Tag: espionage

  • Crypto AG: How the CIA and BND Sold Rigged Encryption to 120 Countries for Decades

    In 1970, the Central Intelligence Agency and West Germany’s Bundesnachrichtendienst paid $5.75 million for a Swiss encryption company called Crypto AG. They didn’t announce the purchase. They didn’t change the branding. They didn’t replace the employees. They installed one or two people at the executive level who knew the truth, kept the rest of the workforce in the dark, and for the next 48 years sold encryption machines to more than 120 governments worldwide — machines that the CIA and NSA had rigged so that every message encrypted on them could be read by American and German intelligence as easily as plaintext. The governments of Iran, Egypt, Pakistan, Saudi Arabia, Italy, Argentina, India, the Vatican, and dozens of others paid good money for equipment they believed was protecting their most sensitive diplomatic and military communications. It was doing the opposite. A CIA internal history, leaked in 2020, called the operation “the intelligence coup of the century.” That’s not journalistic hyperbole. That’s the agency’s own classified assessment of its own program.

    The Hagelin relationship

    The story starts before the CIA owned the company. Boris Hagelin, a Swedish inventor, founded Crypto AG in 1952 after building the M-209 cipher machine that the U.S. military used extensively during World War II. Hagelin relocated to Switzerland and built a business selling encryption equipment to governments worldwide, leveraging Swiss neutrality as a brand asset — a company based in a neutral country, manufacturing security products, seemed inherently trustworthy. By the early 1950s, Hagelin had entered an informal arrangement with William Friedman, the NSA cryptologist widely regarded as the father of American codebreaking. The “gentlemen’s understanding” was straightforward: Hagelin would sell his most capable machines to countries approved by the U.S., and weaker, breakable versions to everyone else. The arrangement was unofficial, personal, and — critically — it worked. Correspondence between Friedman and Hagelin, declassified in 2015, documented the relationship in detail.

    By the late 1960s, Hagelin was aging and the informal arrangement was becoming untenable. When French and West German intelligence approached Hagelin in 1967 to propose their own partnership, Hagelin reported the approach to his CIA handlers. The agency decided it was time to buy the company outright. They partnered with the BND, and in June 1970 the purchase was completed. Crypto AG was given the internal codename “Minerva.” The operation was initially called “Thesaurus,” later renamed “Rubicon.” Hagelin’s son, Boris Jr., who had been the company’s sales manager for the Americas, died in a car accident the same year. His father investigated and did not believe it was an accident.

    How the rigging worked

    The manipulation was elegant rather than crude. The CIA and NSA didn’t install obvious backdoors or program the machines to dump their encryption keys. They weakened the algorithms — specifically, they rigged the keystream generators so that the output, while appearing random to the user, contained mathematical structures that the NSA could exploit to recover the plaintext. To anyone without knowledge of the specific weakness, the encryption looked secure. To the NSA, it was transparent. As the technology evolved from mechanical cipher machines to electronic systems to software, the rigging evolved with it. NSA cryptologists and CIA engineers worked with a small number of witting Crypto AG technical staff to design each new generation of products with weaknesses that were invisible to the company’s own unwitting engineers and to every customer who tested the equipment.

    Siemens, the German electronics conglomerate, manufactured teleprinters for Crypto AG, provided management personnel for 20 years, and held a five percent share of the profits. Siemens engineers helped develop the encryption equipment. The Maximator alliance — a second Western signals intelligence partnership comprising Denmark, France, Germany, Sweden, and the Netherlands, operating parallel to the Five Eyes — was also read into the vulnerabilities and exploited them for their own intelligence collection. The circle of governments benefiting from Crypto AG’s compromised machines was wider than the CIA and BND alone.

