In the early 2000s, the US Central Intelligence Agency (CIA) launched a covert network of over 880 fake websites to communicate with informants globally. These sites, disguised as fan pages for “Star Wars,” soccer, finance, and music, allowed agents to exchange information securely. However, by the early 2010s, Iranian and Chinese counterintelligence services had uncovered this network, leading to the arrest and execution of numerous informants.
One such site, starwarsweb.net, appeared to be a haven for “Star Wars” enthusiasts. Beneath its surface, a hidden interface enabled informants to communicate with their CIA handlers. Similarly, iranfootballsource.com masqueraded as a soccer fan site but served as a covert communication channel. These platforms utilized technologies like JavaScript and HTTPS to facilitate secret exchanges.
Despite their ingenuity, these sites contained glaring security flaws. Researchers from Citizen Lab at the University of Toronto discovered that the network’s design allowed for easy identification. Sequential IP addresses and similar coding patterns made the entire network susceptible to detection. As a result, Iranian authorities dismantled a CIA informant cell, leading to multiple executions. In China, over two dozen sources were reportedly killed between 2011 and 2012 due to the compromised system.
The CIA’s reliance on this vulnerable network persisted even after internal warnings about its flaws. According to Reuters, the agency continued to use these sites, expanding the network despite the risks.
In response to these failures, the CIA has since revamped its recruitment and communication strategies. The agency now provides secure contact instructions in multiple languages, including Mandarin, Farsi, and Korean, on various platforms and the Dark Web. These measures aim to ensure the safety and anonymity of potential informants in authoritarian regimes.
Despite these efforts, the legacy of the compromised network continues to impact the CIA’s operations. The agency faces challenges in rebuilding trust and establishing secure communication channels with informants. As one intelligence expert noted, “The reckless construction of this infrastructure by the CIA reportedly led directly to the identification and execution of assets, and undoubtedly risked the lives of countless other individuals.”
