How the Saudis Infiltrated Twitter

Not surprising since Twitter’s second largest shareholder is a muzzie prince.

Via Buzzfeed

Ali Alzabarah was panicked. His heart raced as he drove home from Twitter’s San Francisco headquarters in the early evening on Dec. 2, 2015. He needed to leave the country — quickly.

Earlier that day, Twitter’s management accused the unassuming 32-year-old of accessing thousands of user profiles without authorization to pass their identifying information — including phone numbers and IP addresses — reportedly to Bader al-Asaker, the head of Saudi Crown Prince Mohammed bin Salman’s charity and private office. When the conversation concluded, management seized Alzabarah’s laptop, put him on administrative leave, and escorted him out of the building.

Arriving home at San Bruno’s Acappella Apartments — a complex so close to San Francisco International Airport he could hear planes fly overhead — Alzabarah planned his escape. At 5:17 p.m. he called a handler, identified as Associate-1 in the FBI complaint, who arrived in a white SUV two hours later. Driving around Alzabarah’s neighborhood, the two men called “Foreign Official-l” — al-Asaker, according to the Washington Post — at 7:20 p.m., and again at 7:22 p.m. and 7:31 p.m. They then called Dr. Faisal Al Sudairi, the Saudi consul general in Los Angeles, at 8:30 p.m., 8:38 p.m., and 9:26 p.m. Shortly after midnight, the consul general called Alzabarah back and spoke with him for three minutes.

Early the next morning, Alzabarah, his wife, and daughter boarded a plane for Saudi Arabia.

From May 2015 until he was exposed that December, Alzabarah spied for the Saudi Arabian government inside Twitter, a criminal complaint from the FBI alleges. (Unless explicitly attributed to other sources, the details and allegations that follow are taken from the FBI’s criminal complaint.)

Alzabarah and Ahmad Abouammo, a colleague on Twitter’s global media team, regularly accessed and delivered information that could’ve led Saudi intelligence to identify anonymous dissidents. While news of the allegations against them has been public since November 2019, the extent of their roles and abilities inside the company have never previously been reported. Alzabarah, Abouammo, and al-Asaker did not respond to requests for comment.

Though Azabarah fled, he and Abouammo, who remained in the US, are currently indicted in United States federal court on charges of acting as undeclared agents of the Saudi government. No matter the verdict, the case has exposed tech companies’ vulnerability to attempted foreign infiltration. One well-placed employee can potentially do extensive damage.

……He initially came to the US in 2005, on a scholarship from Saudia Arabia, where he is a citizen, and earned degrees in computer science at various US universities, according to the FBI complaint. At Twitter, Alzabarah was a site reliability engineer — or SRE — tasked with keeping the site up and given extensive access to do so. He joined the company at a momentous time, right as the service was growing rapidly outside the United States and emerging as a political force worldwide.

……Abouammo, a gregarious and charismatic operator, joined Twitter just days before the platform’s initial public offering. He landed on its global media team and was responsible for growing usage in the Middle East. Abouammo spent his days speaking and socializing with prominent figures in the Middle East — in news, government, sports, TV, and music — enticing them to post on the site more often, sources on the media team told BuzzFeed News. He was their Twitter concierge.

But in addition to his regular job, Abouammo allegedly had a second task — being a mole for the Kingdom of Saudi Arabia.

……“All evil begins with a verification request,” one of Abouammo’s former colleagues at Twitter joked. After the initial exchange, a representative from a US Saudi Arabian business council in Virginia asked Abouammo to set up a tour at Twitter headquarters. The tour, supposedly for entrepreneurs, reportedly included Bader al-Asaker, an official working for Crown Prince Mohammed, who was then in the middle of a fast ascent to power.

A week after returning to Twitter’s San Francisco headquarters, Abouammo logged into the system he used to verify users, according to the complaint. That system, sources who’ve accessed it told BuzzFeed News, stores information including email addresses, telephone numbers, and last log-in time — sufficient personal data to track down a user in real life.

Accessing two Saudi dissidents’ information — one a prominent critic with more than 1 million followers, the other an impersonator of a Saudi Royal family member — Abouammo allegedly passed the information to al-Asaker. Twitter had long been a godsend to dissidents: Unlike Facebook, it had no policy requiring people to use their real names, allowing critics of repressive government to speak more freely. The allegations threw its value as a tool of anonymous dissent into question.

When it built its global media team, Twitter didn’t prepare for possible scenarios in which employees with access to sensitive data and close relationships with foreign governments might use it to spy, according to former employees.