    What it produced

    The intelligence yield was staggering across decades of global events. During the 1978 Camp David negotiations between Egypt and Israel, the NSA read every communication between President Sadat and his advisors in Cairo — because Egypt was a major Crypto AG customer. During the 1979 Iran hostage crisis, Iranian communications were intercepted in real time. In 1982, the British government received intelligence during the Falklands War because Argentina’s military encrypted its communications on Crypto AG equipment. In 1986, intercepted Libyan diplomatic traffic between Tripoli and the Libyan embassy in East Berlin provided the evidence President Reagan cited when he ordered the bombing of Tripoli and Benghazi in retaliation for the West Berlin discotheque bombing — and Reagan’s public statement about the intercept nearly blew the entire operation, because Libya and every other Crypto AG customer suddenly had a reason to wonder how the Americans were reading their communications.

    By 1988, the CIA and BND were decrypting approximately 19,000 Iranian messages annually — 80 to 90 percent of Iran’s total encrypted traffic. The operation provided intelligence on the South American Operation Condor dictatorships — Chile, Argentina, Bolivia, Paraguay, Uruguay, and Brazil — as they coordinated cross-border campaigns of imprisonment, torture, and extrajudicial killing. The Condor nations used Crypto AG equipment to coordinate their operations. American and German intelligence read the traffic. They knew what was happening. The CIA and BND documents, as the Washington Post reported, “largely avoid more unsettling questions, including what the United States knew — and what it did or didn’t do — about countries that used Crypto machines while engaged in assassination plots, ethnic cleansing campaigns and human rights abuses.”

    How it almost fell apart — and didn’t

    The operation survived repeated near-exposures across five decades, which is arguably more remarkable than the operation itself. Reagan’s 1986 public reference to Libyan intercepts was the first serious scare. The 1991 assassination of former Iranian Prime Minister Shapour Bakhtiar produced another: Iranian intelligence transmitted a coded message to Iranian embassies the day before Bakhtiar’s body was discovered, and the speed of Western intelligence’s response raised suspicions about how the intercept was obtained.

    The most dramatic exposure came in 1992, when Hans Bühler, a Swiss Crypto AG salesman, was arrested in Iran on espionage charges. Bühler had no idea he was selling rigged equipment — he was a genuine salesman who believed in his company’s products. Iran detained him for nine and a half months. Crypto AG paid approximately $1 million in bail for his release. When Bühler returned to Switzerland, he started talking to journalists. Another former Crypto AG engineer who had independently suspected the company was controlled by Western intelligence also went public. The media coverage was extensive. Bühler was fired. But the operation survived. The BND, rattled by the exposure risk, sold its stake to the CIA in 1993 or 1994 for $17 million. The CIA kept going alone. For another 24 years.

    Why did it survive? An academic study in Intelligence and National Security identified three factors: geopolitical pressures on target countries that limited their alternatives, the target governments’ limited technical resources for independently verifying encryption security, and individual operational brilliance by CIA-BND agents inside Crypto AG who managed each crisis without the operation collapsing. The simplest factor was the most powerful — there weren’t many alternatives. If you were a mid-sized government in the 1980s and you needed encryption equipment, your options were American, Soviet, or Swiss. The Swiss option looked neutral. It wasn’t.

    What it means

    The CIA sold Crypto AG’s remaining assets in 2018. The Swiss company was split into CyOne (domestic Swiss sales) and Crypto International AG (international sales under new ownership). The operation formally ended after 48 years of continuous signals intelligence collection from more than 120 governments. But the structural lesson is the one that connects Crypto AG to every other lecture in the Shadowcraft course: the most effective covert operation isn’t one that steals secrets. It’s one that sells the target the tool they’ll use to betray themselves — and charges them for the privilege.

    The parallel to modern debates about encryption backdoors, tech company cooperation with intelligence agencies, and the post-Snowden landscape is obvious and uncomfortable. As Warwick University researchers noted after the 2020 revelations: “Long before Edward Snowden released documents of modern firms colluding with intelligence agencies, we can see evidence for significant cases in the past. It certainly is not a recent phenomenon and leads us to ask just how many firms had been working directly with intelligence agencies.” The question the Crypto AG story poses isn’t whether intelligence agencies compromise commercial encryption. It’s how many current products carry weaknesses that will take another 48 years to discover. We cover Operation Rubicon alongside BCCI’s financial architecture, the United Front Work Department’s influence networks, Wagner Group‘s mercenary-propaganda fusion, and the shell company structures that make all of it possible across our Shadowcraft course — 24 lectures on the invisible institutions that shaped the modern world from behind the paperwork.

