How to Prevent Future Intelligence Leaks

Americans are out of patience after deadly revelations by malcontents.

By
54
This photo illustration shows Air National Guardsman Jack Teixeira reflected in an image of the Pentagon in Washington, D.C. Teixeira is suspected of being behind a major leak of sensitive US government secrets. (Photo by Stefani Reynolds/AFP/Getty Images)

I’ll never have a better job than I did in 2002.

A reserve military intelligence officer who’d just started as a Wall Street law firm associate, I volunteered to return to active duty on September 12, 2001, furious at the attack on my hometown and murder of boyhood friends. Through the kindness of a sympathetic Fordham Law School connection, I obtained a prize assignment to the Joint Staff Directorate of Intelligence to do counterterrorism work.

My duty was to brief the director of intelligence (or “J2”) on terrorism issues at the crack of dawn, before he briefed Chairman of the Joint Chiefs Richard Myers and Secretary of Defense Donald Rumsfeld. Then I’d answer their follow-up questions in writing, reprise the brief to the National Security Council’s Counterterrorism Security Group via secure teleconference, and go to bed.

This was heady stuff at age 29. Briefing general and flag officers as an Army captain was exciting, but the heart of the job was preparing a PowerPoint slide or two analyzing that day’s best counterterrorism intelligence, which was then blasted out to everyone cleared for top secret/special compartmented information who maintained access to a Joint Worldwide Intelligence Communications System terminal. It was my little contribution to the war effort, for guys and gals serving at the front.

The J2 slides matter, so it was heartbreaking last week to see Airman Jack Teixeira of the Air National Guard arrested on charges of allegedly disseminating my successors’ slides to the online world, including America’s adversaries. I won’t give any possible Benedict Arnold the satisfaction of looking up slides criminally leaked online. But from what I understand from press reports, they reveal the imagery capabilities of National Geospatial Intelligence Agency satellites, the National Security Agency’s codebreaking skills, and worst of all, human intelligence bravely provided by sources to the Central Intelligence Agency.

Make no mistake: Russia, China, Iran, and North Korea are executing countermeasures to defeat our recon birds’ cameras, updating encryption to secure anew their communications, and beating the hell out of anyone they now suspect of spying for the United States.

President Joe Biden’s blithe remark that he is “not concerned” about these leaks was embarrassing given his mishandling of classified information as a senator and vice president, now under investigation by a special counsel—you can bet that the families of men now likely getting tortured in the basement of the KGB’s Lefortovo Prison are concerned. Rep. Marjorie Taylor Greene’s reflexive defense of Teixeira against the misnamed “Deep State” was appalling, as was Republican legislative leadership’s shamed silence about her remarks. And while former President Donald Trump has not yet weighed in publicly on the matter, his son Donald Trump Jr. has hailed Teixeira as a “hero.”

With senior leaders of both parties so far failing to defend our national interest, what can nonpartisan national security professionals, ideally backed by bipartisan congressional oversight through Capitol Hill’s remaining adults on the armed services and intelligence committees, do to prevent such leaks from happening again? Four suggestions follow.

First, the 9/11 commission appropriately identified Department of Justice-mandated segregation of information within the criminal and national security branches of the Federal Bureau of Investigation, and between the FBI and the rest of the intelligence community, as one of several reasons for the government’s collective failure to prevent that attack. Nearly a quarter of a century later, the mantra of information sharing has finally gone too far. A return, not to the artificial “wall” between criminal and intelligence information, but to a healthy respect for the concept of “need to know,” seems overdue. A junior enlisted Air National Guardsman does not need to know too much. Someone such as Teixeira may need to be in the room where classified things happen, but he doesn’t need online access and the ability to print that information.

Second, as many as 1.3 million people are now cleared for top secret information. Too much is enough, and as an initial matter, why are such young enlistees cleared at that level? The Army used to insist that male officers serve a four-year “branch detail” in a combat arm such as armor, artillery, or infantry before embarking upon intelligence work. Similarly the Special Forces were uninterested in a soldier until he’d spent at least four years in uniform, the Ranger Regiment didn’t take first-tour officers, and elite Special Mission Units were filled mostly by men in their 30s. While young servicemembers do dangerous, difficult, and important things for America, we don’t see teenage civilian police officers or FBI agents for good reason: They yet lack mature judgment. By the same token, military intelligence work is not a fit profession for very young people—first let them spend a few years’ apprenticeship carrying a rifle and humping a ruck.

Third, the security clearance process needs to refocus its attention on the rising generations’ particular vulnerabilities. As it stands, the Standard Form 86 Questionnaire for National Security is very well-suited to unmasking members of the German American Bund or the Communist Party USA in the 1940s. Bad guys, for sure, but Charles Lindbergh or Julius Rosenberg are not the biggest threat at present.

Rather, leakers such as Chelsea Manning, Edward Snowden, Reality Winner, Joshua Schulte, and now Teixeira suggest there is a newly perceived type of insider threat. While not entirely divorced from opportunistic exploitation by foreign intelligence services (see, e.g., Snowden), the current threat stems from a worship of transparency for its own sake, dangerously combined with a very “online” culture that developed over the past two generations or so (including my own)..

Fourth and finally, our security services’ efforts at continuous monitoring of clearance holders are obviously insufficient. You give up a measure of privacy when you ask to receive classified information, and we need to look more closely at clearance holders’ online activities. This means routinely scraping open, deep, and dark web sites for their use of classified terminology, as well as racist, antisemitic, or otherwise noxious or extremist propaganda, as reportedly spouted by Teixeira. We need to look more at counterintelligence vulnerabilities posed by Guardsmen and reservists’ private sector jobs, about which the military remains blissfully in the dark. Given the recent arrest of former senior FBI official Charles McGonigal, we need to look at threats posed by some retirees’ jobs as well.

None of this needed change will come naturally to a national security establishment too set in its ways. And especially not to careerist bureaucrats forever wary of “getting in trouble” and jeopardizing their next uniformed or civil service promotion by carefully and thoughtfully walking the fine line between foreign counterintelligence and domestic law enforcement. Nor will it be comfortable to politicians of either party who for ideological reasons lionize criminals such as Snowden or Manning. President Obama inexplicably commuted Manning’s sentence, trivializing an extremely serious offense.

But the American public’s patience has now clearly run out after more than a dozen years’ worth of deadly, serial leaks from malcontents in the military and the intelligence community, an awkward squad who lash out by betraying our country’s deepest secrets to our enemies only because of their personal demons. If current Pentagon and intelligence leaders were corporate executives, shareholders would demand that boards of directors fire them and insist upon independent outside investigations, just to avoid civil liability for their repeated failures to successfully implement basic compliance programs.

To regain Americans’ trust, our uniformed, security, and intelligence services quickly need to adapt to unpleasant new realities.

54
By
Comments (54)
Join The Dispatch to participate in the comments.
 
  1. Charles Stevens

    If memory serves me right, this airman was an IT technician. So he could have been handling everything from user account problems to resetting someone’s password, to backing up and archiving the servers every day. Maybe he helped a briefer load PPT files on the PC hooked up to the projector…

    He likely had access to the servers and had some administrator permissions (super users in my day), which allowed him access to files on individual PCs and stored on the servers.

    Should a 20 year old, first tour enlisted, have that level of file access… I’d say no… this is the second young enlisted IT tech (Manning and this guy) who got caught improperly accessing files, and illegally posting them to public forums. We know there are others (Snowden, etc) who worked as IT Techs and had unfettered access to information. IT Technicians have emerged as the likely threat to information espionage and illegal release.

    We know that management and maintenance of the computers, servers, file backup systems, and so much more, is a shorthanded, critical skill, and government agencies have struggled to gain enough manpower to properly staff. We know that these jobs can also be tedious, subject to many conflicting machine and software idiosyncrasies that can work great 90+% of the time, but are a b+ch to solve when they don’t. Especially when the vendor you’ve been using changes architecture, or that hardware is obsolete, and the SW patches don’t work….

    We know that not just anyone has the attributes to work in these careers. And that management can be stingy in paying the better IT techs what they’re worth. Underpaid contractor or junior enlisted, managers are trying to use the least cost people, for arguably the most important duties.

    I believe the issue is that we have to pull such young and inexperienced (with life and military) into duties that obviously lack effective supervision, and no oversight into his day to day duties. That we do not have more experience Airmen and 3stripers, or civil service, to work in these positions should have sent chills through the management of our classified Information management systems.

    For fixes… it’s unlikely that we can stop everyone with such direct access to the machines and files. But we can make it much tougher. Printers can be set up for password entry, and print jobs can require 2 person access, and a log of what was printed can be recorded. Even if he did have the files, if the log sees he’s printing 100’s of pages, then you can flag that early on…. Server access can be set up with 2 person access and only under a work order. USB ports can be physically covered and shutoff inside the machine. Same with CD/DVD and tape ports. Server and client PC access can be logged and audited.

