Intelligence Officials Claim Private Server a Foreign Spy Magnet

Hillary Clinton’s private email server was a spy magnet for the Russian, Chinese, Iranian and other intelligence services, say current and former intelligence officials.

As secretary of state, Clinton routed all her government-related email through the server, based in her house in Chappaqua, New York. She reportedly hired a Cablevision subsidiary to run the server, with antivirus protection from Intel‘s McAfee. And she registered her domain name, clintonmail.com, through Network Solutions.

Intelligence professionals fear that the use of the privately installed server, free of certified government defenses against foreign interception, has been a boon to foreign cyberspies.

“By using her own private server with email — which we now know was wholly unencrypted for the first three months of Hillary Clinton’s tenure as secretary of state — she left this easily intercept able by any decent 21st century SIGINT service,” John Schindler, a former National Security Agency (NSA) counterintelligence officer, said.

SIGINT is shorthand for signals intelligence, or electronic spying.

“The name Clinton right on the email handle meant this was not a difficult find,” Schindler said. “We should assume Russians, Chinese and others were seeing this.”

‘Epic’ Counterintelligence Disaster

“In all, this is a counterintelligence disaster of truly epic proportions, not to mention that, since Clinton admitted she did not use higher-classification email systems at all” — systems like the Secret Internet Protocol Router network (SIPR) and the Joint Worldwide Intelligence Communications System (JWICS), Schindler said — “we have to assume some bleed-over into her unsecured private email too, which makes this even worse.”

SIPR is a run by the Department of Defense to ensure secret communications for the U.S. military, other agencies and certain allies. The JWICS is used for top-secret government communication. Both provide secure communications for the State Department and secretary of state. Clinton’s private server was not protected by the Department of Homeland Security’s Einstein intrusion detection system, which relies on NSA systems, for official State Department emails.

“She may have deleted 30,000 e-mails before turning her files over to the State Department, but that doesn’t mean that the Russians and the Chinese don’t have them,” Michelle Van Cleave, former U.S. National Counterintelligence Executive, said.

Others say that the potential damage to U.S. national security is so grave that the FBI should seize the server and conduct a forensic analysis to determine the extent of foreign penetration. That analysis would be part of what is called a damage assessment, which is routine after any suspected security breach.

FBI Forensic Analysis

The FBI might not find anything now, though, according to Rep. Trey Gowdy (R-S.C.), chairman of a House investigative panel, who says that Clinton had the server wiped clean. Still, the forensic analysis by trained personnel could yield valuable clues about foreign spies gaining access to America’s most fiercely guarded secrets. Gowdy has called on Clinton to appear before his committee for what he called a “transcribed interview regarding her use of private email and a personal server for official State Department business.”

Rep. Ken Buck (R-CO), a former prosecutor, said that the FBI should conduct a forensic analysis of any attempted foreign penetrations, to determine which foreign intelligence services might have hacked into Clinton’s email server.

“Denying a legitimate request by the bureau to examine her computer would certainly suggest that America’s security is not Clinton’s highest priority,” Buck said. “The FBI investigated a sitting CIA director for intentionally disclosing classified information. The bureau can certainly investigate whether a former secretary of state unintentionally disclosed classified information,” Buck said. “The motive may be different, but the potential damage to national security is similar.”

Why Clinton hasn’t offered to turn over the server to the FBI, or why the FBI has not seized it to assess the damage to national security, is unclear. A Clinton spokesperson declined to comment.

In a question-and-answer sheet provided to reporters, Clinton did not address the issue. The FBI won’t say whether or not it made a request or took possession of the server. The bureau does not have the device, according to a highly placed FBI source. That source is not cleared to speak to the press and could not speak on the record.

The lure of reading a secretary of state’s emails would exert a pull on any foreign spy, intelligence officials say.

Where, on a scale of one to 10, would any sitting secretary of state rank as a target of foreign spies? “10, of course,” Van Cleave. “That being the case, all of her e-mails would have been potentially of interest to any number of foreign parties.”

“A target like this would be at least a 10, maybe 10-plus if the enemy knew the email address and server,” Robert W. Stephan, a former counterintelligence analyst at the Defense Intelligence Agency who also served 19 years in the CIA, said. “If a foreign intelligence service determines that it is indeed the secretary of state’s private communications/e-mail/server and even given the security measures that were set up, it would still be a top target for some sophisticated services,” Stephan said. “Obviously Chinese, Russian and Cuban, and possibly Iranians and North Koreans.”

That statement presumes that the server was strongly protected against outside penetration, which does not seem to be the case. News reports indicate that the server’s security configurations were done improperly, protecting Clinton’s personal privacy and not national security; and even if everything was done by the book, that type of server and software package remains vulnerable to a good hacker.

“A 16-year-old can break into a server, and certainly a government sophisticated enough to break into the Sony system can break into Hillary Clinton’s system,” Buck said. “That’s a no-brainer.”

How would adversary spy services exploit this intelligence? “The positions, the interests, the communications between the secretary of state and her staff are of great interest to any foreign intelligence service, whether hostile or friendly,” Paul Joyal, former director of security of the Senate Select Committee on Intelligence, said.

“The American secretary of state using an open, unprotected server? That’s an invitation to a party,” a veteran intelligence officer who asked for anonymity because he still holds active clearances said. “All of her private musings. There’s no secretary of state who doesn’t communicate with classified information. How the hell could she do her job without it?”

Gateway To Government Systems?

“From a counterintelligence perspective, (for) anyone with any responsibility for intelligence, counterintelligence and security, this thing is a monumental disaster,” the longtime senior intelligence officer said. “It’s a disaster for U.S. policy. It’s a huge boon for the former KGB and the Iranians.”

Some experts are concerned that foreign spies could have penetrated the server as a gateway to breaking into other government systems, including classified communications.

“The real question is, what if any intelligence collection was being done on a private server somewhere?” Joyal said. “The only way to know is for the proper federal authorities to impound the server and do a forensic analysis.”

“It would be possible for a hostile service to use the server as a platform to deliver other malware to other targets of their choosing, based on their knowledge of whom the former secretary and president were communicating with,” Joyal said.

‘Vast Deception Potential’

Foreign spies could use their access to Clinton’s server to warp or distort information that government officials rely on.

“If they’re getting into her server, they’re not just extracting stuff,” a senior former Defense Department official, who spoke on condition of anonymity, said. “They’re going to do things that could be planted from other sources.”

“The denial and deception potential here is vast,” John Schindler, referring to intelligence tradecraft in which a spy service denies or conceals information and seeks to deceive other countries, said. “Not to mention that any shady games played” by the Obama administration “would be known to Moscow and Beijing — but not to the American public.”

“It could affect a number of people within the U.S. government and, for that matter, people around the world,” Joyal said. “It would behoove the federal government to conduct a forensic analysis of the server itself.”

Until such a forensic analysis is done, he said, authorities simply will not know the answer.

“This should not be politicized,” Joyal said. “It should be done with hard-nosed national security interests driving the forensic analysis.”

• Waller is a senior reporter at the American Media Institute, a nonprofit news service.