U.S. investigating Cambridge Analytica: New York Times

FILE PHOTO: Window cleaners work outside the offices of Cambridge Analytica in central London, Britain, March 24, 2018. REUTERS/Peter Nicholls/File Pho

WASHINGTON (Reuters) – The U.S. Justice Department and the FBI are investigating Cambridge Analytica, a now-defunct political data firm embroiled in a scandal over its handling of Facebook Inc user information, the New York Times reported on Tuesday.

Prosecutors have sought to question former Cambridge Analytica employees and banks that handled its business, the newspaper said, citing an American official and others familiar with the inquiry,

Cambridge Analytica said earlier this month it was shutting down after losing clients and facing mounting legal fees resulting from reports the company harvested personal data about millions of Facebook users beginning in 2014.

Allegations of the improper use of data for 87 million Facebook users by Cambridge Analytica, which was hired by President Donald Trump’s 2016 U.S. election campaign, have prompted multiple investigations in the United States and Europe.

The investigation by the Justice Department and FBI appears to focus on the company’s financial dealings and how it acquired and used personal data pulled from Facebook and other sources, the Times said.

Investigators have contacted Facebook, according to the newspaper.

The FBI, the Justice Department and Facebook declined to comment to Reuters. Former officials with Cambridge Analytica was not immediately available to comment.

Cambridge Analytica was created around 2013, initially with a focus on U.S. elections, with $15 million in backing from billionaire Republican donor Robert Mercer and a name chosen by future Trump White House adviser Steve Bannon, the New York Times has reported. Bannon left the White House on August 2017.

(Reporting by Eric Beech; Editing by Peter Cooney)

Trump says Syria attack ‘could be very soon or not so soon’

FILE PHOTO - The U.S. Navy Arleigh Burke-class guided-missile destroyer USS Donald Cook sails in the Bosphorus strait in Istanbul, Turkey August 28, 2015. REUTERS/Yoruk I

By Guy Faulconbridge and Vladimir Soldatkin

WASHINGTON/LONDON/MOSCOW (Reuters) – Fears of a military confrontation between Russia and the West ran high on Thursday but U.S. President Donald Trump cast doubt over the timing of his threatened strike on Syria in response to a reported poison gas attack on a rebel enclave.

“Never said when an attack on Syria would take place. Could be very soon or not so soon at all!” said Trump in his latest early morning tweet.

That appeared a day after he tweeted that missiles “will be coming” after the April 7 chemical weapons attack alleged to have killed dozens of people, and lambasted Moscow for standing by Syrian President Bashar al-Assad.

Prime Minister Theresa May prepared to convene a special cabinet meeting at 1430 GMT to weigh whether Britain should join the United States and France in a possible military action.

May recalled ministers from their Easter holiday to debate action over what she has cast as a barbaric poison gas attack by Syrian government forces on civilians in the formerly rebel-controlled town of Douma, just east of the capital Damascus.

There were signs, though, of a global effort to head off a dangerous conflict pitting Russia against the West. The Kremlin said a crisis communications link with the United States, created to avoid an accidental clash over Syria, was in use.

“The situation in Syria is horrific, the use of chemical weapons is something the world has to prevent,” Britain’s Brexit minister David Davis said on Thursday morning.

“But also it’s a very, very delicate circumstance and we’ve got to make this judgment on a very careful, very deliberate, very well thought-through basis.”

French President Emmanuel Macron said he would decide whether to strike Syrian government targets after the reported attack by internationally banned chemical munitions in Douma once all the necessary information had been gathered.

“We will need to take decisions in due course, when we judge it most useful and effective,” Macron said, adding that all the necessary verifications had to be carried out first.

He said he would also strive to prevent an escalation of conflict across the Middle East.

A girl looks on following alleged chemical weapons attack, in what is said to be Douma, Syria in this still image from video obtained by Reuters on April 8, 2018. White Helmets/Reuters TV via REUTERS

A girl looks on following alleged chemical weapons attack, in what is said to be Douma, Syria in this still image from video obtained by Reuters on April 8, 2018. White Helmets/Reuters TV via REUTERS

SYRIA “MOVES TARGETS”

At the eye of the storm, Assad said any Western action “will contribute nothing but an increase in instability in the region, threatening international peace and security”, Syrian state television reported.

