Latest news with #CiroSantilli
Yahoo
2 days ago
- Entertainment
- Yahoo
The CIA Created a Fake STAR WARS Fan Site As Cover for a Spy Network in the 2000s
Spies and spy networks are no strangers to the Star Wars galaxy. Andor was all about that, and we've had references to 'rebel spies' as far back as the original trilogy. But did you know that Star Wars was used as a cover for actual real-world spies by the CIA? We learned via 404 Media that security researcher Ciro Santilli discovered that, back in the mid-to-late-2000s, the CIA created a fake Star Wars fan site. A Star Wars site they secretly used to communicate with informants in other countries. The name of this particular site was If you click on that link now, it takes you directly to the official CIA website. So we'd say his research was accurate. Of course, the site is long gone, but screenshots exist of it. And it is very much a time capsule of that era of the internet. The agents who designed it sure did their Star Wars homework. The screenshot shows a little boy in Jedi robes, with links to several Star Wars websites. Interestingly, many of those sites still exist today. There are some images of animated Clone Wars-era Yoda, which means the CIA was using this fake Star Wars site at least until 2010, not long after the show debuted on Cartoon Network. Here's where things get dark, however. Aside from this one Star Wars site, there were other pop culture and gaming websites used by the CIA in this manner. Eventually, Iranian authorities discovered these sites, and we now know of their link to the killing of several CIA sources in China, circa 2010-2012. Which is about the time that went away. Luckily, thanks to sites like the Wayback Machine, we have evidence of its existence. In Return of the Jedi, Mon Mothma sadly says 'Many Bothans died to bring us this information,' in a reference to her spy network. In reality, it seems many actual spies died using Star Wars as a cover. It's a truly tragic example of 'Art imitates life, life imitates art.'
Daily Mail
3 days ago
- Entertainment
- Daily Mail
REVEALED: The fake websites including a Star Wars fan page the CIA used to communicate with spies around the world
The CIA reportedly used a fake Star Wars fan site to communicate with its spies around the world. Amateur security researcher Ciro Santilli recently scoured the Internet to find sites the spy agency built in the early 2000s to communicate with its informants in other countries, 404 Media reports. Among the sites he found was which included a stock image of a boy dressed as a Jedi, pictures of R2D2 and C-3P0, along with ads for Star Wars video games and Lego sets of the time. Santilli dug through a mass of historic domain names, analyzed each sites HTML and used bots to bypass the Wayback Machine to determine what they may have looked like at the time. 'The simplest way to put it - yes, the CIA absolutely had a Star Wars fan website with a secretly embedded communication system,' Zach Edwards, an independent cybersecurity researcher confirmed. 'And while I can't account for everything included in the research from Ciro, his findings seem very sound.' The site was shut down more than a decade ago and it now redirects to the CIA's homepage. But it was not the only fake site the Central Intelligence Agency was using to communicate with its informants. Others included a fan site for the late comedian Johnny Carson, a third was about extreme sports and a fourth was for fans of Brazilian music. There were also websites called Rasta Direct, Fitness Dawg, Iranian soccer pages and a Russian wrestling website, Reuters previously revealed. Some of the sites reportedly targeted France, Spain and Brazil based on their language and content. Each fake website was assigned to only one spy in order to limit exposure of the entire network in case any single agent was captured. They simply had to enter a password into the search bar, which would cause a secret messaging window to popup in which they could covertly speak with their handlers. But when former President Barack Obama announced the discovery of a secret Iranian nuclear enrichment facility in 2009, Iranian officials doubled down on their efforts to find informants who may be speaking with American intelligence agencies, according to a Yahoo News investigation in 2018. They then easily tracked down the fake websites using Google. The sites had sequential IP addresses, as the hosting spaces for these fake sites were often purchased in bulk by the dozens and often from the same internet provider on the same server space. The HTML code for the search bar on the sites also contained the word 'password,' and the website's coding even included the words 'message' and 'compose' - indicating there was a secret messaging system. There was also a website called Rasta Direct (pictured) as well as sites for Iranian soccer fans 'The CIA really failed with this,' said Bill Marczak of the University of Toledo's Citizen Lab, adding that the messaging system 'stuck out like a sore thumb.' By 2011, Iranian authorities successfully dismantled the CIA network in its country, and either executed or imprisoned the informants. Meanwhile, authorities in China also found similar websites being used in their country - and executed more than two dozen CIA sources between 2011 and 2012. But the CIA reportedly was not aware that the system had been compromised until 2013, when it started to notice that many of its agents began to go missing. At that point, the agency was able to extricate some of its agents and resettle them. It also took down the websites. In 2021, the CIA finally admitted to the communications failure with a memo reprimanding spies for poor tradecraft, being overly trusting of sources, underestimating foreign intelligence agencies and 'putting mission over security' by moving too fast and not paying enough attention to potential risks. However, Reuters reports that Langley had known about the security risks involved and only used the mass-produced sites for sources whom it did not consider fully vetted or had limited, albeit potentially valuable, access to state secrets. The top-tier informants instead used custom-made covert communications tools. Still, former officials described the intelligence setback as 'incredibly damaging' as House and Senate intelligence committees held closed-door hearings into the scandal. When asked why Santilli decided to track down the now defunct websites, he said it was because of his interest in Chinese politics, his penchant for TV adaptations of spy novels and 'sticking it up to the CIA for spying on fellow democracies.' 'It reveals a much larger number of websites, it gives a broader understanding of the CIA's interests over time, including more specific democracies which may have been targeted, which were not previously mentioned, and also a statistical understanding of how much importance they were giving to different zones at the time - and unsurprisingly the Middle East comes on top,' he explained. Edwards, meanwhile, said the scandal 'is a reminder that developers make mistakes and sometimes it take years for someone to find those mistakes. 'But this is also not just your average "developer mistake" type of scenario,' he admitted.
