Lee Fang | The Nation

Senator Mitch McConnell with senators Mike Johanns, left, and John Cornyn, right. (AP Photo/Charles Dharapak.)

This morning, Mother Jones dropped a bombshell of a story revealing Senator Mitch McConnell and his top aides discussing how they planned to use Ashley Judd's mental health and religion to smear her in a political campaign. (Judd, a potential Democratic challenger to McConnell, recently announced she would not run). The Republican Party has reacted with anger, claiming that the story, based on a recording given to reporter David Corn by an anonymous source, is based on "Watergate-style tactics," insinuating that some type of break and entry occurred at McConnell's office.

The claim appears to be a distraction at this point since there is no evidence that the recording was illicitly obtained. Mother Jones says its lawyers vetted the tape, as the Washington Post's Greg Sargent notes.

While I'm certain much of the political press will leap at McConnell's unsubstantiated claims of Watergate tactics, there's another scandal of political espionage and snooping that has not received much attention. And in an ironic twist, it relates to McConnell since the organization at the center of it is one of the senator's closest allies in Washington.

First, let's establish what constitutes "Watergate-style tactics." In June of 1972, a group of former CIA officers, working on a plan concocted by Richard Nixon and his closest aides and financed by a secret campaign fund, broke into the offices of the Democratic National Committee—housed temporarily in the Watergate building by the Potomac—to install secret recording devices (bugs) and to steal information from Democratic leadership. The plan was part of Nixon's reelection effort that year. During one of the attempts, a piece of tape left on a door in the DNC office tipped off a security guard to the trespassing Nixon operatives. The political press largely ignored the burglary until two intrepid Washington Post reporters dug deeper into the scandal, which of course led to Nixon's impeachment hearings.

In the modern age, the same goals of the Watergate break-in can be achieved without physically breaking or entering any actual buildings. Modern hacking technology allows a criminal to send a PDF or another file to their target, and as soon as the file is opened, every e-mail, every keystroke, every document and database on that victim's computer can be accessed remotely by the criminal. Such technology has been used by the American government to go after al Qaeda and other terrorist threats. But recent evidence shows that the Chinese government and even American interests appear willing to use this form of hacking against political targets here in the United States.

In the Fall of 2010, attorneys for the US Chamber of Commerce, the largest big business lobbying organization in the country (and not be confused with local chambers of commerce), began working on a secret plan to discredit and destroy their political opposition. The Chamber had just spent a record amount on the midterm elections to elect a new, much more Republican Congress—using corporate money, thanks to Citizens United. The Chamber had also faced a series of scandals, from a story in the New York Times revealing that it had laundered charitable money from AIG for political purposes to a story I wrote for ThinkProgress revealing that it had solicited foreign money for the same legal 501(c)(6) entity used to run partisan campaign ads.

The Chamber's attorneys began working with a crew of military contractors—including HBGary Federal, Berico, and Palantir—to devise a plan that could be used against the AFL-CIO, SEIU, the Center for American Progress, US Chamber Watch and other liberal critics. Some of the proposals were simply unethical: efforts to plant false documents, impersonate liberals, etc. HBGary Federal inadvertently revealed the entire plot by threatening a splinter group of Anonymous, the hactivist collective, which then proceded to steal all of HBGary Federal's e-mail and release them onto the web. Scott Keyes and I first broke the story, using the e-mails. However, out of the 70,000+ e-mails, the initial press coverage about the HBGary Federal scandal related to simply the unethical sabotage plans in one or two of the proposals.

Please support our journalism. Get a digital subscription for just $9.50!

About a week after the initial story broke, we came upon another series of presentations buried within the e-mails, which included illegal hacking tactics well beyond what we had initially reported. The presentation notes that one of the consultants involved in the effort had expertise in “Information Operations” and could use “computer network attack,” “custom malware development” and “persistent software implants.” Boasting that they could establish a “fusion cell” of the kind “developed and utilized by Joint Special Operations Command (JSOC),” the contractors' presentation claims they could use “zero day” attacks to exploit vulnerabilities in Flash, Java, Windows 2000 and other programs to steal data from a target’s computer.

This hacking technology—which allows one to seize control of a target computer without the victim's knowledge—mirrors the type of cyber tactics used by the government against terrorist threats. Notably, HBGary and Palantir, two of the firms involved in the plan, have extensive contracts with the US military. In fact, as I reported for The Nation in March of this year, the Chinese military hackers exposed recently by The New York Times and the firm Mandiant solicited a website set up by HBGary to develop some of their hacking technology used against American firms and other interests.

There were no discussions in the leaked e-mails about the legality of using such tactics. Rather, the Chamber’s attorneys and the three contractors quibbled for weeks about how much to charge the Chamber for these hacking services. At one point, they demanded $2 million a month. HBGary Federal and their partners were scheduled to meet the Chamber to finalize the deal on February 14, 2011, just days after Anonymous stole their e-mails and revealed the plans. As I've noted before, the Chamber, despite e-mails showing they had met with their law firm to discuss the project, denied any knowledge of the proposal and said it had never compensated the firms or entered into any agreement for the work described in the proposals.

The Chamber and McConnell have a long history of working together. One of McConnell's most trusted advisors, Steven Law, became the top attorney to the Chamber through mid-2010. There's no evidence McConnell had any knowledge of the Chamber plot.

However, the proposals in the leaked e-mails make clear that Watergate-style break and entry against political targets is easier than ever, and requires no messy burglaries or "bugs." If law enforcement is worried about political espionage, they should start with one the plot that has an obvious paper trail.

In his last post, Lee Fang takes on the political donations that corporations get away with not reporting.

A book lampooning Barack Obama at the CPAC conference last year. (Reuters/Jonathan Ernst.)

In recent years, Microsoft has become one of the most gay-friendly corporations in America. Yet, as the company unveils a new advertisement featuring a same-sex wedding and signs onto a brief supporting marriage equality, Microsoft provides support for CPAC, the agenda-setting Republican conference that has moved to eject gay Americans from the conservative movement.

As Americablog reported, for the second year in a row, CPAC refused to allow GOProud, a right-wing gay advocacy group, from participating in their conference this week. “We got kicked out last year because we are gay,” said GOProud’s Jimmy LaSalvia over Twitter, adding, “We won’t be at CPAC.”

Though the American Conservative Union, the sponsor of CPAC, does not reveal its donors, I have a list of the group’s benefactors in previous years. In addition to Shell Corporation, the Edison Electric Institute, Koch Industries, and Chevron, Microsoft provides a significant contribution to the American Conservative Union Foundation. It appears that this year is no different. The Huffington Post’s Zach Carter tweeted a photo of Microsoft’s booth at the convention yesterday. The American Conservative Union’s board also includes a Microsoft representative, Suhail Khan.

Microsoft lobbies on dozens of issues, from tech policy to trade and tax issues. It seems likely that Microsoft helps underwrite CPAC to maintain influence among conservative activists and Republican politicians—to sell products and promote economic policies beneficial to Microsoft’s bottom line.

CPAC has been criticized not only for discriminating against GOProud, but also for providing a forum to a number of virulently anti-gay activists. If Microsoft is truly interested in reforming policies affecting gay Americans, it appears counterproductive to provide financial support to CPAC.

And it’s not only Microsoft that may face charges of hypocrisy. Cleta Mitchell, a partner to Foley & Lardner, the “Best Law Firm for LGBT Lawyers,” sits on the board of the American Conservative Union, which governs how CPAC is set up and run.

Notably, the Competitive Enterprise Institute (a big business-friendly think tank also sponsored in part by Microsoft) joined with a small group of conservative pundits to sponsor an event with GOProud near CPAC’s official confab, in part to protest the exclusion of gay conservatives.

Attorney General Eric Holder, center, accompanied by US Intellectual Property Enforcement Coordinator Victoria Espinel, left, and Acting Commerce Secretary Rebecca Blank, speaks about strategy to mitigate the theft of US trade secrets, Wednesday, February 20, 2013, in the Eisenhower Executive Office Building on the White House complex in Washington. (AP Photo/Jacquelyn Martin)

The revelation, made by The New York Times and a firm called Mandiant last month, that the Chinese military is engaging in a sophisticated campaign of Internet spying and cyber attacks targeting American corporations and government websites provoked widespread alarm. What hasn’t been noted is that the Chinese plot bears much in common with a conspiracy to spy on and sabotage liberal advocacy groups and unions—a plot developed on behalf of none other than the US Chamber of Commerce back in 2010.

