Mexican drug cartel used hacker to track FBI official, then killed potential informants, U.S. government audit says
A Mexican drug cartel hired a hacker to surveil the movements of a senior FBI official in Mexico City in 2018 or earlier, gathering information from the city's camera system that allowed the cartel to kill potential FBI informants, the Justice Department inspector general said in a new report.
The hacker also was able to 'see calls made and received' by the FBI official and their geolocation data in a major breach of operational security that occurred as the FBI was working on the case of former Sinaloa cartel boss Joaquin 'El Chapo' Guzmán Loera, the inspector general said.
The hacker tracked people coming in and out of the US Embassy in Mexico City before zeroing in on the FBI's assistant legal attache, a role that works closely with Mexican law enforcement, the report said, citing an FBI case agent at the time. The report did not identify the hacker.
'According to the case agent, the cartel used (information provided by the hacker) to intimidate and, in some instances, kill potential sources or cooperating witnesses,' says the inspector general report, which was a broader review of the FBI's approach to protecting sensitive information and avoiding surveillance.
The stunning new details offer a rare look at how technology can be exploited in the high-stakes battle between US law enforcement and the violent Mexican cartels that control illicit drug trade. The Trump administration has made cracking down on cartels a national security priority, in part by declaring them as foreign terrorist groups.
The FBI, DEA and US military have in recent years used advanced surveillance techniques to try to infiltrate Sinaloa and the Jalisco New Generation Cartel, the other big Mexican cartel that US officials say smuggles large volumes of deadly fentanyl into the US. CNN reported in April that the CIA was reviewing its authorities to use lethal force against the cartels.
With El Chapo now behind bars, the cartels themselves are increasingly run by a younger generation of tech-savvy drug lords. 'We've identified people in the cartels that specialize in cryptocurrency movements,' a senior DEA official previously told CNN.
'The cartels run a multi-billion-dollar global enterprise and utilize sophisticated technology to enhance their business operations,' Derek Maltz, who until May served as the acting DEA administrator, told CNN. 'They utilize state-of-art sophisticated surveillance techniques to identify law enforcement activities and their adversaries.'
The new inspector general report raises broader concerns about the threat of high-tech surveillance to US national security.
'Some within the FBI and partner agencies, such as the Central Intelligence Agency (CIA), have described this threat as 'existential,' the report said.
There have been 'longstanding' risks posed by 'ubiquitous technical surveillance' — jargon for the widespread availability of data to adversaries — to the FBI's criminal and national security cases, the report said. But recent advances in commercial technology 'have made it easier than ever for less-sophisticated nations and criminal enterprises to identify and exploit vulnerabilities' related to such surveillance, according to the report.
The FBI is working on a 'strategic plan' to address some of the inspector general's concerns about the bureau's approach to the threat, the report said.
The bureau referred questions about the inspector general's report to the Justice Department. CNN has requested comment from the department.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
CTV News
13 hours ago
- CTV News
Police find 381 cadavers piled up in Mexico crematorium
The Anapra neighbourhood of Ciudad Juarez, Mexico, is seen behind the border wall in Sunland Park, N.M., Monday, Feb. 3, 2025. (AP Photo/Andres Leighton) Police have found 381 corpses piled up in a private crematorium in northern Mexico's Ciudad Juarez, the local prosecutor's office said Sunday, attributing the grisly find to negligence. 'Preliminarily we have 381 bodies that were deposited irregularly in the crematorium, which were not cremated,' Eloy Garcia, communications coordinator of the Chihuahua state prosecutor's office, told AFP. Garcia said the corpses were 'stacked' in no apparent order in various rooms of the building where the crematorium operates. They were 'just thrown like that, indiscriminately, one on top of the other, on the floor,' he said. All the bodies had been embalmed. Instead of ashes, relatives were given 'other material,' Garcia said. Authorities estimated that some of the remains could have been there for up to two years. Garcia blamed the 'carelessness and irresponsibility' of the crematorium owners, adding that all such businesses 'know what their daily cremation capacity is.' 'You can't take in more than you can process,' he said. One of the administrators of the crematorium had already turned himself in to prosecutors. Authorities did not specify whether the corpses belonged to victims of criminal violence. Mexico, a country hard hit by organized crime, has been suffering for years from a crisis in its forensic system, saturated by the high number of bodies to be processed, the lack of personnel and budgetary restrictions.
