NSA claims to have identified contractor as source of news media leak

News by Doug Olenick and Robert Abel

A National Security Agency contractor named Reality Winner has been accused of leaking classified information about possible Russian interference in the US election to a news organisation.

Contractors appear to be a persistent thorn in the side of the NSA in America. In the latest breach, Reality Leigh Winner, 25, a contractor with Pluribus International Corporation and working in a US federal facility in Georgia, has been named in a criminal complaint filed in the United States District Court for the Southern District of Georgia for allegedly leaking classified information pertaining to Russian interference in the 2016 US general election.

The news agency mentioned is not named in the court documents, but according to published reports it is understood to be The Intercept.

According to the documents, the FBI said that when confronted with the evidence Winner admitted printing the classified information, removing it from her office and mailing it from her hometown of Augusta, Georgia to the news agency. This was done, she told the FBI, even though she knew it could cause injury to the US.

The filing also showed that on 1 June the FBI was notified by "a US government agency" that it had been contacted by a news organisation claiming it would soon run a story based on what it believed to be classified documents from the agency.

On 5 June, The Intercept posted a story detailing how it had obtained a top-secret NSA document that detailed Russian cyber-attacks and attempted interference during the 2016 election cycle. The online news outlet also posted a link to the NSA document itself.

Once the agency saw the document in question it was able to identify six individuals who had printed the report and upon further investigation and an examination of their computers revealed Winner had contact with The Intercept.

Specifically, the document said the Russian General Staff's Main Intelligence Directorate, or GRU, conducted the cyber-attacks, according to highly classified National Security Agency documents obtained by The Intercept.

“Russian General Staff Main Intelligence Directorate actors…executed cyber-espionage operations against a named US company in August 2016, evidently to obtain information on elections-related software and hardware solutions,” the document said. “The actors likely used data obtained from that operation to… launch a voter registration-themed spear-phishing campaign targeting US local government organisations.”

The documents went on to say that the NSA  analysis does not draw conclusions about whether the interference had any effect on the election's outcome and that the full extent of the hacker accomplishments remains unknown.

The attacks allegedly focused on parts of the system directly connected to the voter registration process, including a private sector manufacturer of devices that maintain and verify the voter rolls. Some of these devices may have had wireless internet and Bluetooth connectivity which could have enabled further compromise.

If true, the document would contradict earlier reports from Russian President Vladimir Putin who last week said that his country had never interfered in foreign elections, although "patriotic hackers" may have.


Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews