DarkMatter Group

Last updated
DarkMatter Group
Company type Private
Industry cybersecurity
Founded2014;10 years ago (2014)
Headquarters Abu Dhabi, United Arab Emirates
Area served
UAE, Finland, Canada
Key people
Website www.darkmatter.ae

DarkMatter Group is a computer security company [1] [2] founded in the United Arab Emirates (UAE) in 2014 [3] [4] or 2015. [5] The company has described itself as a purely defensive company, however in 2016, it became a contractor for Project Raven, to help the UAE surveil other governments, militants, and human rights activists. It has employed former U.S. intelligence operatives and graduates of the Israel Defense Force technology units.

Contents

Company history

DarkMatter was founded in either 2014 [3] [4] or 2015 [5] by Emirati business man Faisal al-Bannai, the founder of mobile phone vendor Axiom Telecom and the son of a major general in the Dubai Police Force. [5] [3] [2] Around 2014, Zeline 1, a wholly owned subsidiary of DarkMatter, became active in Finland. [4]

DarkMatter's public launch came in 2015, at the 2nd Annual Arab Future Cities Summit. [1] At this time, the company advertised capabilities including network security and bug sweeping, and promised to create a new, "secure" mobile phone handset. [1] It promoted itself as a "digital defense and intelligence service" for the UAE. [1]

In 2016, DarkMatter replaced CyberPoint as a contractor for Project Raven. [3] [lower-alpha 1] [lower-alpha 2] Also in 2016, DarkMatter sought smartphone development expertise in Oulu, Finland. [4] DarkMatter recruited several Finnish engineers. [4]

By early 2018, DarkMatter's turnover was hundreds of millions of U.S. dollars. [2] Eighty percent of its work was for the UAE government and related organizations, including the NESA. [2] It had developed a smartphone model called Katim, Arabic for "silence". [4] [5] DarkMatter was an official provider for the Expo 2020, [13] but has since been dropped in favour of a different company.

In 2021, DarkMatter's cyber activities had already been transferred to Digital14, which has been distributing the secure communications system 'Katim'. [14]

Recruitment practices

In addition to recruiting via conventional routes such as personal referrals and stalls at trade shows (e.g. Black Hat), [1] DarkMatter headhunted staff from the U.S. National Security Agency and "poached" competitors' staff after they were contracted to the UAE government, as happened with some CyberPoint employees. [1] [2]

The company reportedly hired graduates of the Israel Defense Force technology units and paid them up to US$1 million annually. [15]

Simone Maragitelli, an Italian security researcher, blogged about DarkMatter's vague and dubious recruiting practices as a warning to others. He claimed that any questions or objections to the company's practices would result in being told that "things had been blown out of proportion" and that information about the job opening was extremely vague despite asking questions. [16] [17]

Allegations of surveillance for UAE government

In response to alleged cyber spying on opponents of Iran's best interests by the government of Iran during 2010 and 2011, the United States assisted the United Arab Emirates in late 2011 with establishing the National Electronic Security Authority (NESA) which is the UAE's equivalent to the US NSA. [18]

Project Raven

Project Raven was a confidential initiative to help the UAE surveil other governments, militants, and human rights activists. [3] Its team included former U.S. intelligence agents, who applied their training to hack phones and computers belonging to Project Raven's victims. [3] The operation was based in a converted mansion in a suburb of Abu Dhabi in Khalifa City nicknamed "the Villa." [3]

The project originated in 2008 as the Development Research Exploitation and Analysis Department (DREAD), developed by Richard A. Clarke through his security advisory group Good Harbor Consulting, as an arm of UAE royal Mohamed bin Zayed Al Nahyan's court. [19] By the end of 2010, Good Harbor had stepped back from DREAD, ceding control to Karl Gumtow, the co-founder and CEO of CyberPoint. [19] [20] c