    If the media reports are accurate, this guy wasn’t an espionage agent. He wanted to impress his online associates that he could access high level information. This was a nerd’s ego trip… which doesn’t lessen the crime, and lessen the fact that he gave our adversaries access to important information. But it does point to the lack of maturity and impulse control he has. Locked away for 10-15 years in a federal prison, eventually ending up as someone’s btch will let him think about the error of his ways…

    Collapse
    1. Avatar photo
      Travis M

      Manning was an actual intel analyst, not a comm dude like Teixeira or Snowden.

      I absolutely trust the young analyts and commo troops I've met in my IS to not intentionally leak, and forcing them into new AFSCs or into base comm squadrons is a bad idea that will hurt operations more than it will prevent future leaks.

      Collapse
  2. Avatar photo
    WKDawson

    Our system really depends on trust.

    You're right that sharing data came as a result of 9/11 and people saying "Why didn't these agencies share this information?", so now we have come full circle where we are asking "Why __did__ these agencies share this information?" For the most part, there are a million people who receive this information that have not blabbed it all over the internet to impress a few "buddies" about how cool they are. ... at least, let's hope so.

    It seems like the agencies worry more about whether someone smoked pot than they do about the real character of the person. I'm not saying smoking pot is a good sign about a person, but it is kind of ridiculous to measure loyalty and faithfulness on the follies of youth. What did they learn?

    Anyway, another catch-22, Kafkaesque world.

    Collapse
  3. Russell J

    Not sure I agree that punishing a million people following the rules is gonna be effective. I have a hunch most secure areas are pretty locked down and this National Guard unit was out of line. Punish the units that are being lax on the current rules, not the locations that take things seriously. A young guy is likely to have a clean record. What about his supervisor who doesn’t know he is goofing off all day instead of doing work. People doing work don’t have time to browse through all the nation’s secrets. And the co-workers who sit near him, they probably saw sketchy things.

    Collapse
  4. Avatar photo
    Connie

    “I won’t give any possible Benedict Arnold the satisfaction of looking up slides criminally leaked online. But from what I understand from press reports…”

    I couldn’t even read the details in the press reports. I’m reading around information I was never supposed to know.

    Collapse
  5. Deleted Comment

    This comment has been deleted

  6. Avatar photo
    Dennis

    Obama commuting Manning’s sentence was merely an adumbration of the administration-long apology tour.

    Collapse
  7. Bob.Simrak

    I don't understand why these folks aren't punished in line with the severity of their crime. If deaths result, sources compromised that should increase our concern.

    Lately, it seems it's something bored people do.

    Collapse
  8. MathewA

    Overall, I agree with this. However, as it relates to Snowden, if the government was illegally and unconstitutionally spying on Americans that probably wouldn't have happened.

    There should be ZERO surveillance of Americans without probable cause and a warrant. Feel free to spy on foreigners all you want.

    And yes people with access to classified information should keep it to themselves, unless of course that information is on illegal government activity on Americans, then it's your duty to the country and the constitution to come forth.

    Collapse
  9. Avatar photo
    Mudskipper

    Just to clarify: Joe Biden said he was concerned that the leak happened. He said he wasn't concerned about the contents of the leak because he was not aware of contemporaneous information of great consequence.

    What was amusing to me is that I found two videos from news organizations that showed his remarks. One was titled "President Biden says he is concerned about the Pentagon intelligence leak" and the other was titled "Joe Biden 'not concerned' about leaks of classified Ukraine documents."

    Collapse
  10. Nordic_man

    The rules aren’t clear, so everyone’s “I don’t want to go to jail” reflex kicks in and everything gets every 3-4 letter security acronym barfed on it. Many people hold clearances “because they might need them” and their first access to classified info isn’t something big. It’s a happy birthday email that got classified because someone was too lazy to not use a classified system. Suddenly your security posture drops because who the fuck cares about my birthday. It’s not a national secret. Suddenly you get access to “real” classified material and you have a low security posture and this shit happens. Stop classifying nonsense. Lower the penalties for improper classification and moshandling so that people don’t just default to maximalist positions just to stay out of jail, and let’s be real make the rules comprehensible and not so broad as to have good faith security personnel (including designated security officers) yoloing it every fucking day.

    Collapse
    1. Avatar photo
      The Stray Goose

      How about ‘no non official info on SIPR’?

      Collapse
      1. Nordic_man

        Lets start with SCGs

        Collapse
Load More