For a few months, I have been speculating there were deeper ties to the CIA or NSA for Rodney Joffe. There were a number of indications of that, which I have covered.
Today, the government produced records responsive to my FOIA. We sued the Department of Defense for records, and now we have them.
My FOIA was:
One of the first emails that stood out was sent from Rodney Joffe to Keromytis, noting:
This is confirmation that Joffe worked for the NSA in some capacity.
It’s important not to make leaps of speculation, but there are many possible implications to this. We know the NSA is a corner piece to much of the DNC hack story. Was Joffe involved? We don’t know.
As I have repeatedly reported, there has been a source who alleges Joffe played a key role in the attribution for the DNC hack. Whether that was was for the NSA or FBI (where he also has a lot of contact) or to DARPA/DHS/others, is unclear.
We also have confirmation that Joffe was in contact with Schneck and someone that appears to work for Army Cyber Command [might be time for me to kick the tires on my FOIA’s there].
There are also several references to “APT” which is not dispositive of Russian hackers. It could be, but it’s just unclear. APT is a general term.
There are additional emails that are quite interesting from a timing perspective:
They seem interested in looking at APT’s. This could be Fancy Bear/Cozy Bear, as written, it is more general.
Another email that peaks my interest is this one, where Manos/DARPA gains access to Packet Forensics data.
Here is a link to all of the files: https://docdro.id/aJLgEDl
Those early 2016 dates of partnering between Joffe, DARPA, GT? Is this just convergence around the Attribution project? Wondering if it’s all in keeping with the terms of the RFP process. It would be I tersting to overlay timeline with the official contractor selection process. Was GT/Joffe joint venture or primary sub arrangement shortlisted at this time?
Interesting