CTV News
2 days ago
- CTV News
Mexican drug cartel used hacker to track FBI official, then killed potential informants, U.S. government audit says
A Mexican drug cartel hired a hacker to surveil the movements of a senior FBI official in Mexico City in 2018 or earlier, gathering information from the city's camera system that allowed the cartel to kill potential FBI informants, the Justice Department inspector general said in a new report. The hacker also was able to 'see calls made and received' by the FBI official and their geolocation data in a major breach of operational security that occurred as the FBI was working on the case of former Sinaloa cartel boss Joaquin 'El Chapo' Guzmán Loera, the inspector general said. The hacker tracked people coming in and out of the US Embassy in Mexico City before zeroing in on the FBI's assistant legal attache, a role that works closely with Mexican law enforcement, the report said, citing an FBI case agent at the time. The report did not identify the hacker. 'According to the case agent, the cartel used (information provided by the hacker) to intimidate and, in some instances, kill potential sources or cooperating witnesses,' says the inspector general report, which was a broader review of the FBI's approach to protecting sensitive information and avoiding surveillance. The stunning new details offer a rare look at how technology can be exploited in the high-stakes battle between US law enforcement and the violent Mexican cartels that control illicit drug trade. The Trump administration has made cracking down on cartels a national security priority, in part by declaring them as foreign terrorist groups. The FBI, DEA and US military have in recent years used advanced surveillance techniques to try to infiltrate Sinaloa and the Jalisco New Generation Cartel, the other big Mexican cartel that US officials say smuggles large volumes of deadly fentanyl into the US. CNN reported in April that the CIA was reviewing its authorities to use lethal force against the cartels. With El Chapo now behind bars, the cartels themselves are increasingly run by a younger generation of tech-savvy drug lords. 'We've identified people in the cartels that specialize in cryptocurrency movements,' a senior DEA official previously told CNN. 'The cartels run a multi-billion-dollar global enterprise and utilize sophisticated technology to enhance their business operations,' Derek Maltz, who until May served as the acting DEA administrator, told CNN. 'They utilize state-of-art sophisticated surveillance techniques to identify law enforcement activities and their adversaries.' The new inspector general report raises broader concerns about the threat of high-tech surveillance to US national security. 'Some within the FBI and partner agencies, such as the Central Intelligence Agency (CIA), have described this threat as 'existential,' the report said. There have been 'longstanding' risks posed by 'ubiquitous technical surveillance' — jargon for the widespread availability of data to adversaries — to the FBI's criminal and national security cases, the report said. But recent advances in commercial technology 'have made it easier than ever for less-sophisticated nations and criminal enterprises to identify and exploit vulnerabilities' related to such surveillance, according to the report. The FBI is working on a 'strategic plan' to address some of the inspector general's concerns about the bureau's approach to the threat, the report said. The bureau referred questions about the inspector general's report to the Justice Department. CNN has requested comment from the department.
CTV News
2 days ago
- CTV News
Rampant cybercriminal group targets Canada and U.S. airlines
A notorious cybercriminal group has shifted its attention to the aviation industry, successfully breaching the computer networks of multiple airlines in the United States and Canada this month, according to the FBI and private experts responding to the hacks. The hacking hasn't affected airline safety, but it has top cyber executives at major airlines across the United States on alert because of the hacking suspects: A network of young cybercriminals called 'Scattered Spider' who are known for their aggressive efforts to extort or embarrass their victims. It's a fresh headache for the travel industry as the busy summer travel season kicks into high gear. This is now the third major U.S. business sector in the last two months, after insurance and retail, to face a flurry of cyberattacks tied to the criminal group. The hackers target big companies and their IT contractors, 'which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk,' the FBI said Friday night in a statement that named Scattered Spider as the perpetrator of the airline hacks. 'Once inside (a victim's network), Scattered Spider actors steal sensitive data for extortion and often deploy ransomware,' the FBI said. The FBI, the statement continued, 'is actively working with aviation and industry partners to address this activity and assist victims.' Hawaiian Airlines and Canada's WestJet confirmed this week that they were still assessing the fallout from recent cyberattacks, though the airlines did not name the perpetrators. More victims in the aviation industry could come forward, sources briefed on the investigation said. Toronto Pearson International Airport Travelers at a Westjet check-in counter in Toronto Pearson International Airport on June 30, 2024. (via CNN Newsource) WestJet's issues began two weeks ago, when the airline said it was responding to a 'cybersecurity incident' that was affecting access 'to some services and software systems,' including its app for customers. Both WestJet and Hawaiian Airlines said their operations were unaffected by the hacks. The lack of impact on operations at the airlines is 'likely a sign of good internal network separations or good business continuity and resiliency planning,' said Aakin Patel, the former chief information security officer of Las Vegas' main airport. It is not just the airlines themselves, but other 'segments of the aviation ecosystem' that are seeing increased cyberattacks, according to Jeffey Troy, the president of the Aviation ISAC, an industry group for sharing cyber threats. 'Our members are keenly alert to attacks from financially motivated attackers and collateral impacts emanating out of geo-political tensions around the world,' Troy said in a statement to CNN. The fine margins for error in the airline industry were on display Friday, when a separate IT outage, apparently unrelated to malicious cyber activity, caused delays for some American Airlines passengers. The Scattered Spider hacks have mobilized people across the industry to respond. In-house cybersecurity experts at major airlines have been closely monitoring the situation, sources familiar with the response told CNN, while cybersecurity firms such as Google-owned Mandiant are helping with the recovery and urging airlines to secure their customer service call centers. One of Scattered Spiders' preferred methods of infiltrating corporations is calling up help desks and pretending to be employees or customers. The technique has been highly effective for hackers to gain access to the networks of big companies. 'Airlines rely heavily on call centers for a lot of their support needs,' Patel told CNN, making them 'a likely target for groups like this.' Scattered Spider gained attention in September 2023 when they were linked to a pair of multimillion-dollar hacks on Las Vegas casinos and hotels MGM Resorts and Caesars Entertainment. The hackers tend to pick one sector to target for weeks on end. Earlier this month, they were the suspect in a hack of insurance giant Aflac that potentially stole Social Security numbers, insurance claims and health information. Before that, it was the retail sector: The hackers, according to an internal memo obtained by CNN, targeted Ahold Delhaize USA, which has the same parent company as the Giant and Food Lion grocery chains. 'The actor's core tactics, techniques, and procedures have remained consistent,' Mandiant chief technology officer Charles Carmakal said Friday in a statement, and that it 'is aware of multiple incidents in the airline and transportation sector' that resemble the operations of Scattered Spider. By Sean Lyngaas.