From around 2014 to 2016, CyberPoint supplied U.S.-trained contractors to Project Raven. In 2016, news reports emerged that CyberPoint had contracted with the Italian spyware company Hacking Team, which damaged CyberPoint's reputation as a defensive cybersecurity firm. [1] Reportedly dissatisfied with relying upon a U.S.-based contractor, the UAE replaced CyberPoint with DarkMatter as its contractor, and DarkMatter induced several CyberPoint staff to move to DarkMatter. [3] [21] After this, Project Raven reportedly expanded its surveillance to include the targeting of Americans, potentially implicating its American staff in unlawful behaviour. [3] [21] [22]

Following a 24 October 2016 The Intercept article revealing DarkMatter surveillance for UAE, Samer Khalife, the chief financial officer for DarkMatter, transferred some United States citizens from DarkMatter to a new company Connection Systems and tiger teams were established by DarkMatter to counter the allegations contained in The Intercept article. [23]

On 1 February 2019, Ars Technica published comments from DarkMatter's former employee, Daniel Wolford. He stated, "We did not hack Americans...Our mission was simple: advise and assist UAE to create a national cyber security program similar to NTOC (NSA/CSS Threat Operations Center)." The work done creating a "target list," Wolford said, was part of a training operation "to teach the Emiratis about lawful targeting and collection," he asserted. "We tried to show them who is and isn't a threat to their national security." [24]

On 9 December 2021, Loujain al-Hathloul filed a lawsuit in a US district court in Oregon against three former US intelligence and military officers, who carried out hacking operations on behalf of the UAE. According to the lawsuit, the three men — Marc Baier, Ryan Adams, and Daniel Gericke — worked for DarkMatter and assisted the Emirati security officials to exfiltrate data from her iPhone. The hacking had led to al-Hathloul's arrest from the UAE and rendition to Saudi Arabia, where she was detained, imprisoned and tortured. [25]

On 22 December 2021, a very popular messaging app named ToTok was deemed to be a secret spy tool, developed by the UAE. Very little is known about the tool and what its capabilities are. [26]

In December 2021, U.S. lawmakers urged the Treasury and State Departments to sanction DarkMatter, NSO Group, Nexa Technologies, and Trovicor. The letter signed by the Senate Finance Committee Chairman Ron Wyden, House Intelligence Committee Chairman Adam Schiff, and 16 other lawmakers, asked for Global Magnitsky sanctions, as the companies were accused of enabling human rights abuses. The letter demanded that high-ranking executives at DarkMatter, along with the three other firms, be sanctioned. [27]

On 26 August 2022, the three former U.S. intelligence operatives who helped the UAE spy on human rights activists, journalists, and governments were barred from arms export activities under a deal announced by the State Department. The operatives, Marc Baier, Ryan Adams, and Daniel Gericke, were prohibited for three years from participating directly or indirectly in any activities subject to the International Traffic in Arms Regulations (ITAR). [28]

Karma spyware

In 2016, Project Raven bought a tool called Karma. [29] Karma was able to remotely exploit Apple iPhones anywhere in the world, without requiring any interaction on the part of the iPhone's owner as long as an username was provided, such as Apple ID, Email address associated with the phone, or phone number. [3] It apparently achieved this by exploiting a zero-day vulnerability in the device's iMessage app. [3] Project Raven operatives were able to view passwords, emails, text messages, photos and location data from the compromised iPhones. [29] [3]

People whose mobile phones have been deliberately compromised using Karma reportedly include:

  • The Emir of Qatar, Sheikh Tamim bin Hamad Al Thani, nicknamed "Crybaby", Hamad bin Khalifa Al Thani, nicknamed "AngryFather", plus his brother and several other close associates. [1]
  • Nadia Mansoor, wife of imprisoned UAE human rights activist Ahmed Mansoor. [3] (Nadia was nicknamed "Purple Egret" by Project Raven; Ahmed was nicknamed "Egret".) [1]
  • British journalist Rori Donaghy. [3] (Donaghy was nicknamed "Gyro" by Project Raven.) [1]
  • Prime Minister of Lebanon Saad Hariri (UAE associated him with supporting Hezbollah.) [30]
  • Yemeni Nobel Laureate Tawakkol Karman, a leader in the Arab Spring. [31]
  • Hundreds of other targets in Europe and the Middle East, including the governments of Qatar, Yemen, Kuwait, Oman, Serbia, Lebanon, Iran and Turkey. [1]

Around mid-2017, Apple patched some of the security vulnerabilities exploited by Karma, unknowingly reducing the tool's effectiveness. [29]

Certificate authority controversy

In 2016, two DarkMatter whistleblowers and multiple other security researchers expressed concerns that DarkMatter intended to become a certificate authority (CA). [1] This would give it the technical capability to create fraudulent certificates, which would allow fraudulent websites or software updates to convincingly masquerade as legitimate ones. [1] Such capabilities, if misused, would allow DarkMatter to more easily deploy rootkits to targets' devices, and to decrypt HTTPS communications of Firefox users via man-in-the-middle attacks. [1] [32] [33]

On 28 December 2017, DarkMatter requested that Mozilla include it as a trusted CA in the Firefox web browser. [34] For more than a year, Mozilla's reviewers addressed concerns about DarkMatter's technical practices, eventually questioning on that basis whether DarkMatter met the baseline requirements for inclusion. [34] [35]

On 30 January 2019, Reuters published investigations describing DarkMatter's Project Raven. [3] [32] Mozilla's reviewers noted the investigation's findings. [35] Subsequently, the Electronic Frontier Foundation (EFF) and others asked Mozilla to deny DarkMatter's request, on the basis that the investigation showed DarkMatter to be untrustworthy and therefore liable to misuse its capabilities. [32] [33] [35] [34] On 5 July 2019, after Mozilla's public consultation it was decided to not allow DarkMatter becoming a trusted CA in Firefox. [36] [34]

In July 2019, Mozilla prohibited the government of the United Arab Emirates from operating as one of its internet security gatekeepers, following reports on the cyber-espionage program, which was run by Abu Dhabi-based DarkMatter staff for leading a clandestine hacking operation. [37]

In August 2019, Google blocked websites approved by DarkMatter, after Reuters reported the firm's involvement in a hacking operation led by the United Arab Emirates. Google, previously, said that all websites certified by DarkMatter would be marked as unsafe by its Chrome and Android browsers. [38]

FBI investigation and indictments

As of 2020, DarkMatter has been under investigation by the FBI for crimes including digital espionage services, involvement in the Jamal Khashoggi assassination, and incarceration of foreign dissidents. [39]

On September 14, 2021, Marc Baier 49, Ryan Adams 34, and Daniel Gericke 40, who had been indicted for violations of United States laws involving computer fraud and improper exporting of technology, agreed to a deferred prosecution agreement in which they would pay a fine over three years of $750,000, $600,000, and $335,000, respectively, for a total of $1.68 million, support FBI and Justice Department investigations, sever ties to any United Arab Emirates intelligence and law enforcement agencies, be under a prohibition of services, including defense articles, associated with ITAR and future computer network exploitation employment, and immediately both relinquish their security clearances from the United States and any foreign entity and be under a lifetime ban on future security clearances from the United States. After the UAE contracts shifted from the US parent firm CyberPoint to its UAE subsidiary DarkMatter, Baier, who was a former employee of the NSA, and Adams and Gericke, who had been in the United States military and intelligence community, failed to receive permission to be employed by the UAE firm. According to Lori Stroud who is a former NSA employee, the trio had worked for the United States-based CyberPoint and then for its UAE subsidiary DarkMatter which in 2018 Faisal al-Bannai confirmed that DarkMatter works very closely with the government of the UAE and is a competitor of the Israeli firm NSO Group. From January 2016 to November 2019, the trio of Marc Baier, Ryan Adams, and Daniel Gericke significantly improved the operations that DarkMatter provided to the government of the UAE. DarkMatter was very interested in hacking into Qatar's computers and obtaining and reading its electronic messages, as it was believed that Qatar was supporting the Muslim Brotherhood. [40]

For example, DarkMatter had hacked into an electronic communication between First Lady Michelle Obama and a former Qatari minister regarding Michelle Obama and Conan O'Brien's November 2015 trip to Qatar where both Obama and O'Brien visited the al-Udeid airbase which hosts the forward base headquarters of United States Central Command, the RAF's No. 83 Expeditionary Air Group, and the headquarters of the United States Air Forces Central Command during the Wars in Iraq and Afghanistan. [41] [42] [43] [44] [45] [46] [47] [48] [49] [50]

