Discovering NSA Code Names Via LinkedIn

← Back to Stories (view on slashdot.org)

Discovering NSA Code Names Via LinkedIn

Posted by timothy on Thursday July 11, 2013 @05:36AM from the knew-linked-in-had-to-be-good-for-something dept.

Okian Warrior writes with this news as reported by TechDirt: "The Washington Post revealed some of the code names for various NSA surveillance programs, including NUCLEON, MARINA and MAINWAY. Chris Soghoian has pointed out that a quick LinkedIn search for profiles with codenames like MARINA and NUCLEON happens to turn up profiles like this one which appear to reveal more codenames: 'Skilled in the use of several Intelligence tools and resources: ANCHORY, AMHS, NUCLEON, TRAFFICTHIEF, ARCMAP, SIGNAV, COASTLINE, DISHFIRE, FASTSCOPE, OCTAVE/CONTRAOCTAVE, PINWALE, UTT, WEBCANDID, MICHIGAN, PLUS, ASSOCIATION, MAINWAY, FASCIA, OCTSKYWARD, INTELINK, METRICS, BANYAN, MARINA.' TRAFFICTHIEF, eh? WEBCANDID? Hmm... Apparently, NSA employees don't realize that information they post online can be revealed."

49 of 201 comments (clear)

Min score:

Reason:

Sort:

A fleeting moment of rich irony. by Picass0 · 2013-07-11 05:39 · Score: 5, Funny

>> "Hmm... Apparently, NSA employees don't realize that information they post online can be revealed."
I admit to laughing at this.
1. Re:A fleeting moment of rich irony. by Bob+the+Super+Hamste · 2013-07-11 05:41 · Score: 5, Funny
  
  First thing I thought was pay back is a bitch.
  
  --
  Time to offend someone
2. Re:A fleeting moment of rich irony. by icebike · 2013-07-11 05:49 · Score: 2
  
  >> "Hmm... Apparently, NSA employees don't realize that information they post online can be revealed."
  I admit to laughing at this.
  Or perhaps these are designed and planted to attract people interested in these acronyms and program names to lure them into some sort of trap, or merely to record who looked at these profiles.
  Ah, ok, I'll go take my meds now. Latr, but remember: fcsjkeaw jlcekfw6eh ae nasje ki4tsvt!
  
  --
  Sig Battery depleted. Reverting to safe mode.
3. Re:A fleeting moment of rich irony. by Cenan · 2013-07-11 05:51 · Score: 3, Interesting
  
  There are at least two confirmed idiots working for the NSA [1], it's not that much of a stretch to think there's more where they came from.
  
  --
  ... whatever ...
4. Re:A fleeting moment of rich irony. by SJHillman · 2013-07-11 06:04 · Score: 3, Insightful
  
  People will keep looking until they find something. Give them what they wanted to find and they'll stop looking.
5. Re:A fleeting moment of rich irony. by Cenan · 2013-07-11 06:37 · Score: 2
  
  Congress will keep looking until it's too much like work and they give up. Give them anything and they'll stop looking. From there it's just the whistleblowers that are left
  Fixed to reflect new data.
  
  --
  ... whatever ...
6. Re:A fleeting moment of rich irony. by Will.Woodhull · 2013-07-11 06:47 · Score: 3, Insightful
  
  These idiots have some level of access to the assets that the NSA is developing.
  And that is reason enough to shut the NSA down completely, and charge its career bureaucrats with criminal negligence wrt corruption of the US Constitution which they are supposed to be protecting.
  If the NSA can allow these idjits to mess around, then how many of their other, more intelligent, personnel have found ways to make a little cash on the side by selling the kind of stuff Snowden has given away?
  
