WASHINGTON: Three former US intelligence and military operatives have admitted providing sophisticated computer hacking technology to the United Arab Emirates (UAE) and agreed to pay nearly $1.7 million to resolve criminal charges in an agreement that the Justice Department described on Tuesday.
Marc Baier, 49, Ryan Adams, 34, and Daniel Gericke, 40, agreed to pay a cumulative $1.7 million in penalties, the amount they earned while working for the UAE, to resolve charges of violating US export controls, computer fraud and illegal use of other people’s computer access.
The defendants — Marc Baier, Ryan Adams and Daniel Gericke — are accused of working as senior managers at a UAE-based company that conducted hacking operations on behalf of the government. Prosecutors say the men provided hacking and intelligence-gathering systems that were used to break into computers in the United State and elsewhere in the world.
The federal district court in Alexandria, Virginia agreed to defer prosecution for three years in the complex case, which highlighted the global market of government’s seeking highly trained computer security experts to spy on perceived enemies and threats.
The three defendants had worked in the US intelligence community, including the National Security Agency and in the military.
According to the justice department, they had worked for a US company providing cyber intelligence operations for the UAE government that met US regulations.
They then moved in 2016 to higher-paying jobs at a UAE government-linked company, identified in media reports as DarkMatter, where they began carrying out hacking jobs on designated targets, including servers inside the United States.
One of those jobs gave them illicit access to “tens of millions” of smartphones and mobile devices, the justice department said.
The specific targets of the operation were not identified.
But media reports said the targets were both inside and outside the country, and the operation’s methods consisted largely of uploading malware and exploiting software and hardware vulnerabilities to break into and gain control of servers, phones and other digital equipment.
Aside from paying fines, the three men were stripped of US security clearances, banned from the US intelligence community and forbidden from hacking.
The US Federal Bureau of Investigation “will fully investigate individuals and companies that profit from illegal criminal cyber activity,” said FBI Assistant Director Bryan Vorndran in a statement.