{"id":36206,"date":"2020-07-21T14:50:33","date_gmt":"2020-07-21T14:50:33","guid":{"rendered":"https:\/\/packetstormsecurity.com\/news\/view\/31414\/ICE-Questions-Admin-Of-The-Eye-About-BlueLeaks.html"},"modified":"2020-07-21T14:50:33","modified_gmt":"2020-07-21T14:50:33","slug":"ice-questions-admin-of-the-eye-about-blueleaks","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/ice-questions-admin-of-the-eye-about-blueleaks\/","title":{"rendered":"ICE Questions Admin Of The-Eye About BlueLeaks"},"content":{"rendered":"
<\/div>\n
<\/p>\n

On Thursday, Immigration and Customs Enforcement agents questioned a woman who shared a copy of allegedly stolen U.S. police internal documents, a trove nicknamed BlueLeaks<\/a>, Motherboard has learned.<\/p>\n

<\/span><\/p>\n

The woman, Meghan, who asked to be only identified by her first name because she fears retaliation from law enforcement, is an administrator of The-Eye<\/a>, a site that has undertaken several high profile<\/a> archiving<\/a> projects<\/a>, including hosting a BlueLeaks mirror for a brief time. She said three agents who identified themselves as part of Homeland Security Investigations (HSI), the investigative division of ICE, came to her home in the outskirts of Boston, Massachusetts on Thursday morning and asked questions about BlueLeaks, The Eye, and Emma Best, the person who founded the WikiLeaks-style website Distributed Denial of Secrets, which originally published the leaked trove of police documents.<\/p>\n

<\/span><\/p>\n

\u201cI was really caught off guard,\u201d Meghan told Motherboard through an intermediary.<\/p>\n

<\/span><\/p>\n

\u201cThey described BlueLeaks without mentioning it by name, and then proceeded to talk about how The-Eye was hosting it. They asked me if I knew anything about it and what my involvement was. I asked if they were referring to BlueLeaks and they said yes,\u201d said Meghan, who is an open source developer and archivist.<\/p>\n

<\/span><\/p>\n

Meghan said she replied saying she doesn\u2019t curate what ends up on The-Eye, and that BlueLeaks was sourced from Distributed Denial of Secrets. The agents, she added, also asked if she personally knew Best. Meghan also said The-Eye didn\u2019t host BlueLeaks, only that the files were shared on a Discord channel used by admins of the site<\/p>\n

<\/span><\/p>\n

\u201cThey kept probing to see if I had any connections to [Distributed Denial of Secrets],\u201d Meghan said. \u201cAnd then eventually asked me to become an informant and offered to pay me for any information that led to arrests.\u201d (ICE has previously been reported to pay informants<\/a>).<\/p>\n

<\/span><\/p>\n

\n

Do you work or used to work for DHS or ICE? Or did you use to work at a police department? We\u2019d love to hear from you. You can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, OTR chat at lorenzofb@jabber.ccc.de<\/a>, or email<\/em><\/strong> lorenzofb@vice.com<\/em><\/strong><\/a><\/p>\n<\/blockquote>\n

<\/p>\n

The agents’ visit is the latest development in the law enforcement investigation into the leak. Earlier this month, German prosecutors seized the server that was used to host BlueLeaks<\/a>, acting in coordination with U.S. authorities<\/a>.<\/p>\n

<\/span><\/p>\n

Meghan said the agents said that she would be \u201ccompensated financially and protected\u201d if she gave them any \u201cactionable\u201d information. Instead, she said she tried to distance herself from the whole situation as she didn\u2019t even know who Best was until they mentioned their name.<\/p>\n

<\/span><\/p>\n

\u201cI’m not involved with a lot of overtly political stuff so it’s interesting to have gotten wrapped up in this,\u201d she added. \u201cDefinitely not how I expected or wanted my day to start!\u201d<\/p>\n

<\/span><\/p>\n

Motherboard attempted to contact multiple HSI agents at the number they gave Meghan. One of them did not respond to multiple calls and a voicemail. The other hung up after I identified as a reporter. A couple of hours later, a DHS spokesperson from the Miami field office called offering to help, following up from our calls to the agents.<\/p>\n

<\/span><\/p>\n

The spokesperson said that he could not \u201cconfirm nor deny the existence of an investigation,\u201d and declined to comment on whether any agents visited the woman in the Boston area.<\/p>\n

<\/span><\/p>\n

Best said that as far as they knew, this is the first time authorities had questioned anyone in connection with BlueLeaks (though authorities did take action by seizing the German server).<\/p>\n

<\/span><\/p>\n

\u201cIt’s disturbing that the government is trying to intimidate people into not sharing BlueLeaks. First, they seized our public server, now they’re going after people hosting mirrors and interrogating them not just about BlueLeaks, but about me,\u201d Best told Motherboard in an online chat. \u201cSo far, the government has made no attempt to contact us\u2014they simply went full-Gestapo right out of the gate and seem more interested in suppressing and retaliating than they are in investigating.\u201d<\/p>\n

<\/span><\/p>\n

Correction: This story has been updated to clarify that BlueLeaks was not hosted on The-Eye, but it was shared in The-Eye\u2019s Discord channel.<\/em><\/p>\n

<\/span><\/p>\n

Subscribe to our new cybersecurity podcast,<\/em><\/strong> CYBER<\/em><\/strong><\/a>.<\/em><\/strong><\/p>\n

<\/span><\/div>\n

\n