  --
  Will
7. Re:A fleeting moment of rich irony. by dywolf · 2013-07-11 06:48 · Score: 5, Interesting
  
  first thing i thought was red herring
  
  --
  The guy who said the election was rigged won the presidency with the second-most votes.
8. Re:A fleeting moment of rich irony. by Anonymous Coward · 2013-07-11 07:08 · Score: 2, Interesting
  
  First thing I thought was pay back is a bitch.
  Yeah, because knowing there's a project called "DISHFIRE" is so utterly helpful to figuring out what they're doing. Because we all live in conspiracy theorist wish fulfillment movies where this one grizzled screwball is screaming about how he knew there was something called "DISHFIRE", and why didn't we believe him before, and now we can stop it... somehow... whatever it is.
  On a side note, though, "DISHFIRE" is an incredibly hilarious name for just about any project.
9. Re:A fleeting moment of rich irony. by pegr · 2013-07-11 07:15 · Score: 4, Insightful
  
  Submitted earlier with a better headline. (sigh)
  No, the gotcha is not revealing project code names. Why post code names if the names are secret? The gotcha is...(ahem)
  REVEALING THE NAMES OF ANALYSTS WITH ACCESS TO TOP SECRET PROJECTS!
10. Re:A fleeting moment of rich irony. by ganjadude · 2013-07-11 07:29 · Score: 4, Informative
  
  Pretty much. Once we have the names of a program. we can submit FOIA requests on them. thats one of the catch 22s with FOIA. you have to know what you are looking for, you cant just say "I want all the info on the NSA spying on americans" you need to say" I want all information on codenameA codenameB codenameC." will they give it? doubtful but its a start.
  
  --
  have you seen my sig? there are many others like it but none that are the same
11. Re:A fleeting moment of rich irony. by Anonymous Coward · 2013-07-11 08:34 · Score: 4, Insightful
  
  Yeah, because knowing there's a project called "DISHFIRE" is so utterly helpful to figuring out what they're doing. Because we all live in conspiracy theorist wish fulfillment movies where this one grizzled screwball is screaming about how he knew there was something called "DISHFIRE", and why didn't we believe him before, and now we can stop it... somehow... whatever it is.
  The names are mostly random because they don't necessarily bear any resemblance to the projects.
  But having a publicly-trawlable bunch of data that links real-world humans, their real-world qualifications, and the projects that they've been read in on, however, is precisely the sort of social graph that an adversary could use to figure out what the codenamed projects are actually all about.
  If there are dozens of cunning linguists and digital signal processing experts working on DEATHSTAR, and all the people who list MSPACMAN happen to have oceanography backgrounds or prior experience at companies that make precision optics, it doesn't take a genius to see that despite their names, DEATHSTAR is the project that's more likely to be NSA Line Eater, and MSPACMAN the project that involves sharks with frickin' lasers on their heads.
12. Re:A fleeting moment of rich irony. by 1s44c · 2013-07-11 08:46 · Score: 3, Interesting
  
  I laughed until I realized that these are the people who have legal permission to force IT giants to do whatever they want.
  The world is screwed.
13. Re:A fleeting moment of rich irony. by Sir_Sri · 2013-07-11 09:33 · Score: 3, Insightful
  
  REVEALING THE NAMES OF ANALYSTS WITH ACCESS TO TOP SECRET PROJECTS!
  
  That, and a lot more is easy to find now that the NSA data centres are off in the middle of no where.
  When your major work is done in major metropolitan places this is hard, but in bluffdale Utah this is super easy. Look for the expensive houses on the land registry and being publicly listed. Anyone who doesn't have any obvious source of a big income works on something important at either camp williams or the NSA data centre. You have their house, spouse(s), kids, kids schools everything. All with public information.
  Small towns are incredibly easy to infiltrate for this sort of thing. If you want to know who is most vulnerable all you need is the local pimp and an employee at the local credit union and you can find everything you need about enough people in the town to get everything you want.
  There are other things you could look for too. Who has the fastest internet service, who gets a lot of computer parts packages from newegg etc. Who frequents the expensive restaurants, who drives the newest most expensive cars? If you want to figure out who the special forces guys are in any western country, go to the city where their training base is are and look for sports cars. (Gurkha's obviously not until recently as they weren't paid enough for sports cars).
14. Re:A fleeting moment of rich irony. by Vintermann · 2013-07-11 19:19 · Score: 2
  
  It isn't just the names that are revealed. You can infer from the profiles quite a bit of information about what these programs are used for. Take quotes like these (from various public posts):
  
  Utilized ANCHORY/MAUI reporting database to correlate and verify target selections.
  Utilized AIRGAP for discovery of priority targets within the missions AOI.
  Used Marina as a tracking and pattern of life tool on selected targets within the missions AOI.
  Used Marina as a raw SIGINT data viewer for detection and analysis of priority targets.
  Used HOMEBASE as coordination and tasking tool with other DNI analysts.
  
  --
  xkcd is not in the sudoers file. This incident will be reported.
Sounds like FOIA time by Bob+the+Super+Hamste · 2013-07-11 05:40 · Score: 3, Interesting

To me this sounds like it is time to file a bunch of freedom of information act requests. The bigger question is what if anything will the media do with this newf ound info.

--
Time to offend someone
1. Re:Sounds like FOIA time by alphatel · 2013-07-11 06:50 · Score: 4, Informative
  
  To me this sounds like it is time to file a bunch of freedom of information act requests. The bigger question is what if anything will the media do with this newf ound info.
  I requested more info for you, here is some you should enjoy
  http://s3.documentcloud.org/documents/716069/boozallenhamiltonnsa.pdf
  
  Apparently Booz employees forgot that their cloud documents are.... well, public
  
  --
  When the foot seeks the place of the head, the line is crossed. Know your place. Keep your place. Be a shoe.
2. Re:Sounds like FOIA time by pellik · 2013-07-11 07:47 · Score: 2
  
  My bet is they will talk about Snowden some more.
3. Re:Sounds like FOIA time by pellik · 2013-07-11 07:53 · Score: 2
  
  That pdf is just someone copy/pasting keywords they recognize but apparently don't understand. For example they are looking for experience with penetration testing, and then the next requirement is pen testing. Reverse Engineering comes up twice in the same list. It's so repetitive that I'm just not sure I can believe this is a legitimate document of any sort.
4. Re:Sounds like FOIA time by PopeRatzo · 2013-07-11 08:04 · Score: 2
  
  The bigger question is what if anything will the media do with this newfound info.
  Considering how the press reacted to Edward Snowden's revelations, they will probably ask the question, "Should LinkedIn be prosecuted for leaking this information?" and, "Is LinkedIn a traitor?"
  
  --
  You are welcome on my lawn.
Simple explanation by Sparticus789 · 2013-07-11 05:43 · Score: 5, Informative

Project code names are not classified, ever. Every project has a unclassified code name like any of the above which can be used for things like budgeting and frankly, resumes. A guy I know tried to get "FLUFFY BUNNY" approved as a code name, but they denied it. The easy way to tell, is that unclassified code names are single words chosen by a random computer word generator, and the classified code names are always 2 words, chosen again by a random computer word generator.
While this may be interesting, the reality of the Fort Meade area is that any job in intelligence, analysis, or IT with a location of Fort Meade or Annapolis Junction, MD is a NSA job. Some of them even post on Craigslist and one time, I had a Facebook add pop up that said "Want an NSA Clearance?" (not a typo, the company messed up their grammar).

--
sudo make me a sandwich
1. Re:Simple explanation by TheNinjaroach · 2013-07-11 05:53 · Score: 4, Informative
  
  Want an NSA Clearance?
  That grammar is not incorrect. Phonetically, the "N" begins with a vowel sound so "an NSA" is correct.
  
  --
  I went to eat some animal crackers and the box said, "Do not eat if seal is broken." I opened the box and sure enough..
2. Re:Simple explanation by heypete · 2013-07-11 05:57 · Score: 4, Informative
  
  I had a Facebook add pop up that said "Want an NSA Clearance?" (not a typo, the company messed up their grammar).
  According to Purdue, words that start with consonants may be preceded with "an" if they have a "vowel sounds". They give the example of "an MSDS" and "an SPCC". Similarly, words that start with vowels but have consonant sounds use "a".
  I'm no expert in grammar, but it seems possible that "an NSA clearance" may be correct.
  Any experts want to chime in?
3. Re:Simple explanation by Sparticus789 · 2013-07-11 06:08 · Score: 5, Interesting
  