  • The CIA’s Cat and Pigeon Spy Programs: The Strangest Operations in Intelligence History

    In the early 1960s, the CIA’s Directorate of Science and Technology surgically implanted a microphone in a cat’s ear canal, embedded a three-quarter-inch radio transmitter near the base of its skull, wove a fine wire antenna through its fur all the way to its tail, and placed a power pack in its abdomen. Additional wires connected to the cat’s brain allowed handlers to detect when the animal was hungry or sexually aroused, and to override those urges so the cat wouldn’t abandon its mission to chase a pigeon or find a mate. The project took five years to develop and cost an estimated $20 million. Then they put the cat in a van, drove it to a location near the Soviet embassy in Washington, D.C., and released it to eavesdrop on two men sitting on a park bench.

    According to former CIA officer Victor Marchetti, the cat waddled across the street and was immediately hit and killed by a taxi. Twenty million dollars, five years of surgical development, and the most expensive domestic animal in American intelligence history, dead on contact with reality. A former CIA technical officer named Robert Wallace later disputed this, claiming the cat survived and the project was cancelled for other reasons. The CIA’s own website says the cat was treated humanely and the equipment was removed when the program ended. Whether the cat died under a taxi or retired to a quiet life remains, appropriately, classified.

    The project was code-named Acoustic Kitty. It was declassified in 2001. The closing memorandum, dated 1967 and still heavily redacted, concluded that while the CIA had proven “cats can indeed be trained to move short distances”—described without irony as “a remarkable scientific achievement”—”the environmental and security factors in using this technique in a real foreign situation force us to conclude that, for our purposes, it would not be practical.”

    Anyone who has ever owned a cat could have told them that for free.

    Why animals seemed like a good idea

    The logic behind CIA animal programs wasn’t insane. It was 5 percent good idea and 95 percent bad execution, repeated across multiple species with consistent results. The core insight was genuine: animals can access places humans can’t, and they do it without triggering suspicion. A stray cat near an embassy is invisible. A pigeon on a windowsill is furniture. A raven on a ledge is scenery. In an era when electronic surveillance devices were the size of textbooks and human agents were tailed by KGB counterintelligence teams, the idea of using a biological platform that could move freely through denied areas had real appeal.

    The CIA’s own historical review, published on the agency’s website under the title “Natural Spies: Animals in Espionage,” is remarkably candid about the programs. The agency acknowledges that “many of the animal programs studied by CIA were never deployed operationally—or failed for a variety of technical, logistical, or behavioral reasons.” The candor is unusual for an organization that typically lets misconceptions stand rather than correcting them. The fact that they published the review suggests they’ve decided the programs are more charming than embarrassing at this distance.

    The pigeons that actually worked

    Project Tacana, the CIA’s pigeon camera program, was the animal operation that came closest to producing operational intelligence. During the 1970s, the agency trained pigeons to carry miniature cameras weighing roughly 35 grams and fly over Soviet military installations—shipyards, naval bases, and other targets that were difficult to photograph from satellites or high-altitude aircraft.

    The theory was sound for a specific technical reason: a pigeon flying at low altitude could capture higher-resolution photographs than a spy satellite orbiting hundreds of miles above the target. Satellite imagery in the 1970s was good enough to identify buildings and vehicles but often lacked the resolution to read markings, count components, or assess equipment condition. A pigeon at rooftop height with a miniature camera could, in principle, deliver imagery that filled that gap.

    Tests showed that approximately half of the 140 photographs taken during trials achieved good image quality—a success rate that was encouraging enough to continue development but insufficient to justify full operational deployment. The program faced the same fundamental problem as Acoustic Kitty: you could get the animal to the right general area, but you couldn’t guarantee it would do what you wanted once it got there. Pigeons are trainable—far more so than cats—but they’re navigating by instinct and training, not by mission briefing. They have no concept of which building is the target or which angle produces the most useful photograph. The camera fires on a timer or by altitude trigger, and the resulting images are whatever the pigeon happened to be flying over.

