This single slide from an NSA Special Source Operations presentation shows that Uzbek refugee Fazliddin Kurbanov had been the subject of 702 (warantless) PRISM collection. This was not revealed to Kurbanov’s legal team when his case when to trial: see the Intercept article NSA Secretly Helped Convict Defendants in U.S. Courts, 30 November 2017.
This NSA memo from 23 March 2012 presentation describes the agency’s proposal for a fourth FAA 702 certification that would allow it to target hackers “tied to malicious cyber activity”: see the New York Times article Hunting for Hackers, N.S.A. Secretly Expands Internet Spying at U.S. Border, 4 June 2015.
24 November 2014 – Over the past 24 hours, security companies have released information about an advanced malware tool called Regin.
Symantec described Regin as “a complex piece of malware whose structure displays a degree of technical competence rarely seen”, concluding that the “capabilities and the level of resources behind Regin indicate that it is one of the main cyberespionage tools used by a nation state.”
This undated image, taken from NSA training materials, shows the role played by Executive Order 12333 in authorising the agency’s activities: see the Washington Post article Privacy watchdog’s next target: the least-known but biggest aspect of NSA surveillance, 23 July 2014.
This document lists the 193 governments, intragovernmental organisations and other entities which the NSA was granted the legal authority to intercept communications “about” for foreign intelligence purposes in August 2010: see the Washington Post article Court gave NSA broad leeway in surveillance, 30 June 2014.
This 2010 certification from the Director of National Intelligence and the Attorney General asserts that procedures are in place to ensure foreign intelligence gathering stays within the boundaries of the law by targeting people “who are reasonably believed to be outside the United States.” The breadth of the authority is, however, very wide, allowing surveillance of communications “about” 193 countries and other entities specified in a separate document: see the Washington Post article Court gave NSA broad leeway in surveillance, documents show, 30 June 2014.
This internal NSA document from April 2013 gives background information to prepare for the then GCHQ Director’s visit on 30 April and 1 May; included topics include access to PRISM data, FLAME malware, Iran, Syria and Israel: see the Intercept article British Spy Chiefs Secretly Begged to Play in NSA’s Data Pools, 30 April 2014.