Russia, Assad’s most important ally in his seven-year-old war with rebels, said it had deployed military police in Douma on Thursday after the town was taken over by government forces.

“They are the guarantors of law and order in the town,” RIA news agency quoted Russia’s defence ministry as saying.

Syria’s military has repositioned some air assets to avoid fallout from possible missile strikes, U.S. officials told Reuters on Wednesday.

Syria’s attempt to shelter aircraft, perhaps by locating them alongside Russian military hardware that Washington might be reluctant to hit, could limit damage that the United States and its allies might be able to inflict on Assad’s military.

World stocks edged down as anxious investors stayed wary of risky assets.

U.S. Defense Secretary Jim Mattis, striking a cautious tone after Trump’s threat of missile strikes, said on Wednesday the United States was still assessing intelligence about the suspected toxic gas attack.

Both Syria and Russia have said reports of the attack were fabricated by rebels and rescue workers in Douma and have accused the United States of seeking to use it as a pretext to attack the government.

The Russian military said it had observed movements of U.S. Navy forces in the Gulf. Any U.S. strike would probably involve the navy, given the risk to aircraft from Russian and Syrian air defences. A U.S. guided-missile destroyer, the USS Donald Cook, is in the Mediterranean.

Moscow’s ambassador to Lebanon, Alexander Zasypkin, warned on Wednesday that any U.S. missiles fired at Syria would be shot down and the launch sites targeted.

The Syrian conflict has increasingly widened the rifts between Moscow, Washington and European powers and inflamed the bitter rivalries that run across the Middle East.

ISRAELI AIR STRIKE

Syria, Iran and Russia say Israel was behind an air strike on a Syrian air base on Monday that killed seven Iranian military personnel, something Israel has neither confirmed nor denied.

Russian President Vladimir Putin spoke to Israeli Prime Minister Benjamin Netanyahu by phone on Wednesday and urged him to do nothing to destabilize Syria. Netanyahu’s office said: “The prime minister reiterated that Israel will not allow Iran to establish a military presence in Syria.”

Ali Akbar Velayati, a top adviser to Iran’s Supreme Leader Ali Khamenei, said the Western threats were “based on lies” about the poison gas assault, after meeting Assad.

Turkish President Tayyip Erdogan said he had spoken to Trump on Wednesday and would speak to Putin on Thursday night about the chemical attack.

German Foreign Minister Heiko Maas said Berlin wanted to be consulted before any Western military action. “It’s important at the same time to maintain pressure on Russia,” he said. “If we want to do that, we the Western partners cannot diverge in our approaches.”

May has ordered British submarines to move within missile range of Syria in readiness for strikes against the Syrian military that could begin as early as Thursday night, London’s Daily Telegraph newspaper said on Wednesday.

The BBC reported that May was ready to give the go-ahead for Britain to take part in military action. She would not seek approval from parliament, the BBC said, despite calls from the opposition Labour Party for parliament to be given a say.

Parliament voted down British military action against Assad’s government in 2013 in an embarrassment for May’s predecessor, David Cameron. That then deterred the U.S. administration of Barack Obama from similar action.

British Minister Davis said his decision then to vote against action was based on a lack of clear evidence and a lack of a clear plan. “Those two things, I’m assured, we will get an answer to today,” he said of Thursday’s cabinet meeting.

(Additional reporting by Angus McDowall in Beirut, William James in London,; Andrew Osborn in Moscow and John Irish in Paris, Graham Fahy in Dublin; Writing by Andrew Roche; Editing by Mark Heinrich)

Facebook says data leak hits 87 million users, widening privacy scandal

FILE PHOTO: Silhouettes of mobile users are seen next to a screen projection of Facebook logo in this picture illustration taken March 28, 2018. REUTERS/Dado Ruvic/Illustration/File photo

By David Ingram

 

By David Ingram

SAN FRANCISCO (Reuters) – Facebook Inc said on Wednesday the personal information of up to 87 million users, mostly in the United States, may have been improperly shared with political consultancy Cambridge Analytica, up from a previous news media estimate of more than 50 million.

Chief Executive Mark Zuckerberg said in a conference call with reporters that Facebook had not seen “any meaningful impact” on usage or ad sales since the scandal, although he added, “it’s not good” if people are unhappy with the company.

Shares rose more than 3 percent after the bell.

