide Interbank Financial Telecommunication (SWIFT), headquartered in Belgium. The government eyeballing gave the Bush administration access to millions of financial messages per day involving payments, securities transactions, etc., between thousands of banks and other financial entities around the world. SWIFT touted its safety and security as a financial messaging system. (For what it’s worth, Booz Allen itself uses SWIFT.) Such financial surveillance being too much for Wall Street to stomach even from a super-friendly administration, uproar ensued. Thus Booz Allen was said to be monitoring it. This was less than reassuring, to Wall Street as well as to the ACLU (linked above), given the contractor’s numerous and profitable ties to the feds it was supposed to oversee.

 

Vox populi

The ties were pointed out again in 2011 by, among others, Anonymous. The notorious cyber vigilantes gleefully hacked–wait for it–Booz Allen, apparently with ease, getting access to among other things thousands of military emails. Here for fun is Anonymous‘ own take on the exploit:





"Hello Thar!


Today we want to turn our attention to Booz Allen Hamilton, whose core business is contractual work completed on behalf of the US federal government, foremost on defense and homeland security matters, and limited engagements of foreign governments specific to U.S. military assistance programs.




So in this line of work you’d expect them to sail the seven proxseas with a state- of-the-art battleship, right? Well you may be as surprised as we were when we found their vessel being a puny wooden barge.




We infiltrated a server on their network that basically had no security measures in place. We were able to run our own application, which turned out to be a shell and began plundering some booty. Most shiny is probably a list of roughly 90,000 military emails and password hashes (md5, non-salted of course!).




We also added the complete sqldump, compressed ~50mb, for a good measure. We also were able to access their svn, grabbing 4gb of source code. But this was deemed insignificant and a waste of valuable space, so we merely grabbed it, and wiped it from their system.”


No clarification yet on whether SWIFT or, for that matter, Booz Allen will be involved if complicated extradition proceedings get underway for Edward Snowden. But then exactly what material Snowden had access to in general has not been clarified–and presumably will not be. How much Snowden got from SWIFT specifically has also not been clarified. The footprint of the financial messaging service is large on the internet, given the nexus of the NSA, private contracting, and foreign policy. SWIFT was among the levers used against Iran.


 


Before SWIFT, there was TIP, or the Total Information Awareness program, run by Admiral John Poindexter, back in 2002. To recap very briefly, Booz Allen was also in this one up to the eyeballs (along with SAIC among others). The TIP or TIA program was short-lived because of the uproar–although one of its leading lights, Mike McConnell, stayed in the administration as George W. Bush’s second Director of National Intelligence, before returning to Booz Allen to serve as Senior Vice Chairman.


Summing up, ties between administrations and Booz Allen have been numerous and have been written about by a number of authors. The ties between Booz Allen, its brothers in arms in the contracting world, and the now-cyber-ghost-town PNAC, or Project for the New American Century, alone have been more than friendly. When PNAC-er Dov Zakheim left the Pentagon, in April 2004, he became a partner at Booz Allen. Former CIA director R. James Woolsey, another PNAC signatory, was a vice president at Booz Allen.


Thus signatories fervently bent, by their own hand, on war with Iraq rotated through the intelligence-security industry revolving door, to become part of a company frequently paid for monitoring intelligence and security work–including some of their own previous work.


The way a good corporate candidate for major contracts is chosen continues to baffle. One fundamental problem is the lack of protection against potential conflicts of interest. It is anomalous that a major military contractor and a major security contractor for the federal government could be given oversight or a supervisory role in surveillance conducted by the federal government. The potential conflict of interest is too large. Suppose, hypothetically, that the sifting through discloses some previous lapse by the contractor itself?


To be continued


 


					

		
		
	


				
					
	

		

						
BOOZ ALLEN ETC Continued

			
						

				Posted on   by  			

			
						

				Reply			

					


				

			
BOOZ ALLEN ETC Continued


 


The June 2013 news that Booz Allen Hamilton entrusted a 29-year-old disaffected cyber-geek with oxymoronic global secrets, stationed him in Hawaii, and placed him under the supervision apparently of his girlfriend, should come as a surprise. Instead it comes as part of a familiar pattern.


Ironies are too easy to find. To avoid belaboring the obvious, I’ll quote just one Booz Allen press release, this one from February 2013 headed “Booz Allen Hamilton Launches Cyber4Sight Threat Intelligence Services.” 


The gist:


“Booz Allen Hamilton today launched Cyber4Sight™ Threat Intelligence Services, which uses multiple data sources to identify and monitor an organization’s unique cyber security profile, determine its “attack surface,” and deploy military grade predictive intelligence to anticipate, prioritize and mitigate cyber threats 24/7. This anticipatory service produces real-time, practical indications and warnings so that commercial organizations can take defensive actions against cyber attacks long before they occur.”


Taking the PR statement at face value, one might be inclined to ask whether Booz Allen considered itself a commercial organization or whether “cyber attacks” include someone inside giving away the store. As said, too easy.


