Foreign Affairs

REPORT: A Flaw In The CIA’s Communications System Led To The Destruction Of Its Entire China Spy Network

No featured image available

During a two-year period beginning in late 2010, the CIA station in Beijing watched as Chinese authorities rolled up its entire human intelligence network across the country in one of the agency’s worst debacles in recent memory.

For years, CIA officials could only guess at how the disaster — in which dozens of U.S. spies were executed — could have unfolded in such a short time frame.

An explanation began to take shape in January, when the FBI arrested a former CIA case officer, Jerry Chun Shing Lee, after a multi-year investigation into his possible espionage activity on behalf of the Chinese government. Lee, who was residing in Hong Kong at the time of his arrest, allegedly passed classified information to China’s Ministry of State Security (MSS) in exchange for hundreds of thousands of dollars in cash payments.

Still, the speed and precision of the crackdown suggested that Chinese intelligence had identified the CIA’s informants through another means in addition to Lee’s alleged espionage. According to a report published by Foreign Policy on Thursday, that additional source was likely CIA’s own system for communicating with human assets.

A design flaw in the covert system was easily exploited by MSS officers tasked with tracking down U.S. spies, Foreign Policy reported, citing five current and former U.S. intelligence officials. It had worked in the technically unsophisticated Middle East where it was first introduced, but it was unsuited for the challenges posed by China’s advanced counterintelligence capabilities, the officials said.

The system used two separate channels: a main covert platform to communicate with vetted human assets, and an internet-based, “throwaway” system reserved for unverified new recruits. The two channels are supposed to be separated by a firewall to prevent potential double agents from accessing the main platform.

However, a coding error had connected the “throwaway” system to the vetted channel, according to the Foreign Policy report. When U.S. cyber security experts ran “penetration tests” of the system, they discovered that anyone with enough technical know-how could use the interim system to gain access to the covert platform the CIA was using to talk to with its verified informants.

The extent of the breach remains unclear, but it appears to have caused more damage to the CIA’s spy network in China than previously thought. The New York Times, which first reported the story in 2017, quoted intelligence officials as saying “more than a dozen” human assets had been executed after being outed.

Intelligence officials who spoke with Foreign Policy put the true number at 30 or higher.

Follow Will on Twitter

Send tips to will@dailycallernewsfoundation.org.

All content created by the Daily Caller News Foundation, an independent and nonpartisan newswire service, is available without charge to any legitimate news publisher that can provide a large audience. All republished articles must include our logo, our reporter’s byline and their DCNF affiliation. For any questions about our guidelines or partnering with us, please contact [email protected].