  Simple answer, yes. Complex answer, sometimes the project managers want a hip and cool project name so they try to come up with a generic term for their project that is similar to what the project does. The project name has to go through a CAO (classification advisory officer), of which there are 20-25 at any given time. They are always people in positions that can be named to the public, so any name of an individual on the NSA website is a CAO. Like the Director of the NSA or the division chiefs. The CAO determines whether or not the project name gives away too much information about the details of the project.
  In all reality, all of those project code names are probably one specific type of information that just came from different sources. Pinwale is e-mails. So one of them is a database of foreign HF intercepts, another is a database of foreign-bound cell phones, one is a database of every phone call made by political opponents of the administration, etc.
  
  --
  sudo make me a sandwich
4. Re:Simple explanation by BForrester · 2013-07-11 06:08 · Score: 4, Informative
  
  You're mostly right.
  - "Want a NSA clearance?" is incorrect.
  - "Want an NSA clearance?" is better.
  - "Want NSA clearance?" would be better still. There's no need for an article at all.
5. Re:Simple explanation by Mashdar · 2013-07-11 06:55 · Score: 5, Informative
  
  In English, a/an are selected phonetically and are otherwise identical. "An" does not imply plurality (in fact it implies singularity).
  Substituting "NSA" for "security" in your examples does make a difference, because "NSA" begins with a phonetic vowel sound, whereas "security" begins with a phonetic consonant.
  Articles in English are selected phonetically, not typographically, and thus "an NSA" is correct, whereas "a NSA" is not. This can be confusing to look at, but who ever said English was easy?
6. Re:Simple explanation by a-zarkon! · 2013-07-11 07:36 · Score: 2
  
  That grammar is correct. Phonetically, the "N" begins with a vowel sound so "an NSA" is correct.
  FTFY - Grammar police should endeavor to avoid use of the double negative.
7. Re:Simple explanation by chihowa · 2013-07-11 08:45 · Score: 3, Informative
  
  You choose the appropriate article based on how the acronym is pronounced. NSA is pronounced "en es ay", so "an" precedes the "en". NASA is pronounced "na sa", so "a" would precede the "na".
  If you pronounced NASA as "en ay es ay", you would use an "an" before it. Try actually saying "a N". It's awkward to say, which is why we say "an N".
  
  --
  If you want a vision of the future, imagine a youtube comments section scrolling - forever.
8. Re:Simple explanation by mysidia · 2013-07-11 13:48 · Score: 2
  
  one is a database of every phone call made by political opponents of the administration
  Whoa... talk about abuse of power......
  sudo make me a sandwich
  make: *** No rule to make target `me'. Stop. (What kind of sandwich?)
Black Briar by Archangel+Michael · 2013-07-11 05:48 · Score: 3, Funny

Treadstone

--
Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
Missed out the important ones by Anonymous Coward · 2013-07-11 05:49 · Score: 3, Funny

So long as CODE NIGHTMARE GREEN, MAGINOT BLUE STARS, and SCORPION STARE aren't on the list, I'm happy.
Well, happier.
Well, less unhappy.
1. Re:Missed out the important ones by lgw · 2013-07-11 07:08 · Score: 2
  
  SCORPION STARE was disappointing anyhow. I want a room where any camera in the panopticon state can be displayed on the wall monitor, and I want a basilisk in that room! Hand camera-weapons just seem so ... everyday.
  
  --
  Socialism: a lie told by totalitarians and believed by fools.
ARCMAP is not a code name- by uncwjason · 2013-07-11 05:55 · Score: 2

Awesome! I don't work for the NSA, but I do use ARCMAP....although Esri would prefer it spelled "ArcMap". It's common GIS software, not a NSA program.
arcmap by hackula · 2013-07-11 05:55 · Score: 3, Informative

Arcmap is the unofficial name for ESRI's flagship product ArcGIS Desktop.
Gives me an idea, though by Anonymous Coward · 2013-07-11 05:56 · Score: 5, Funny

I really need a job. So, I figured I could pose as an NSA person. And when a potential employer calls for a reference, they'll just say, "We cannot confirm nor deny that he worked here."
My job description could be ANYTHING. I could make up ANYTHING.
Skilled in intelligence platforms such as: BANANA, MACARONI, METRICS, SAES, SPURIOUS, HEX, SEX, LEXX, PECS.
Programmed in Python, Jython, NSAthon.
Designed and developed a super computer that has broken all records.
1. Re:Gives me an idea, though by Anonymous Coward · 2013-07-11 06:21 · Score: 2, Funny
  
  Developed a ciphertext-only key-recovery attack on AES-256.
2. Re:Gives me an idea, though by Dr_Barnowl · 2013-07-11 07:08 · Score: 5, Funny
  
  Developed a plaintext recovery attack for SHA-256
minority report by beefoot · 2013-07-11 05:59 · Score: 2

> Used a variety of tools and data to provide advanced threat warnings to American civilian, government, and military personnel He can't possible be thinking of getting a better job with that line on his linkedin profile. That's so last-decade.
No. "an" is right. by Arakageeta · 2013-07-11 06:00 · Score: 2

"The rule is that you use a before words that start with a consonant sound and an before words that start with a vowel sound."
It's all about sound. "N" is pronounced "En." Hence, "an."
Grammar Girl: http://tinyurl.com/nuj8h5a
Re:Just saying Hi!! by Sponge+Bath · 2013-07-11 06:00 · Score: 5, Funny

You know who I am.
On the internet, the NSA knows you're a dog.
Re:Just saying Hi!! by awkScooby · 2013-07-11 06:05 · Score: 2

You know who I am.
Yes, you're a foreigner, until proven otherwise.
Re:Are all of these acronyms? by SJHillman · 2013-07-11 06:09 · Score: 5, Funny

The government retains a crack team of acronymists. They spend days laboring over each acronym making it perfect. Some examples
MANPADS (Man-portable air defense system)
DILDO (Direct Input Limited Duty Officer)
ASSBAG (Airframe Structure Support Boeing Advisory Group)
**I didn't make these up, there are sources for them but that would take more effort than Slashdot is accustomed to. Plus I accidentally closed those tabs already.
Re:Michigan by Impy+the+Impiuos+Imp · 2013-07-11 06:18 · Score: 2

Wtf is right. We haven't gotten this much attention since the Great Lakes Avengers branch.

--
(-1: Post disagrees with my already-settled worldview) is not a valid mod option.
But he lacks one skill by Hentes · 2013-07-11 06:35 · Score: 5, Funny

All these skills and he still didn't figure out how to turn off capslock.
Re:Just saying Hi!! by Quirkz · 2013-07-11 06:41 · Score: 2

Everyone's a foreigner to somewhere, right?

--
The Quirkz Handbook of Self-Improvement for People Who Are Already Pretty Okay
Re: Irony as now google is your pal by Em+Adespoton · 2013-07-11 07:36 · Score: 5, Insightful

Digging a little deeper, if you refactor the contents of those search results, you get a VERY complete picture of what's going on... for example, PINWALE is the code name for Mission Systems, developed for the Military by Northrop Grumman. Most of the people who developed the system appear to be on LinkedIn :)
That's just a taste; anyone good at graph theory and data mining could probably put together quite a dossier of people and projects based on the public info available through LinkedIn/Google.
I can just imagine the interview by reluctantjoiner · 2013-07-11 08:17 · Score: 2

Interviewer: Tell me an example of when X happened and how handled it?

AC: Sorry, that information is unavailable.

--
Plan My Week for iPhone
Re:Just saying Hi!! by RabidReindeer · 2013-07-11 08:52 · Score: 4, Funny

Everyone's a foreigner to somewhere, right?
We prefer the term "potential enemy combatant".
Paste that into Google and this is what you get. by hazeii · 2013-07-11 09:29 · Score: 2

Kinda surprised this isn't linked yet (as all you need to do is paste the string into Google)
Make of this what you will.
(Do I worry about being woken at 3 in the morning with a gun in my face? Well, yes, I do).

--
All your ghosts are just false positives.