A spy thriller from the DOJ…for free!
Instead of spending your hard-earned dollars loading your Kindle or iPad with fictional potboilers, head over to Scribd and download the Department of Justice Complaint vs. Russian spies (June 2010).
Why submit yourself to the tedium of ponderous DOJ prose? Aren’t such legal documents boring, repetitive, written in an esoteric English argot meant to confuse lay people? Yes, and this one is no exception. But it also contains fascinating and, at times, amusing insights into the people, scope, and technology of the long term embedding of Russian spies into the US.
Deployed by the SVR, Russia’s spook agency and successor to the fabled KGB, the wannabe saboteurs used carefully built American identities and led “unremarkable” lives. Their exact purpose isn’t clear from the DOJ story. They didn’t seem to be engaged in active spying, they appeared to have been planted “just in case”. This could be evidence of Russia’s very long view, of the SVR’s willingness to make investments for a distant future, or of a plan to build a support base for other agents. We won’t know for awhile, and may never know. The agents have pleaded guilty to activities other than spying, such as money laundering and using false identities…and now they’re gone, handed over in a Vienna trade, just like the Good Old Cold War days.
For us geeks, the amusing part is the collection of hackerdom gems contained in the DOJ file. From social engineering to ad-hoc WiFi networking, MAC-address filtering, steganography, and unsecured passwords, these supposedly “highly trained” individuals looked more like Keystone Spooks than Hollywood superspies.
A good example of social engineering is described when one of the culprits experiences unspecified software problems with a laptop. (Sound familiar? We’ll refrain from the easy jabs.) Enter an FBI agent passing as a Russian Consulate employee, “I’m here to help”, who borrows the laptop with a promise to fix the problem. The machine is broken into, fully explored, and yields a rich trove of unprotected files.
In another case, the Feds, while “inspecting” a home (legally, of course), find a password left in the open, helpfully written down on a plain piece of paper. More