British SIGINT agency criticized for ‘vanity project’ that went 83% over budget

November 20, 2020 by Leave a comment

GCHQBRITAIN’S SIGNALS INTELLIGENCE AGENCY has been severely criticized in a report for undertaking a pointless “vanity project” that exceeded its allocated funds by 83 percent and needlessly cut into its operational budget. The agency, known as the Government Communications Headquarters (GCHQ) is responsible for collecting signals intelligence (SIGINT) and protecting the information systems of the British government and Armed Forces.

In 2015, the country’s Conservative government announced the establishment of the National Cyber Security Centre (NCSC), under the GCHQ, whose mission would be to protect Britain from cyber-espionage, cyber-terrorism and cyber-sabotage, among other cyber-security goals. Soon after the announcement was made, the then-Chancellor of the Exchequer, George Osborne, appointed a planning committee whose chief priority was to decide where to house the NCSC. The decision was made to house it in London, rather than the GCHQ’s Cheltenham base in southwestern England, so as to place it in close proximity to government and business centers.

But the planning committee rejected an initial plan to house the NCSC in Canary Wharf, one of London’s primary business districts, located on the Isle of Dogs. The reasons were that Canary Wharf is not close to the Palace of Westminster —Britain’s seat of government— and that Canary Wharf would be “very unpopular” with NCSC personnel. Instead, the committee chose Nova South, a luxury building situated near London’s Victoria station, which is one of the world’s most expensive urban areas. The government’s National Security Adviser, Mark Lyall Grant, rejected the Nova South option, arguing it would be too costly without adding any real benefits to the NCSC’s operations. But in May of 2016 Osborne overruled Grant’s decision and unilaterally decided to house the NCSC at Nova South.

Now a report (.pdf) from the British Parliament’s Intelligence and Security Committee has described Osborne’s role in the decision-making process as “highly unsatisfactory”, and his choice to house the NCSC at Nova South as “unacceptable”. According to the report, Osborne viewed the NCSC’s location as “a pet project” that prioritized image over cost and operational effectiveness. The result was that the NCSC housing project “considerably over-shot the funds originally allocated”, by over 80 percent. What is worse, according to the report, the money shortfall has been affecting the GCHQ’s operational budget by nearly £3 million ($4 million) a year since 2016.

Author: Joseph Fitsanakis | Date: 20 November 2020 | Permalink

Filed under Expert news and commentary on intelligence, espionage, spies and spying Tagged with , , , ,

Britain sees Russian government hackers behind Islamic State cyber group

October 5, 2018 by Leave a comment

Cyber CaliphateA new report by the British government alleges that the so-called ‘Cyber Caliphate’, the online hacker wing of the Islamic State, is one of several supposedly non-state groups that are in fact operated by the Russian state. The group calling itself Cyber Caliphate first appeared in early 2014, purporting to operate as the online wing of the Islamic State of Iraq and Syria (ISIS), which was later renamed Islamic State. Today the Cyber Caliphate boasts a virtual army of hackers from dozens of countries, who are ostensibly operating as the online arm of the Islamic State. Their known activities include a strong and often concentrated social media presence, as well as computer hacking, primarily in the form of cyber espionage and cyber sabotage.

But an increasing number of reports, primarily by Western government agencies, have claimed in recent years that the Cyber Caliphate is in fact part of a Russian state-sponsored operation, ingeniously conceived to permit Moscow to hack Western targets without retaliation. On Wednesday, a new report by Britain’s National Cyber Security Centre (NCSC) described the Cyber Caliphate and other similar hacker groups as “flags of convenience” for the Kremlin. The report was authored by the NCSC in association with several British and European intelligence agencies. American spy agencies, including the National Security Agency and the Federal Bureau of Investigation, also helped compile the report, according to the NCSC. The report names several hacker groups that have been implicated in high-profile attacks in recent years, including Sofacy, Pawnstorm, Sednit, Cyber Berkut, Voodoo Bear, BlackEnergy Actors, Strontium, Tsar Team, and Sandworm. Each of these, claims the NCSC report, is “an alias of the Main Directorate of the General Staff of Russia’s Armed Forces”, more commonly known as the GRU. The report concludes that Cyber Caliphate is the same hacker group as APT 28, Fancy Bear, and Pawn Storm, three cyber espionage outfits that are believed to be online arms of the GRU.

The NCSC report echoes the conclusion of a German government report that was leaked to the media in June of 2016, which argued that the Cyber Caliphate was a fictitious front group created by Russia. In 2015, a security report by the US State Department concluded that despite the Cyber Caliphate’s proclamations of connections to the Islamic State, there were “no indications —technical or otherwise— that the groups are tied”. In a statement issued alongside the NCSC report on Wednesday, Britain’s Secretary of State for Foreign and Commonwealth Affairs, Jeremy Hunt, described the GRU as Moscow’s “chosen clandestine weapon in pursuing its geopolitical goals”. The Russian government has denied these allegations.

Author: Ian Allen | Date: 05 October 2018 | Permalink

Filed under Expert news and commentary on intelligence, espionage, spies and spying Tagged with , , , , , , , , , ,

New report details one of history’s “largest ever” cyber espionage operations

April 5, 2017 by Leave a comment

GCHQ center in Cheltenham, EnglandA new report authored by a consortium of government and private organizations in Britain has revealed the existence of a computer hacking operation, allegedly based in China, that is said to be “one of the largest ever” such campaigns globally. The operation is believed to have compromised sensitive information from an inestimable number of private companies in Southeast Asia, Europe and the United States. The report was produced by a consortium of public and private organizations, including BAE systems and the London-based National Cyber Security Centre, an office of the United Kingdom’s signals intelligence agency, the Government Communications Headquarters. It details the outcome of Operation CLOUD HOPPER, which was launched to uncover the cyber espionage activities.

According to the report, the attacks were first launched several years ago against targets in Japan’s government and private sector. But after 2016, they spread to at least 14 other countries, including France, the United Kingdom and the United States. It is claimed that the attacks are “highly likely” to originate from China, given that the targets selected appear to be “closely aligned with strategic Chinese interests”. The authors of the report have named the hacker group APT10, but provide limited information about its possible links —or lack thereof— with the Chinese government.

The report claims that APT10 uses specially designed malware that is customized for most of their targets, thus constituting what experts describe as “spear fishing”. Past successful attacks have already resulted in an “unprecedented web of victims” who have had their information compromised, say the authors. The victims’ losses range from intellectual property to personal data. One of the report’s authors, Dr. Adrian Nish, who is head of threat intelligence at BAE Systems, told the BBC that it is currently impossible to estimate the number of organizations and agencies that have been impacted by APT10’s activities.

Author: Ian Allen | Date: 05 April 2017 | Permalink

Filed under Expert news and commentary on intelligence, espionage, spies and spying Tagged with , , , , , , ,