Indeed, Mandiant identified the Chinese plot by combing through the database of hacking tools managed by the same individuals associated with the American firm that had been enlisted to help the Chamber execute its spying and hacking plan, before it was exposed by the hacktivist group Anonymous.

Attorneys for the Chamber were caught negotiating for a contract to launch a cyber campaign using practically identical methods to those attributed to the Chinese, which reportedly could be used to cripple vital infrastructure and plunder trade secrets from Fortune 100 companies. The Chamber was seeking to undermine its political opposition, including the Service Employee International Union (SEIU) and MoveOn.org, but apparently had to scotch the plan after it was revealed by Anonymous.

At the RSA Conference in San Francisco, the “nation’s largest gathering of cyber security professionals,” The Nation spoke to a number of experts who said the same invasive strategies employed by the Chinese military could be easily used in political campaigns and other political contexts by anyone willing to take the risk.

The story of both the Mandiant report and the American lobbyist hacking conspiracy begins in February of 2011, when the hacktivist group Anonymous stole some 70,000 e-mails from a Bethesda, Maryland-based firm called HBGary Federal and dumped them onto the Internet. HBGary Federal was an affiliate of HBGary, a firm that maintained a database and discussion forum of hacking software called Rootkit.com, which served as a “malware repository where researchers stud[ied] hacking techniques from all over the world.” It appears the Chinese hackers, known as the “Comment Crew,” had participated to gain the types of software used to compromise computers owned by dozens of American interests.

The Mandiant report details how the disclosure of Rootkit.com’s user database from Anonymous not only revealed the e-mail account associated with UglyGorilla, or Jack Wang, and SuperHard_M, or Mei Qiang, two of the alleged Chinese hackers, but the IP address that helped confirm the Shanghai Pudong location of the Chinese military office building, from which it launched attacks on US-based targets. As Nate Anderson of Ars Technica reported, the theft of HBGary Federal’s data offered the Mandiant researchers a “treasure trove of information.”

Rootkits, a term used to describe software that can gain access to computer systems without detection, can often be used for malicious purposes. Asked why he thought the Chinese military would participate in an American site like Rootkit.com, Richard Bejtlich, Mandiant’s Chief Security Officer, told The Nation that at least initially, “If you wanted to get up to speed on that technology, that’s where you went.”

Mandiant compared the information from the Rootkit.com user database with data from other cyber security breaches attributed to Chinese hacking attempts to come to the conclusions in their report.

According to The New York Times and Mandiant, the Shanghai-based Unit 61398 of the People’s Liberation Army employing the “Comment Crew” hackers relied largely upon spear-phishing (often an e-mail to trick the recipient into opening a document or attachment containing a malicious piece of software, like a rootkit) to gain access to firms like Coca-Cola, the National Electrical Manufacturers Association, EMC, and Telvent, a company that produces programs for remote access for oil and gas pipelines.

As policymakers and major American companies continue to react to the news about the Chinese hacking, similar threats could play a role in labor organizing and political campaigns.

The disclosure of HBGary Federal’s e-mails revealed one of the most brazen political espionage efforts in recent memory, which underscores this threat.

In October of 2010, HBGary Federal was solicited by Matthew Steckman of the firm Palantir on behalf of attorneys representing the US Chamber of Commerce “about offering a complete intelligence solution” and “social media exploitation.” The Chamber had dealt with critical news about an IRS complaint alleging that the insurance giant AIG had illegally laundered millions of dollars to the Chamber in September. Also around that time, I wrote a separate story for ThinkProgress revealing fundraising documents that showed the Chamber had solicited foreign corporate money for the same 501(c)(6) legal entity the Chamber used to run campaign commercials during the midterm elections. The leaked HBGary Federal e-mails show the Chamber was interested in responding aggressively to this pressure.

By November of that year, Palantir, HBGary Federal and another firm, Berico, had discussed the effort to push back against the Chamber’s critics several times with a number of the Chamber’s attorneys at the law/lobbying firm Hunton and Williams, and had prepared a series of presentations detailing their proposal to the Chamber. One of the attorneys involved in the discussions, Hunton and William's Richard Wyatt, had already been retained by the Chamber to sue the Yes Men, a comedic advocacy group, for impersonating the Chamber at a prank press conference.