New United States law

In January 2020 during the FBI investigations into DarkMatter employees' conduct, the United States Congress passed a law proposed in 2019 by congressperson Max Rose of New York. The law requires the United States intelligence agencies to annually assess the risk to the United States national security posed by former intelligence officials and employees who are working for foreign-based firms, governments, and entities. [51] [52] This law was driven in part by the United Arab Emirates cyber espionage operations against United States citizens, firms, entities, and government. [51]

See also

Notes

  1. CyberPoint Inc. occupied suite 7967, which was a virtual office space with nineteen other companies, in the World Trade Center North Tower (also called 1 Tower or the old One World Trade Center) through the firm Alliance Business Centers / International Office Centers Corporation which was established in 1992 by its CEO Frank Cottle. [6] [7] [8] [9] [10] [11]
  2. From 1968 to 1969, Frank Cottle studied English as an undergraduate at Principia and from 1970 to 1973 attended United States International University in San Diego receiving a Bachelor's degree in English. From January 1973 to December 1983, he worked at Ardell Yacht and Ship Brokers in International Sales and from December 1998 to June 2000 he was at Deloitte Consulting in the Director of Procurement, USA department. [12]

Related Research Articles

<span class="mw-page-title-main">Industrial espionage</span> Use of espionage for commercial purposes rather than security

Industrial espionage, also known as economic espionage, corporate spying, or corporate espionage, is a form of espionage conducted for commercial purposes instead of purely national security.

<span class="mw-page-title-main">National Security Agency</span> U.S. signals intelligence organization

The National Security Agency (NSA) is an intelligence agency of the United States Department of Defense, under the authority of the Director of National Intelligence (DNI). The NSA is responsible for global monitoring, collection, and processing of information and data for foreign and domestic intelligence and counterintelligence purposes, specializing in a discipline known as signals intelligence (SIGINT). The NSA is also tasked with the protection of U.S. communications networks and information systems. The NSA relies on a variety of measures to accomplish its mission, the majority of which are clandestine. The NSA has roughly 32,000 employees.

<span class="mw-page-title-main">Citizen Lab</span> Digital research center at the University of Toronto

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs at the University of Toronto, Canada. It was founded by Ronald Deibert in 2001. The laboratory studies information controls that impact the openness and security of the Internet and that pose threats to human rights. The organization uses a "mixed methods" approach which combines computer-generated interrogation, data mining, and analysis with intensive field research, qualitative social science, and legal and policy analysis methods. The organization has played a major role in providing technical support to journalists investigating the use of NSO Group's Pegasus spyware on journalists, politicians and human rights advocates.

Booz Allen Hamilton Holding Corporation is the parent of Booz Allen Hamilton Inc., an American government and military contractor, specializing in intelligence. It is headquartered in McLean, Virginia, in Greater Washington, D.C., with 80 other offices around the globe. The company's stated core business is to provide consulting, analysis and engineering services to public and private sector organizations and nonprofits.

<span class="mw-page-title-main">Keith B. Alexander</span> Former Director of the United States National Security Agency

Keith Brian Alexander is a retired four-star general of the United States Army, who served as director of the National Security Agency, chief of the Central Security Service, and commander of the United States Cyber Command. He previously served as Deputy Chief of Staff, G-2 (Intelligence), United States Army from 2003 to 2005. He assumed the positions of Director of the National Security Agency and Chief of the Central Security Service on August 1, 2005, and the additional duties as Commander United States Cyber Command on May 21, 2010.

<span class="mw-page-title-main">Unit 8200</span> Intelligence unit of the Israel Defense Forces

Unit 8200 is an Israeli Intelligence Corps unit of the Israel Defense Forces responsible for clandestine operation, collecting signal intelligence (SIGINT) and code decryption, counterintelligence, cyberwarfare, military intelligence, and surveillance. Military publications include references to Unit 8200 as the Central Collection Unit of the Intelligence Corps, and it is sometimes referred to as Israeli SIGINT National Unit (ISNU). It is subordinate to Aman, the military intelligence directorate.

<span class="mw-page-title-main">United Arab Emirates–United States relations</span> Bilateral relations

The United Arab Emirates has quite a close and friendly relationship with the US, being described as the United States' best counter-terrorism ally in the Gulf by Richard A. Clarke, the U.S. national security advisor and counter-terrorism expert. In terms of defense, the United Arab Emirates Armed Forces has been nicknamed "Little Sparta" by United States Armed Forces generals and former U.S. Secretary of Defense James Mattis for its active role against extremists in the Middle East. The United Arab Emirates also hosts the only United States border preclearance in the Middle East. Both countries are members of the I2U2 Group, which was established in 2021.

<span class="mw-page-title-main">Yusuf bin Alawi bin Abdullah</span> Omani politician

Yusuf bin Alawi bin Abdullah is an Omani politician. He was the Sultanate of Oman's Minister Responsible for Foreign Affairs. It is important to clarify that "Ministers in Responsibility" were previously appointed as the Sultan was intended to hold the official position of "Minister of Foreign Affairs" himself.

<span class="mw-page-title-main">Kaspersky Lab</span> Russian multinational cybersecurity and anti-virus provider

Kaspersky Lab is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia, and operated by a holding company in the United Kingdom. It was founded in 1997 by Eugene Kaspersky, Natalya Kaspersky and Alexey De-Monderik. Kaspersky Lab develops and sells antivirus, internet security, password management, endpoint security, and other cybersecurity products and services.

<span class="mw-page-title-main">Chinese espionage in the United States</span>

The United States has often accused the People's Republic of China of attempting to unlawfully acquire U.S. military technology and classified information as well as trade secrets of U.S. companies in order to support China's long-term military and commercial development. Chinese government agencies and affiliated personnel have been accused of using a number of methods to obtain U.S. technology, including espionage, exploitation of commercial entities, and a network of scientific, academic and business contacts. Prominent espionage cases include Larry Wu-tai Chin, Katrina Leung, Gwo-Bao Min, Chi Mak and Peter Lee. The Ministry of State Security (MSS) maintains a bureau dedicated to espionage against the United States, the United States Bureau.

Cyberwarfare by China is the aggregate of all combative activities in the cyberspace which are taken by organs of the People's Republic of China, including affiliated advanced persistent threat groups, against other countries.

<span class="mw-page-title-main">Tailored Access Operations</span> Unit of the U.S. National Security Agency

The Office of Tailored Access Operations (TAO), now Computer Network Operations, and structured as S32, is a cyber-warfare intelligence-gathering unit of the National Security Agency (NSA). It has been active since at least 1998, possibly 1997, but was not named or structured as TAO until "the last days of 2000," according to General Michael Hayden.

Rori Donaghy is a Public Policy Manager at Meta. He was previously a news editor with the Middle East Eye and was the Director of the Emirates Centre for Human Rights between March 2012 and March 2014, a UK human rights organisation centred on the United Arab Emirates (UAE).

<span class="mw-page-title-main">Ahmed Mansoor</span> Emirati activist

Ahmed Mansoor Al Shehhi is an Emirati blogger, human rights and reform activist arrested in 2011 for defamation and insults to the heads of state and tried in the UAE Five trial. He was pardoned by UAE's president Sheikh Khalifa bin Zayed Al Nahyan. Mansoor was arrested again in March 2017 on charges of using social media platforms to threaten public order and publish false and misleading information. He was found guilty and convicted for threatening state security and given a prison sentence of 10 years.

<span class="mw-page-title-main">NSO Group</span> Israeli cyber-espionage and malware firm

NSO Group Technologies is an Israeli cyber-intelligence firm primarily known for its proprietary spyware Pegasus, which is capable of remote zero-click surveillance of smartphones. It employed almost 500 people as of 2017.

Pegasus is a spyware developed by the Israeli cyber-arms company NSO Group that is designed to be covertly and remotely installed on mobile phones running iOS and Android. While NSO Group markets Pegasus as a product for fighting crime and terrorism, governments around the world have routinely used the spyware to surveil journalists, lawyers, political dissidents, and human rights activists.

