By Chris Strohm and Nafeesa Syeed
Bloomberg
For the third time in three years, the National Security Agency is under scrutiny for its handling of government secrets, particularly its reliance on outside contractors employed by Booz Allen Hamilton Holding Corp.
Harold Martin, a contractor with the consulting company, told investigators that he took home documents and digital files containing highly classified data, storing much of it in his car and house, according to a complaint released Wednesday. His arrest in August came three years after Edward Snowden — another Booz Allen employee at the NSA — fled the U.S. and disclosed details of government surveillance programs before going into exile in Russia.
While the Snowden breach led to changes at the NSA and other intelligence agencies to keep insiders from stealing sensitive information, Martin’s arrest is prompting questions from analysts and U.S. lawmakers about whether the measures were enough. In August, hacking tools apparently designed by the NSA — the largest of 17 federal intelligence agencies — to breach foreign governments and organizations were leaked on the internet.
“I applaud the FBI for making an arrest, but it is painfully clear that the intelligence community still has much to do to institutionalize reforms designed to protect in advance the nation’s sources and methods from insider threats,” said Rep. Adam Schiff, the top Democrat on the House Intelligence Committee.
Without providing details of the data Martin allegedly brought home or when he did it, the FBI said in the complaint disclosed Wednesday that the information could cause “exceptionally grave damage” to national security if it were disseminated, according to a criminal complaint by the Justice Department.
Questions about Martin’s motivation and whether he was working for a foreign government or improperly bringing home files for use there were fueled by the initial decision not to charge him with espionage. Instead, the contractor currently faces a maximum sentence of one year in prison for the unauthorized removal and retention of classified materials and 10 years in prison for theft of government property.
“There’s no evidence that Hal Martin has betrayed his country,” James Wyda, a federal public defender in Maryland who’s representing Martin, said in a statement. “What we do know is that Hal Martin loves his family and his country. He served our nation honorably in the United States Navy, and he has devoted his entire career to serving and protecting America. We look forward to defending Hal Martin in court.”
Booz Allen said it fired the worker, whom it didn’t name, and is cooperating with law enforcement.
“When Booz Allen learned of the arrest of one of its employees by the FBI, we immediately reached out to the authorities to offer our total cooperation in their investigation, and we fired the employee,” the company said Wednesday in a regulatory filing. “There have been no material changes to our client engagements as a result of this matter.”
The FBI’s complaint “alleges that among the classified documents found in the search were six classified documents obtained from sensitive intelligence and produced by a government agency in 2014,” according to a Justice Department statement. “These documents were produced through sensitive government sources, methods and capabilities, which are critical to a wide variety of national security issues. The disclosure of the documents would reveal those sensitive sources, methods and capabilities.”
White House spokesman Josh Earnest told reporters that the government has taken steps since Snowden’s disclosures to better guard government secrets, including creating a National Insider Threat Task Force to protect against insiders leaking sensitive information and improving background checks. The number of people with access to classified information has been reduced by 17 percent in the last few years, he said.
That view was echoed by Mike Gelles, Deloitte Consulting’s federal practice director who spent 20 years at the Navy Criminal Investigative Service and recently wrote the book “Insider Threat: Prevention, Detection, Mitigation and Deterrence.”
“NSA, in particular, has a very mature program,” Gelles said. “While this is a little bit alarming, one might also think about applauding the efforts” of NSA, since Martin was caught, he added. Nevertheless, “it highlights the fact that this is an issue that the government and the private sector have to continue to address as these types of incidents will only continue,” he said.
Since being hired to help the U.S. Navy in preparations for what would become World War II, Booz Allen has become a powerful force in the world of defense and intelligence contracting. The McLean, Virginia-based company said in a May 19 regulatory filing that it took in $1.3 billion, or about 23 percent of its revenue, from intelligence clients in the 2016 fiscal year.
Booz Allen fell 3.8 percent, the most since Jan. 27, to $30.31 on Wednesday after the news broke. It rebounded on Thursday, rising 2.3 percent to $31 at 10:16 a.m. New York time after analyst Brian Gesuale with Raymond James Financial Inc. raised the company to “outperform” from “market perform.”
While the company may face a “brand image” problem over the latest incident, the impact on the company isn’t clear, Cai von Rumohr, a Cowen & Co. analyst, said in a note to clients Wednesday. After Snowden’s revelations, the company “didn’t face any litigation, lose any contracts, or have any direct impact” on revenue, von Rumohr wrote.
Security screening for workers handling classified information is typically the responsibility of government agencies, including the Pentagon and the Office of Personnel Management.
Martin’s arrest follows months of evidence that the government, as well as the private sector and political organizations, aren’t doing enough to protect themselves from outside hacking and internal breaches.
In August, files of high-tech hacking tools believed to have been developed by the NSA were posted online by a group that called itself ShadowBrokers. Part of that breach included about 300 megabytes of tools and techniques to infiltrate computer systems’ firewalls, according to Kaspersky Lab, a software security firm. On the day of the leak, much of the NSA’s public website was down.
The leak stumped cybersecurity experts, who speculated that Russia, China or an NSA insider could be responsible. Because time-stamps on the files dated to 2013, some of the software weaknesses could have since been fixed. Officials are investigating whether Martin was linked to that breach.
“This was not supposed to happen again,” James Lewis, a cybersecurity specialist and senior vice president at the Center for Strategic and International Studies in Washington, said Wednesday of the latest case. Most of those who work with intelligence agencies “are highly motivated and very patriotic and wouldn’t do this. But you only need one and that’s where they’re having trouble.”
Talk to us
> Give us your news tips.
> Send us a letter to the editor.
> More Herald contact information.