The presentations, which were also leaked by Anonymous, contained ethically questionable tactics, like creating a “false document, perhaps highlighting periodical financial information,” to give to a progressive group opposing the Chamber, and then subsequently exposing the document as a fake to undermine the credibility of the Chamber’s opponents. In addition, the group proposed creating a “fake insider persona” to “generate communications” with Change to Win, a federation of labor unions that sponsored the watchdog site, US Chamber Watch.

Even more troubling, however, were plans by the three contractors to use malware and other forms of malicious software to hack into computers owned by the Chamber’s opponents and their families. Boasting that they could develop a “fusion cell” of the kind “developed and utilized by Joint Special Operations Command (JSOC),” the contractors discussed how they could use “custom malware development” and “zero day” exploits to gain control of a target’s computer network. These types of hacks can allow an attacker not only to snoop but to delete files, monitor keystrokes and manipulate websites, e-mail archives and any database connected to the target computer.

In January of 2011, Hunton and Williams, which had met with the Chamber to discuss the proposals, sent by courier a CD with target data to the contractors. The targets discussed in e-mails included labor unions SEIU, IBT, UFW, UFCW, AFL-CIO, Change to Win, as well as progressive organizations like the Center for American Progress, MoveOn.org, Courage Campaign, the Ruckus Society, Agit-Pop, Brave New Films and others.

Though HBGary markets itself as a firm that uses its expertise in cyber security to help both companies and the government defend against malicious attacks, the e-mail archives leaked by Anonymous make clear that executives at the firm were interested in selling this technology for offensive capabilities. In an e-mail with Greg Hoglund, the founder of both HBGary and Rootkit.com, and part owner of HB Gary Federal, Aaron Barr, HBGary Federal's chief executive, described a “spear phishing strategy” that could be used on “our adversaries.” In another e-mail chain, HBGary staff discussed using a fake “patriotic video of our soldiers overseas” to induce military officials to open malicious data extraction viruses; in another, they discuss the success of a dummy “evite” e-mail used to maliciously hack target computers.

The tactics described in the proposals are illegal. However, there were no discussions in the leaked e-mails about the legality of using such tactics. Rather, the Chamber’s attorneys and the three contractors quibbled for weeks about how much to charge the Chamber for these hacking services. At one point, they demanded $2 million a month.

HBGary Federal and their partners were scheduled to meet the Chamber to finalize the deal on February 14, 2011. However, on February 4, Barr boasted to the Financial Times that he was preparing to reveal the identities of Anonymous, which responded with the hack that spilled the contents of HBGary Federal’s e-mails and Rootkit.com’s user database. HBGary Federal had also entered into talks about working on behalf of Bank of America to discredit the website Wikileaks and its perceived allies in the media. The e-mail trail ends on February 6; the Chamber, despite e-mails showing it met with Hunton and Williams to discuss the project, denied any knowledge of the proposal and said it had never compensated the firms or entered into any agreement for the work described in the proposals.

HBGary Federal, which shared the same owners and office space as HBGary, shut down in the wake of the leaked e-mails. Last year, HBGary was acquired by a military contracting firm called ManTech International for $23.8 million, according to disclosures with the Securities and Exchange Commission. The spokesperson for HBGary declined to comment on this story.

Although Rootkit.com is no longer online, similar websites like MetaSploit and TrustedSec offer hackers and cyber security professionals an array of software that could be used by anyone seeking to break into an organization, take control of their network and seize data.

“There’s nothing so unique about how you break into an organization,” said Nick Levay, the director of technical operations information security at the Center for American Progress, who spoke to The Nation by telephone. Levay, an expert on computer security, said there’s “lots of overlap” between the documented Chinese military cyber hacking incidents described by The New York Times and the Mandiant report and the tactics proposed by the contractors working with the Chamber’s attorneys.

Mandiant’s Richard Bejtlich described the malware tools as a firearm that could be used by anyone. “You could buy a firearm, but what are you going to do with it? Is it for hunting or self-defense?” Researchers commonly use sites like MetaSploit to develop defense software against certain cyber attacks. Or, Bejtlich said, “Are you outfitting an army to conduct an insurgency where you’re going to harass a foreign military for ten years?”