<span class="mw-page-title-main">Al Araby (TV channel)</span> Pan-Arab television channel headquartered in Qatar

Al Araby is a general television network launched in January 2015. It broadcasts a variety of programs and news shows in Arabic, covering society, politics, entertainment and culture. The network has bureaus in several Arab and Western capitals, through 11 bureaus in the Middle East and worldwide. The channel was planned as a counterweight to Al Jazeera, which was allegedly viewed by some as having a pro-Muslim Brotherhood bias.

<span class="mw-page-title-main">Vault 7</span> CIA files on cyber war and surveillance

Vault 7 is a series of documents that WikiLeaks began to publish on 7 March 2017, detailing the activities and capabilities of the United States Central Intelligence Agency (CIA) to perform electronic surveillance and cyber warfare. The files, dating from 2013 to 2016, include details on the agency's software capabilities, such as the ability to compromise cars, smart TVs, web browsers including Google Chrome, Microsoft Edge, Mozilla Firefox, and Opera, the operating systems of most smartphones including Apple's iOS, and Google's Android, and computer operating systems including Microsoft Windows, macOS, and Linux. A CIA internal audit identified 91 malware tools out of more than 500 tools in use in 2016 being compromised by the release. The tools were developed by the Operations Support Branch of the C.I.A.

The Signals Intelligence Agency (SIA), formerly known as the National Electronic Security Authority (NESA), is the United Arab Emirates intelligence agency. In response to alleged cyber spying on opponents of Iran's best interests by the government of Iran during 2010 and 2011, the United States assisted the United Arab Emirates in late 2011 with establishing the National Electronic Security Authority (NESA) which is the UAE's equivalent to the US NSA. Created in 2012 through a Federal Decree Law, one of its official objectives is to organize the protection of the UAE's communications network and information systems.

<span class="mw-page-title-main">Oman–Turkey relations</span> Bilateral relations between Oman and Turkey

Oman–Turkey relations are the foreign relations between Oman and Turkey. Turkey's historic relationship with Oman has wavered between friendly indifference and courtship, but mutual differences were set aside in 2002 when the new Turkish government embraced a policy of engagement with Oman.