Zuckerberg told reporters that he accepted blame for the data leak, which has angered users, advertisers and lawmakers, while also saying he was still the right person to head the company he founded.

“When you’re building something like Facebook that is unprecedented in the world, there are going to be things that you mess up,” Zuckerberg said, adding that the important thing was to learn from mistakes.

He said he was not aware of any discussions on the Facebook board about him stepping down, although directors would face a challenge if they wanted to oust him because Zuckerberg is the controlling shareholder.

He said he had not fired anyone over the scandal and did not plan to. “I’m not looking to throw anyone else under the bus for mistakes that we made here,” he said.

Facebook first acknowledged last month that personal information about millions of users wrongly ended up in the hands of Cambridge Analytica.

Zuckerberg will testify about the matter next Tuesday and Wednesday during two U.S. congressional hearings.

London-based Cambridge Analytica, which has counted U.S. President Donald Trump’s 2016 campaign among its clients, disputed Facebook’s estimate of affected users. On Wednesday it said on Twitter it had received no more than 30 million records from a researcher it hired to collect data about people on Facebook.

Zuckerberg, on the call with reporters, said Facebook should have done more to audit and oversee third-party app developers like the one that Cambridge Analytica hired in 2014.

“Knowing what I know today, clearly we should have done more,” he said.

Facebook was taking steps to restrict which personal data is available to third-party app developers, he said, and it might take two more years to fix Facebook’s problems.

“We’re broadening our view of our responsibility,” Zuckerberg said.

Most of the up to 87 million people whose data was shared with Cambridge Analytica were in the United States, Facebook Chief Technology Officer  Mike Schroepfer wrote in a blog post.

Shares in Facebook closed down 0.6 percent on Wednesday to $155.10. They have tumbled more than 16 percent since the Cambridge Analytica scandal broke.

The previous estimate of more than 50 million Facebook users affected by the data leak came from two newspapers, the New York Times and London’s Observer, based on their investigations of Cambridge Analytica.

Zuckerberg said Facebook came to the higher estimate by looking at the number of people who had downloaded a personality quiz app created by Cambridge University academic Aleksandr Kogan, or about 270,000 people, and then adding in the number of friends they had.

Cambridge Analytica has said that it engaged Kogan “in good faith” to collect Facebook data in a manner similar to how other third-party app developers have harvested personal information.

The scandal has kicked off investigations by Britain’s Information Commissioner’s Office, Australia’s Privacy Commissioner and the U.S. Federal Trade Commission and by some 37 U.S. state attorneys general.

Nigeria’s government will investigate allegations of improper involvement by Cambridge Analytica in that country’s 2007 and 2015 elections, a presidency spokesman said on Monday.

(Reporting by David Ingram in San Francisco; Additional reporting by Arjun Panchadar in Bengaluru, Eric Auchard in London and Tom Westbrook in Sydney; Editing by Lisa Shumaker and Clarence Fernandez)

FBI chief calls unbreakable encryption ‘urgent public safety issue’

FILE PHOTO: FBI Director Christopher Wray delivers remarks to a graduation ceremony at the FBI Academy on the grounds of Marine Corps Base Quantico in Quantico, Virginia, U.S. December 15, 2017.

By Dustin Volz

NEW YORK (Reuters) – The inability of law enforcement authorities to access data from electronic devices due to powerful encryption is an “urgent public safety issue,” FBI Director Christopher Wray said on Tuesday as he sought to renew a contentious debate over privacy and security.

The Federal Bureau of Investigation was unable to access data from nearly 7,800 devices in the fiscal year that ended Sept. 30 with technical tools despite possessing proper legal authority to pry them open, a growing figure that impacts every area of the agency’s work, Wray said during a speech at a cyber security conference in New York.

The FBI has been unable to access data in more than half of the devices that it tried to unlock due to encryption, Wray added.

“This is an urgent public safety issue,” Wray added, while saying that a solution is “not so clear cut.”

Technology companies and many digital security experts have said that the FBI’s attempts to require that devices allow investigators a way to access a criminal suspect’s cellphone would harm internet security and empower malicious hackers. U.S. lawmakers, meanwhile, have expressed little interest in pursuing legislation to require companies to create products whose contents are accessible to authorities who obtain a warrant.

Wray’s comments at the International Conference on Cyber Security were his most extensive yet as FBI director about the so-called Going Dark problem, which his agency and local law enforcement authorities for years have said bedevils countless investigations. Wray took over as FBI chief in August.

The FBI supports strong encryption and information security broadly, Wray said, but described the current status quo as untenable.

“We face an enormous and increasing number of cases that rely heavily, if not exclusively, on electronic evidence,” Wray told an audience of FBI agents, international law enforcement representatives and private sector cyber professionals. A solution requires “significant innovation,” Wray said, “but I just do not buy the claim that it is impossible.”

Wray’s remarks echoed those of his predecessor, James Comey, who before being fired by President Donald Trump in May frequently spoke about the dangers of unbreakable encryption.

Tech companies and many cyber security experts have said that any measure ensuring that law enforcement authorities are able to access data from encrypted products would weaken cyber security for everyone.

U.S. officials have said that default encryption settings on cellphones and other devices hinder their ability to collect evidence needed to pursue criminals.

The matter came to a head in 2016 when the Justice Department tried unsuccessfully to force Apple Inc to break into an iPhone used by a gunman during a mass shooting in San Bernardino, California.

The Trump administration at times has taken a tougher stance on the issue than former President Barack Obama’s administration. U.S. Deputy Attorney General Rod Rosenstein in October chastised technology companies for building strongly encrypted products, suggesting Silicon Valley is more willing to comply with foreign government demands for data than those made by their home country.

(Reporting by Dustin Volz; Editing by Will Dunham)

Trump, in tweets, defends his sharing of information with Russians

FILE PHOTO: A combination of file photos showing Russian Foreign Minister Sergei Lavrov attending a news conference in Moscow, Russia, November 18, 2015, and U.S. President Donald Trump posing for a photo in New York City, U.S., May 17, 2016. REUTERS/Maxim Zmeyev/Lucas Jackson/File Photos

WASHINGTON (Reuters) – U.S. President Donald Trump on Tuesday defended his decision to disclose information to Russian officials during a White House meeting last week, saying he had an “absolute right” to share “facts pertaining to terrorism and airline flight safety.”

The president took to Twitter to counter a torrent of criticism, including from his fellow Republicans, after reports that he had revealed highly classified information about a planned Islamic State operation.

Two U.S. officials said Trump shared the intelligence, supplied by a U.S. ally in the fight against the militant group, with Russian Foreign Minister Sergei Lavrov and Russian Ambassador Sergei Kislyak during a meeting last Wednesday.

The disclosures late on Monday roiled the administration as it struggled to move past the backlash over Trump’s abrupt firing of FBI Director James Comey, who was investigating the president’s ties to Russia.

The turmoil overshadowed Republican legislative priorities such as healthcare and tax reform and laid bare sharp divisions between the White House and U.S. intelligence agencies, which concluded late last year that Russia had tried to influence the 2016 presidential election in Trump’s favor.

Russia has denied such meddling, and Trump bristles at any suggestion he owed his Nov. 8 victory to Moscow.

“As President I wanted to share with Russia (at an openly scheduled W.H. meeting) which I have the absolute right to do, facts pertaining to terrorism and airline flight safety,” Trump said on Twitter. “Humanitarian reasons, plus I want Russia to greatly step up their fight against ISIS & terrorism.”

Trump weighed in personally the morning after his secretary of state, Rex Tillerson, and national security adviser, H.R. McMaster, issued statements saying no sources, methods or military operations were discussed at the Russian meeting.

McMaster said the story, initially reported by the Washington Post, was false.

The U.S. officials told Reuters that while the president has the authority to disclose even the most highly classified information at will, in this case he did so without consulting the ally that provided it, which threatens to jeopardize a long-standing intelligence-sharing agreement.

Bob Corker, the Republican head of the Senate Foreign Relations Committee, called the allegations “very, very troubling.”

“Obviously, they’re in a downward spiral right now,” he said on Monday, “and they’ve got to come to grips with all that’s happening.”

(Reporting by Susan Heavey, Doina Chiacu, Patricia Zengerle, Jeff Mason, Mark Hosenball; Editing by Chizu Nomiyama and Lisa Von Ahn)

NSA contractor indicted over mammoth theft of classified data

NSA HQ

By Dustin Volz

(Reuters) – A former National Security Agency contractor was indicted on Wednesday by a federal grand jury on charges he willfully retained national defense information, in what U.S. officials have said may have been the largest heist of classified government information in history.