 

In other words, Twitter didn’t bother vetting a couple of camel jockeys from a country known for facilitation of terrorism and oppression of free speech and dissent.  Twitter has some things in common with the Saudi government;  they have no problem censoring and banning conservatives from the site, while muzzie extremists get a pass.

 

……State agents pressuring Twitter employees to deliver private information wasn’t uncommon at the company, former employees tell BuzzFeed News.

A former colleague of Abouammo said US, UK, and Israeli security agencies pressed employees of Twitter’s media team for private information, including the Pentagon and CIA. “I can tell you, I’ve said no a lot,” he said. A spokesperson for the Pentagon declined to comment; a CIA spokesperson did the same.

 

On the other hand, Alzabarah and Abouammo had no problem whatsoever accessing the private information of users.

 

Over the course of two years, al-Asaker paid Abouammo — via wire transfers to various accounts and a close relative — more than $300,000, some of which he used for a down payment on a house in Seattle. To al-Asaker, Abouammo provided private information on at least two dissidents, which the FBI complaint refers to as User-1 and User-2. But he could only take the Saudis so far.

If you want to extract data — lots of it — from a tech company, a site reliability engineer can be quite helpful. SREs keep websites and apps up and running, and by necessity, often have extraordinary access into their companies’ internal systems.

Abouammo could access a user record here and there, but nothing close to what an SRE could get. And so, in February 2015, a few months after accepting the watch, he made an introduction, putting his handlers in contact with Alzabarah, a Saudi citizen living in San Bruno and a Twitter SRE.

……In May 2015, Alzabarah “began to access without authorization private data of Twitter users en masse,” according to the FBI complaint. Within six months, Alzabarah had pulled data on more than 6,000 users. This group included 33 users whose private data the Saudis had asked the social media platform to share through emergency disclosure requests. Twitter, the FBI complaint says, did oblige in at least five instances. Not only did Alzabarah hand over IP addresses of an undisclosed number of these users, but he also took detailed notes, tracking the movements of users of interest.

Alzabarah’s fellow SRE wasn’t surprised at the level of detail his colleague was allegedly able to access. “If you’re a foreign government looking to spy on other people, perhaps your own citizens, having that gives you an unprecedented level of access to the data,” he told BuzzFeed News.

……Even outside of Saudi Arabia, the dissidents weren’t necessarily safe. On Oct. 2, 2018, Saudi agents with close ties to the crown prince murdered Washington Post journalist Jamal Khashoggi, a critic of the regime, at the Saudi consulate in Istanbul. The Riyadh government has denied Crown Prince Mohammed knew about the assassination, but United States officials have said it could not have been carried out without his approval

On Feb.17, 2016, Omar Abdulaziz, a Saudi dissident with a popular YouTube channel and Twitter page who applied for asylum in Canada in 2014 and received it, got an email. The message from Twitter’s security team informed him a “bug” had exposed his and a small number of other accounts’ personal information. “The email address and phone number linked to your account was viewed by another account,” it read. “We wanted to alert you as soon as possible.”

Abdulaziz, a friend of Khashoggi’s, told BuzzFeed News this email was the closest Twitter came to telling him Alzabarah accessed his information. He is now suing the social media platform over what he claims is a lack of disclosure about the incident. Twitter denies the charges. Abdulaziz believes he subsequently identified himself in the FBI complaint. “Twitter User-9 is a well-known and influential critic of the government with asylum in Canada,” the FBI complaint said.

……Although the alleged spying put Abdulaziz at risk, the deeper damage was done to those Twitter users in Saudi Arabia, he said. He believes some were arrested and tortured.

Abouammo left Twitter in 2015 for a job at Amazon in Seattle. It was there that FBI agents visited him on Oct. 20, 2018. An Amazon spokesperson did not immediately respond to a request for comment.

……When the FBI arrested Abouammo for failing to register as a foreign agent, it added charges of falsifying an invoice in an attempt to obstruct a federal criminal investigation.

……A federal court in San Francisco has its next hearing scheduled in the case today. When his trial starts, Abouammo’s defense may struggle to explain the fake invoice. And then there’s a Twitter direct message he allegedly sent al-Asaker. “Proactive and reactively,” he said, “we will delete evil my brother.” 

 

 

Gaining access to the tech levels of social media is a golden opportunity for hostile foreign agents to gather information on American citizens and dissidents.

No Western-based corporation should hire or do business with these muzzie ratfucks.

 

Related posts:

https://sfcmac.wordpress.com/2018/10/19/looks-like-khashoggis-murder-wasnt-such-a-bad-thing-after-all/

https://sfcmac.wordpress.com/2016/06/15/twitters-second-largest-shareholder-is-muzzie-prince/

Leave a comment

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: