iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

The Snowden Files: British Spies Used Sex and 'Dirty Tricks'

Slideshow No. 2

These slides, from a top-secret spy conference in 2010, were prepared by GCHQ, the British signals intelligence agency, describing cyber operations and proposals for operations. The slides focus on the efforts of a unit, the Joint Intelligence Research Group, or JTRIG, and include a proposal to use foreign journalists for intelligence operations.

The slides were leaked by former NSA contractor Edward Snowden and obtained exclusively by NBC News, which is publishing them with minimal redactions.

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com UK TOP SECRET STRAP1

^ G C H Q ^

Full-Spectrum Cyber Effects

SIGINT Development as an enabler for GCHQ's "Effects" mission

'this infurminiim h excmj'i under /IK- faiW D) Intimation. U120U01 FOIA I ,m>! may be exempt unkr inker LK htfirmafhw le&sl&kn Refer any FOIA iprertes in Oi'/HJ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Effects Destroy | Deny | Degrade | Disrupt | Deceive | Protect

Computer Network Attack (CNA) Computer Network Information Operations (CNIO) Disruption

vvf unJer Ute FreeJiun uf lipitrtiiuiHMi Act 20001FOIA I tind nun- be exempt muter Other UK tn/ivmu/ltm leg'isluthMi Refer any FOIA queries lu UCHQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Effects in ^ g c h q ^

Definition: having an impact in the real world

Key deliverers: JTRIG and CNE

Now major part of business - 5% of Operations

Across all target types

Continuous innovation of new tools and techniques

Thii litjormuiiiit i> eretifff wnk-r the hxctUmt <rf In/nrnttunn. l i t JIHHI ! FOIA f ,utj muy he exempt under txlkx I'K U^i<etmnkm Lxt\UtUm Refer tun FOIA i/uerle* M GL'ftÇf

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

CNIO Computer Network Information Operations

Propaganda Deception Mass messaging Pushing stories Alias development Psychology

L u j I Cv.

flickr You

facebook

iiitt^i^li^reriloa^nii^mitiiiiii i<7 2000 ihlil Ii I mil may be exempt muter mlier I-A inturmukm leghila km Refer um- KU I qmrfex III tj( 'HQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Disruption I CNA

• Masquerades • Spoofing • Denial of service

- Phones - Emails - Computers - Faxes

Thh ¡nfanmuutn A exempt Act KMHHHNAt oixinniy he exempt under other UK information kgjhJatkm. Refer any H>1A queries fa GCHQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP S E C R E T S T R A P 1

C a l l

" b o m b i n g "

Individual/Enterprise Low Impact

H o t e l

A t t a c k M a r i t i m e C y b e r

Critical Infrastructure

Country wide High impact

W i F i D O S

Email/SMS Spoofing

PSYOP (social networks

/phone/ email)

I n t e r n e t

R o u t i n g

i irihter IIK- hreetbtn t>f hi/itrma/iim. Iff 201)0 lFOI.il tux! may he exempt unJer <Hher I A inlormmimi le^ixiatittn Reter cun h OH queries lo IX 'HQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Information Operations INFINITE CURVATURE/MOUNTAIN SLOPE

Sending messages across the full spectrum of communications

Telephony SMS FAX Email

SALAMANCA Data Mining

Open Phone Code Source

Prefix

RADIUS Data TDIs

IP GEO TDIs

otion Act 20011 it (HA I and may be exempt under other UK mlonttathm h-xixJatian Ref er any FOIA queries ta (X 'HQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

From: reservations@expen8ivehotel.com To: new-target@mod.gov.xx

"Thank you for reserving.

UK TOP SECRET STRAP1

ROYAL CONCIERGE A SIGINT driven hotel reservation tip-off service

ROYAL CONCIERGE exploits these messages and sends out daily alerts to analysts working on governmental hard targets

What hotel are they visiting? Is it SIGINT friendly?

An enabler for effects - can we influence the hotel choice? Can we cancel their visit?

We can use this as an enabler for HUMINT and Close Access Technical Operations

" Iimhr rlh- tnviltun nihi/nrmuli'itr la XHIO/Htl.b m"! maybe <-fWj» unU'rtHher UK inlarmatinii legislation Refer any FOU i/inriei n> (<< HQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Mobile Information Ops

50 new mobile TDIs being Developed by end of 2010

Also - Target Geographical Identifiers (TGI)

We can shape CNIO against specific locations, users with a high degree of cognition

t ir/k/iT ilh• freedom nt litlormiUnii Act 20tM) tHHAt itth! may he exempt under other ! information te^h/ation Refer any KM A queries to IK'HQ

¿ I NBC NEWS INVESTIGATIONS

UK TOP SECRET STRAP1

Human Systems Analysis

Foreign News Agencies: Credential Harvesting Employee Analysis

SIGDEV; -Mho? -ha»? -why?

Data in New Data out

• Data out

Social not technological solution This ¡i>(t>rmtun*t t\ çrrwjn under the Freedtmt <tf Informutùm Act 2<MH) tl-OIAi ami may Ac exempt under tnher t.K inlnrHMtimi le&ilirtian Refer am FOIA queries lo IK HQ

iSSk NBC NEWS INVESTIGATIONS investigations.nbcnews.com

UK TOP SECRET STRAP1

Future?

Joining up with 5 EYES where possible (cyber development)

Formalising Tradecraft for Analysts:

"What SIGDEV needs to be done prior to starting an Effects operation?"

SIP and VoIP Effects - Denial of Service, Psychological Operations

Provide the defensive advice from the offensive perspective

This i/if/>r>ttalitit I\ >titn/x muter the f-nwhun <V hiiormmhui .let 20IH) iK)IA) and may he ercmpt muter itiher VK itjarmMhn /eghdtukm Refer any K)IA ifuerin mtU'HQ