Levay said that malware or phishing attempts may be difficult to detect if the perpetrator is only interested in gathering intelligence. However, “any disruption or sabotage, they’re going to get caught,” said Levay. Bejtlich made a similar case, arguing that if domestic political organizations or cyber criminals attempt to sabotage computers in the United States, “the Bureau’s going to find you.”

Large firms that have been victimized by malicious hacking, including Google and Intel, at least have the resources to detect and counter most forms of computer crimes. But what about a small company, or political advocacy group with little resources?

“Political campaigns, absolutely, they have to be vigilant that they will be attacked,” said Ajay Uggirala, the director of product and technical marketing at the cyber security firm Solera Networks. “It’s going to be a dynamic,” Uggirala explained,  “I wouldn’t be surprised if people use the good tools we have for bad purposes on political candidates.”

Jeb Bush, right, speaks to reporters after an education rally in Little Rock, Ark., on Jan. 29, 2013. (AP Photo/Danny Johnston.)

A public interest group has released the results of a multi-state Freedom of Information Act request concerning the lobbying efforts by the Foundation for Excellence in Education (FEE), the nonprofit led by Jeb Bush. The e-mails confirm previous reporting showing that Bush’s policies are designed to benefit businesses seeking to privatize public education—particularly the companies that finance Bush's nonprofit.

What's new in this release, however, is the revelation that Bush could be using his education reform crusade for personal gain.

In one e-mail from last year, Bush's top aide at his foundation, Patricia Levesque, communicated with school officials to urge them to use a company called SendHub, a start-up that uses cloud computing and text messages. Bush, according to TechCrunch, has a modest "five-figure" investment in SendHub. Garrett Johnson, the founder of SendHub, previously worked for Bush and still serves on the board of Foundation for Florida's Future, another Bush-run education nonprofit.

In November of 2011, I published my first investigation with The Nation and The Nation Institute concerning the rush of for-profit education technology companies to enact radical “virtual schools” across the country. In the reporting, we uncovered that many individuals associated with the education reform universe—even those ostensibly leading major philanthropic foundations—are closely tied to the for-profit interests who stand to gain from these policies. Levesque, we reported, was quietly receiving funds directly from for-profit education tech companies while also serving as the executive director of Bush’s nonprofit.

The new round of FOIA e-mails should send shockwaves through the reform movement. In the Public Interest, the group that filed the request, summarized some of their other findings:

— In New Mexico, FEE acted as a broker to organize meetings between their corporate donors and individual Chiefs [for Change].

— Maine moved the FEE policy agenda through legislation and executive order that would remove barriers to online education and in some cases would require online classes—including eliminating class size caps and student-teacher ratios, allowing public dollars to flow to online schools and classes, eliminate ability of local school districts to limit access to virtual schools.

— In Florida, FEE helped write legislation that would increase the use of a proprietary test (FCAT) under contract to Pearson, an FEE donor.

The simmering scandal with Jeb Bush's nonprofit recalls a similar scandal with his brother, Neil Bush, who led Ignite! Learning, a company the Los Angeles Times found profiting from No Child Left Behind policies enacted by President George W. Bush.

Please support our journalism. Get a digital subscription for just $9.50!

While the education tech industry has enjoyed a recent surge thanks to the policies enacted by Jeb Bush and his allies, there's growing evidence that these privatized, proprietary charter schools are under-performing. One of the biggest beneficiaries of the virtual charter school policies peddled by FEE, the publicly-traded online charter school management company K12 Inc., has been cited in several studies for its abysmal performance. A report last year found that K12 Inc.'s students score between 14 and 36 percent lower than their non-cyber school peers. Only 27.7 percent reported meeting Adequate Yearly Progress standards in the 2011 school year, which the National Education Policy Center notes compares poorly to the 52 percent average scored by brick-and-mortar schools.

There is perhaps no better week for these e-mails to emerge. This week is "School Choice Week," a public relations blitz designed by Jeb Bush and Frank Luntz to drum up support for school privatization and teacher union-busting laws. Rather than a movement to support children, the e-mails show that many of these reforms are also about padding the profits of companies like Charter Schools USA, K12 Inc., Pearsons and Jeb's SendHub.

Lee Fang last wrote about gun companies rallying customers to fight reform.