The indictment alleges that Harold Thomas Martin, 52, spent up to 20 years stealing highly sensitive government material from the U.S. intelligence community related to national defense, collecting a trove of secrets he hoarded at his home in Glen Burnie, Maryland.

The government has not said what, if anything, Martin did with the stolen data.

Martin faces 20 criminal counts, each punishable by up to 10 years in prison, the Justice Department said.

“For as long as two decades, Harold Martin flagrantly abused the trust placed in him by the government,” said U.S. Attorney Rod Rosenstein.

Martin’s attorney could not immediately be reached for comment.

Martin worked for Booz Allen Hamilton Holding Corp when he was taken into custody last August.

Booz Allen also had employed Edward Snowden, who leaked a trove of secret files to news organizations in 2013 that exposed vast domestic and international surveillance operations carried out by the NSA.

The indictment provided a lengthy list of documents Martin is alleged to have stolen from multiple intelligence agencies starting in August 1996, including 2014 NSA reports detailing intelligence information “regarding foreign cyber issues” that contained targeting information and “foreign cyber intrusion techniques.”

The list of pilfered documents includes an NSA user’s guide for an intelligence-gathering tool and a 2007 file with details about specific daily operations.

The indictment also alleges that Martin stole documents from U.S. Cyber Command, the CIA and the National Reconnaissance Office.

Martin was employed as a private contractor by at least seven different companies, working for several government agencies beginning in 1993 after serving in the U.S. Navy for four years, according to the indictment.

His positions, which involved work on highly classified projects involving government computer systems, gave him various security clearances that routinely provided him access to top-secret information, it said.

Unnamed U.S. officials told the Washington Post this week that Martin allegedly took more than 75 percent of the hacking tools belonging to the NSA’s tailored access operations, the agency’s elite hacking unit.

Booz Allen, which earns billions of dollars a year contracting with U.S. intelligence agencies, came under renewed scrutiny after Martin’s arrest was revealed last October. The firm announced it had hired former FBI Director Robert Mueller to lead an audit of its security, personnel and management practices.

A Booz Allen spokeswoman did not have an immediate comment on Martin’s indictment.

Martin’s initial appearance in the U.S. District Court of Baltimore was scheduled for next Tuesday, the Justice Department said.

(Reporting by Dustin Volz in Washington and Jonathan Stempel in New York; editing by Jonathan Oatis and Phil Berlowitz)

15 Million T-Mobile Customers’ Data Stolen by Hackers

The credit bureau Experian experienced a data breach, revealing user data from approximately 15 million T-Mobile customers.

The data gathered by the hackers included names, addresses, birth dates, and Social Security numbers along with other forms of identification like driver’s’ license numbers. According to T-Mobile, the hackers were not able to get payment information or bank account information.

People affected by the hack may not be current T-Mobile customers. The companies announced that customers who applied for T-Mobile postpaid services or device financing between September 1, 2013 and September 16, 2015 were the ones who could be victims of the hack.

Experian stated in a press release that no evidence has been presented so far that the data has been used illegally or inappropriately. Experian is a widely used credit-information provider that has experienced several security concerns; the T-Mobile hack is just the latest incident. The last cyberattack on Experian was in 2012 when 200 million Americans had their Social Security numbers exposed.

T-Mobile CEO John Legere had strong feelings regarding the breach and said that his company would be looking for a new and more secure service provider.

“Obviously I am incredibly angry about this data breach and we will institute a thorough review of our relationship with Experian,” but the carrier’s top concern now is helping the people affected, Legere wrote in an open letter on T-Mobile’s site.

Experian North America stated in a notice that it was a business unit that had been compromised, and its consumer credit bureau wasn’t affected. Experian has notified international and U.S. law enforcement.

T-Mobile is now offering free credit monitoring identity resolution services from ProtectMyID for the next two years for their customers that think they may have been affected by the breach. ProtectMyID is a division of Experian.

The breach at Experian is the latest in a string of massive hacks that have claimed tens of millions of customer records. The U.S. Office of Personnel experienced a major hack earlier this year, JPMorgan Chase had a breach of data in 2014, and large retailer, Target, had a major cyberattack on their cash register systems in 2013.