    The program never became fully operational. Satellite imagery improved, the U-2 and SR-71 reconnaissance aircraft covered much of the gap, and the era of miniaturized unmanned drones eventually made biological platforms obsolete for aerial surveillance. But the pigeon program came closer to working than most people realize, and the CIA’s acknowledgment that the concept was sound—even if the execution was impractical—suggests the agency viewed pigeons as a near-miss rather than a failure.

    The rest of the menagerie

    The CIA tested ravens for precision delivery of surveillance devices. Ravens were trained to carry miniaturized eavesdropping equipment and deposit it on window ledges using specially designed carrying mechanisms. In at least one operation, a raven successfully delivered a bugging device to a European target—though no usable audio was ever captured. The delivery worked. The intelligence didn’t.

    Under MKUltra Subproject 94, the agency implanted electrodes in dogs’ brains to create remote-controlled animals that could be directed to run, turn, and stop via radio signals. Six dogs achieved “field operational” status, meaning they could be reliably directed through basic movement commands. The program was never deployed operationally, and the ethical dimensions of surgically implanting brain electrodes in dogs for remote control are exactly as uncomfortable as they sound.

    The Insectothopter was a mechanical dragonfly—a miniaturized unmanned aerial vehicle designed to carry a listening device. It was selected after an initial bumblebee design proved too erratic in flight. The dragonfly could fly 200 meters in 60 seconds, guided by a laser beam, but proved inoperable in crosswinds above five miles per hour. Charlie and Charlene were robotic catfish developed by the CIA’s Office of Advanced Technologies and Programs to study unmanned underwater vehicle technology—robot fish designed for aquatic surveillance.

    What the programs actually tell us

    The pattern across all of these operations—cat, pigeon, raven, dog, dragonfly, catfish—is consistent and diagnostic. The CIA could build the technology. Miniaturizing transmitters, embedding recording devices, engineering mechanical insects—the engineering was ahead of its time. What they couldn’t do was solve the interface between human intent and animal behavior. A cat with a working transmitter in its skull is still a cat. It will chase a bird, wander toward food, lose interest in the park bench, or walk into traffic. The technology was the easy part. Biology was the hard part, and biology won every time.

    A 2023 comparative cognition study quantified the problem: cats made “considerably fewer choices than dogs in laboratory environments, and their tendency to make a choice declined during trials.” The CIA discovered this empirically, at a cost of $20 million, six decades before the paper was published. Cats evolved as solitary ambush predators whose attention is stimulus-driven, not command-driven. Their brains prioritize potential prey over instructions. Asking a cat to eavesdrop on a Soviet diplomat instead of chasing a squirrel is asking the cat to override 30 million years of predatory evolution for a food pellet. The cat’s answer, delivered at a behavioral level that no amount of surgical modification could change, was no.

    The pigeon program came closest because pigeons have social structures and can be trained through operant conditioning to fly specific routes and return to specific locations—behaviors that align with their natural homing instincts. Dogs performed better than cats because their social cognition is command-oriented rather than stimulus-oriented. Ravens succeeded at precision delivery because corvids are problem-solvers that can learn sequential tasks. The CIA’s animal programs, read as a body of work, are an accidentally rigorous experiment in comparative cognition: which species can be directed to perform tasks that conflict with their natural behavioral repertoire, and what determines the answer?

    The answer, demonstrated across two decades of classified research, is that animals with social structures and reward-oriented learning systems (dogs, pigeons, ravens) outperform solitary predators (cats) at human-directed tasks—but none of them can be reliably directed to perform context-dependent intelligence operations that require judgment, sustained attention, and goal persistence in uncontrolled environments. The technology worked. The biology was not negotiable. And a taxi, if Marchetti is to be believed, delivered the final verdict.

    We cover the CIA’s animal programs alongside navy dolphins, anti-poaching dogs, and the full history of animals deployed in human conflicts across our Animal Heroes course—including why the most expensive spy the CIA ever built had whiskers, a tail, and absolutely no interest in Soviet diplomats.