References

  1. 1 2 3 4 5 6 7 8 9 10 11 12 13 14 McLaughlin, Jenna (24 October 2016). "Featured News: Spies for Hire". The Intercept. Archived from the original on 12 June 2019.
  2. 1 2 3 4 5 "Emerging Gulf State cyber security powerhouse growing rapidly in..." reuters.com . 2 February 2018.
  3. 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 "Exclusive: Ex-NSA cyberspies reveal how they helped hack foes of UAE". Reuters .
  4. 1 2 3 4 5 6 "Revealed: Secretive UAE cybersecurity firm with a history of spying on dissidents is operating in Finland". helsinkitimes.fi . 3 February 2019.
  5. 1 2 3 4 "UAE cyber firm DarkMatter slowly steps out of the shadows". phys.org.
  6. Stock, Gary (September 21, 2001). "WTC Companies with phone numbers in the World Trade Center Towers". Gary Stock website. Archived from the original on September 15, 2021. Retrieved September 15, 2021 via Southwestern Bell SMARTpages.
  7. "Alliance Business Centers Network: Corporate Identity Program". Alliance Business Centers Network website (abcn.com). August 13, 2001. Archived from the original on August 13, 2001. Retrieved September 15, 2021.
  8. "Alliance Business Centers: ABOUT ALLIANCE Who We Are and What We Do". Alliance Business Centers website (abcn.com). September 15, 2021. Archived from the original on September 15, 2021. Retrieved September 15, 2021.
  9. Saunders, Mike (December 2016). "Frank Cottle – Chairman, Founder at Alliance Business Centers". Influential Entrepreneurs (businessinnovatorsradio.com). Archived from the original on September 15, 2021. Retrieved September 15, 2021.
  10. "Alliance Virtual Offices: About Management and Staff, Frank Cottle". Alliance Virtual Offices website (alliancevirtualoffices.com). September 15, 2021. Archived from the original on September 15, 2021. Retrieved September 15, 2021.
  11. "Alliance Business Centers Network: ALLIANCE NETWORK - New York". Alliance Business Centers Network website (abcn.com). December 25, 2001. Archived from the original on December 25, 2001. Retrieved September 15, 2021.
  12. Cottle, Frank (September 15, 2021). "Frank Cottle bio" . Retrieved September 15, 2021.
  13. "Who's going to protect you online at Expo 2020?". Official Expo 2020 news blog. June 4, 2018. Retrieved August 20, 2020.[ permanent dead link ]
  14. "Digital14 picks up Darkmatter's key activities, including the vulnerabilities researcher xen1thLabs". 21 January 2021. Retrieved September 15, 2021.
  15. Ziv, Amitai [in Hebrew] (16 October 2019). "Mysterious UAE Cyber Firm Luring ex-Israeli Intel Officers With Astronomical Salaries". Haaretz .
  16. Maragitelli, Simone (July 27, 2016). "How The United Arab Emirates Intelligence Tried to Hire me to Spy on its People". Archived from the original on 2016-07-27. Retrieved September 15, 2021.
  17. McLaughlin, Jenna (2016-10-24). "Featured News: Spies for Hire". The Intercept . Retrieved 2020-03-03.
  18. McLaughlin, Jenna (December 21, 2017). "Deep Pockets, Deep Cover: The UAE Is paying Ex-CIA officers to build a spy empire in the Gulf". Foreign Policy . Archived from the original on September 19, 2021. Retrieved September 18, 2021.
  19. 1 2 Schectman, Joel; Bing, Christopher (10 December 2019). "White House Veterans Helped Gulf Monarchy Build Secret Surveillance Unit". Reuters .{{cite web}}: CS1 maint: url-status (link)
  20. Staff, Daily Record (2023-05-31). "Karl Gumtow". Maryland Daily Record. Retrieved 2024-03-22.
  21. 1 2 "A New Age of Warfare: How Internet Mercenaries Do Battle for Authoritarian Governments". The New York Times. 2019-03-21. Retrieved 2019-03-22.
  22. "Takeaways From The Times's Investigation Into Hackers for Hire". The New York Times. 2019-03-21. Retrieved 2019-03-22.
  23. Biddle, Sam; Cole, Matthew (June 12, 2019). "Team of American Hackers and Emirati Spies Discussed Attacking The Intercept". The Intercept . Archived from the original on June 12, 2019. Retrieved September 18, 2021.
  24. Gallagher, Sean (February 1, 2019). "UAE buys its way toward supremacy in Gulf cyberwar, using US and Israeli experts".
  25. "Saudi women's rights activist sues three ex-US intel operatives over hacking for UAE". The Guardian. 9 December 2021. Retrieved 9 December 2021.
  26. Mazzetti, Mark; Perlroth, Nicole; Bergman, Ronen (22 December 2019). "It Seemed Like a Popular Chat App. It's Secretly a Spy Tool". The New York Times.
  27. Menn, Joseph; Schectman, Joel (15 December 2021). "U.S. lawmakers call for sanctions against Israel's NSO, other spyware firms". Reuters. Retrieved 15 December 2021.
  28. "Ex-U.S. intel operatives who worked for UAE barred from arms exports, State Dept says". Reuters. 26 August 2022. Retrieved 26 August 2022.
  29. 1 2 3 Reuters staff. "A top secret UAE spy operation staffed by former NSA cyber-agents hacked into the iPhones of dissidents and rivals". Business Insider .{{cite web}}: |last= has generic name (help)
  30. Craig Timberg; Michael Birnbaum; Drew Harwell; Dan Sabbagh (2021-07-20). "On the list: Ten prime ministers, three presidents and a king". The Washington Post . Washington, D.C. ISSN   0190-8286. OCLC   1330888409.
  31. Schectman, Joel; Bing, Christopher (30 January 2019). "UAE Used Cyber Super-Weapon to Spy on iPhones of Foes". Reuters . Retrieved 18 March 2024.{{cite web}}: CS1 maint: url-status (link)
  32. 1 2 3 "CyberSecurity Firm Darkmatter Request to be Trusted Root CA Raises Concerns". BleepingComputer.
  33. 1 2 Quintin, Cooper (22 February 2019). "Cyber-Mercenary Groups Shouldn't be Trusted in Your Browser or Anywhere Else". Electronic Frontier Foundation.
  34. 1 2 3 4 "1427262 - Add DarkMatter Root Certificates". bugzilla.mozilla.org.
  35. 1 2 3 "DarkMatter Concerns". Google Groups.
  36. "Mozilla Blocks DarkMatter From Becoming a Trusted CA in Firefox". BleepingComputer. Retrieved 2024-01-04.
  37. "Mozilla blocks UAE bid to become an internet security guardian after hacking reports". Reuters. Retrieved 9 June 2019.
  38. "Google blocks websites certified by DarkMatter, after Reuters reports". Reuters. Retrieved 1 August 2019.
  39. "Information War Led to Khashoggi's Murder | RealClearPolitics". www.realclearpolitics.com. Retrieved 2020-03-03.
  40. "Will Qatar's Relationship with the Muslim Brotherhood Change after Gulf Reconciliation?".
  41. "3 former U.S. officials charged in United Arab Emirates hacking scheme". Associated Press. September 14, 2021. Archived from the original on September 15, 2021. Retrieved September 15, 2021 via Honolulu Star-Advertiser.
  42. Schectman, Joel; Bing, Christopher (September 15, 2021). "Ex-U.S. intel operatives admit hacking American networks for UAE". Reuters . Retrieved September 15, 2021.
  43. Bing, Christopher; Schectman, Joel (January 30, 2019). "Project Raven: Inside the UAE's secret hacking team of American mercenaries. Ex-NSA operatives reveal how they helped spy on targets for the Arab monarchy — dissidents, rival leaders and journalists". Reuters . Retrieved September 15, 2021.
  44. Cimpanau, Catalin (September 14, 2021). "US fines former NSA employees who provided hacker-for-hire services to UAE". TheRecord.media. Retrieved September 15, 2021.
  45. "3 former U.S. intelligence operatives to pay over $1.6 million to resolve mercenary hacking charges: The men worked for the United Arab Emirates and faced federal charges of conspiring to violate hacking laws, the Justice Department said Tuesday". NBC News . September 14, 2021. Retrieved September 15, 2021.
  46. Hsu, Spencer (September 15, 2021). "Three former U.S. intelligence operatives admit to working as 'hackers-for-hire' for UAE". The Washington Post . Retrieved September 15, 2021.
  47. "הסדר טיעון עם שלושה אנשי ביון לשעבר מגלה: איחוד האמירויות הפעיל פצחנים בארה"ב" [A plea deal with three former spies reveals: The UAE has activated crackers in the US]. news1.co.il (in Hebrew). September 15, 2021. Archived from the original on September 16, 2021. Retrieved September 15, 2021.
  48. "First Lady Michelle Obama to Travel to the State of Qatar and the Hashemite Kingdom of Jordan". FLOTUS: The White House . October 28, 2015. Retrieved September 15, 2021.
  49. Weinberg, David Andrew (November 3, 2015). "Michelle's Dangerous Journey to Qatar: The First Lady preaches tolerance where only last week a sheik declared of Jews: 'Kill them completely.'". Politico . Retrieved September 15, 2021.
  50. AP staff (November 2, 2015). "US first lady Michelle Obama arrives in Qatar for speech". Associated Press . Retrieved September 15, 2021 via Seattle Times.
  51. 1 2 Schectman, Joel; Bing, Christopher (January 22, 2020). "New U.S. law requires government to report risks of overseas activities by ex-spies". Reuters . Archived from the original on April 15, 2021. Retrieved September 18, 2021.
  52. Riley, Tonya (September 14, 2021). "Former US intelligence operatives charged with helping UAE hack rivals, Americans". cyberscoop.com. Archived from the original on September 17, 2021. Retrieved September 14, 2021.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.