It’s the take-aways that matter. Among them, the following:


1) When you’re talking about the business of the U.S. government, every privatizing, off-shoring or outsourcing is potentially a security breach. This is particularly the case when the government contractors are extremely well-connected, and when the business involved–surveillance, cyber security, etc.–is extremely sensitive or top-secret. The potential intensifies when the contractor is a behemoth and starts to fall into the Too-Big-to-Expose category. These are not factors that enhance oversight, transparency and accountability. Anti-labor types should bear in mind that the ‘privatizing’ mindset that devalues loyalty in favor of big-bucks contracts opens the door to similar security breaches. As ever, when you work with a security firm, what’s on your computers is on their computers.


2) When people start thinking they are above or beyond the law, trouble looms. This principle should be obvious, maybe, but some obvious applications–as they say in R & D–seem not to have been developed. I am not talking so much about Edward Snowden here, as about the mentality that led his corporate employers to hire him. Snowden was not picked from a stack of resumes in Human Resources. He billed himself as special in ways that appeal to the anti-egghead echelon of executive leadership–a de-emphasis on time and labor, including time spent in school; a certain pride in skirting the rules or at least the guidelines, including valuable principles; and a devaluing of serious non-commercial education. Thus he walked in through a side door, figuratively located just the other side of Executive Men’s Toilet. They’re paying for it now.


3) Anti-‘government’ rhetoric is not a solution. ‘Small government’ types in certain circles are exactly the people building mega-billion corporate complexes, bulldozing the Bill of Rights at work and in the community, and then being breached in one way or another. In political circles and in finance circles and in military-and-security technology circles, ‘small government’ types are people simply asking for less supervision and more money for themselves, under the headings of ‘less government’ and ‘lower taxes.’ These are not people who tend to be reflective types, regularly questioning and examining their own motives, leaning over backward to give the other guy his due. Booz Allen Hamilton, one of the biggest contractors in Washington, benefiting from government at all levels–more on that later–donates copiously to politicians who shriek ‘less government’ and ‘lower taxes.’ “Smaller government”? From the corporate allies of our Chamber of Commerce? Typically they avidly solicit and receive contracts from Uncle Sam, to such an extent that the cyber-security sector has become one of the biggest harbors of corporate welfare.


4) Macho corporate swagger is not a solution. The bigger they come, the harder they fall. Not all of Booz Allen’s extensive ties in the intelligence community, the American military, civilian government agencies and beyond saved it from mistakes so elementary that, literally, many eighth-graders would have known enough to avoid them. The price of democracy is constant vigilance. That means not just state-of-the art technology, but a close eye on human values. Too much careerist games-playing is incompatible with genuine security.


These are all lessons repeatedly illustrated over recent decades and/or since the year 2000. The point, as previously written, is that previous lessons have not been learned thoroughly enough. The incoming Obama administration had a lot on its plate in January 2009, but it still needed to clean house thoroughly. Unfortunately, having ensconced private security and private ties to military capabilities in government at the highest levels, the national political establishment was little able to mitigate some of the problems.


Thus, as the Booz Allen press release has it,


“Today’s cyber threats are increasingly targeting corporations and governments to conduct industrial espionage, undermine business and financial operations and sabotage infrastructure. A perimeter defense alone is no longer sufficient protection–adversaries are too many, too fast and too sophisticated. Organizations need a new paradigm that combines real-time security resources with a rigorous method of mitigating cyber risks. Booz Allen has combined its deep functional cyber expertise from the intelligence community with its operational military experience to create Cyber4Sight.”


Potential ‘adversaries’ include, you might say, your own people who are less than entranced with many aspects of what you’re doing. Potentially that might encompass much of the United States population.


 


Going forward, there are questions to be addressed, humorous or otherwise:


Isn’t it possible to vet contractors to prevent giving more government contracts to–for example–a company with its own cyber-security problems?


Big Green


Is anyone moving to review Booz Allen Hamilton’s current federal contracts or other contracts, at least those involved with security, surveillance, or monitoring security or surveillance, etc?


Is anyone moving to reduce the shoulder-rubbing between government agencies and some of our extensively breached contractors?


State as well as federal


Back to that press release:


“Booz Allen’s Cyber4Sight provides clients–from banks to insurance companies to energy utilities–with anticipatory cyber threat intelligence that allows them to cultivate a proactive security posture, get ahead of an attack, assess risks and take appropriate actions to mitigate future attacks. Cyber4Sight combines the science of Big Data with the art of analysis and information gathering to give clients a holistic, forward-looking cyber security program. This service is the result of a significant multi-year investment Booz Allen has made to create an infrastructure that globally integrates data collection, aggregation and analysis and engages cyber analysts from a myriad of disciplines.”


Including high-school dropouts.


Leaving the Snowden matter aside–


As said before, due diligence should be routine in federal contracting. This is especially true in security. Aside from other measures, tightening up disclosure requirements for lobbying would help. It is not enough just to require ‘registered’ lobbyists to provide certain information. We need to require everyone who lobbies to ‘register.’


 


to be continued