Sign up for our daily briefing

Make your busy days simpler with Axios AM/PM. Catch up on what's new and why it matters in just 5 minutes.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Twin Cities

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa Bay news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa Bay

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Charlotte news in your inbox

Catch up on the most important stories affecting your hometown with Axios Charlotte

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

The CIA logo in the lobby of CIA Headquarters in Langley, Va. Photo: SAUL LOEB/AFP via Getty Images

Systematic security failures at an elite CIA hacking unit helped lead to the biggest information breach in the agency’s history, according to a partially declassified CIA report provided to Sen. Ron Wyden’s office.

Details: The 2017 report, first reported by the Washington Post, is a postmortem on the 2016 breach, conducted by the CIA’s WikiLeaks task force.

  • WikiLeaks revealed the data leak, known as Vault 7, in early 2017. Vault 7 revealed operations and exploits conducted and developed by the CIA’s Center for Cyber Intelligence, which houses the agency’s elite hackers.

What it says: “CIA has moved too slowly to put in place the safeguards that we knew were necessary given successive breaches to other U.S. Government agencies,” the report states.

  • The lack of “user monitoring” and other audit capabilities meant the CIA was unaware of the breach until WikiLeaks had actually published documents from the stolen tranche.
  • If a traditional nation-state adversary had stolen the information, and kept its possession of it secret, the CIA might still not know that its data had been breached at such a massive scale, says the report.

By the numbers: Between 180 gigabytes and 34 terabytes of information were pilfered, says the report, “roughly equivalent to 11.6 million to 2.2 billion pages in Microsoft Word.”

  • This is a huge range that reveals just how much uncertainty exists within the CIA over the extent of the damage.

The state of play: In 2018, U.S. prosecutors charged Joshua Schulte, a former CIA employee, of being WikiLeaks’ source for the Vault 7 leaks.

  • In March, Schulte’s trial ended in a hung jury, though he was convicted of lesser charges.
  • Prosecutors plan on retrying Schulte on espionage-related charges.

Go deeper

The hacking of Iran's hackers

Illustration: Aïda Amer/Axios

An Iranian cyber operations front organization that’s a target of new U.S. sanctions was itself the victim of an attack that looted its own hacking tools and dumped them on the internet two years ago.

Driving the news: Last week, amid increasing tensions between Washington and Tehran, the Treasury Department announced major new Iran-related sanctions targeting cyber operators working for Iranian intelligence. The sanctions targeted 45 individuals affiliated with Iran’s Ministry of Intelligence and Security (MOIS), Tehran’s main civilian intelligence agency.

3 hours ago - Politics & Policy

Kellyanne Conway's parting power pointers

Kellyanne Conway addresses the 2020 Republican National Convention. Photo: Nicholas Kamm/AFP via Getty Images

Kellyanne Conway has seen power exercised as a pollster, campaign manager and senior counselor to President Trump. Now that his term in office has concluded, she shared her thoughts with Axios.

Why it matters: If there's a currency in this town, it's power, so we've asked several former Washington power brokers to share their best advice as a new administration and new Congress settle in.

3 hours ago - Politics & Policy

GOP holdouts press on with plans to crush Cheney

Screenshot of emails to a member of Congress from individuals who signed an Americans for Limited Government petition against Rep. Liz Cheney. Photo obtained by Axios

Pro-Trump holdouts in the House are forging ahead with an uphill campaign to oust Rep. Liz Cheney as head of the chamber's Republican caucus even though Minority Leader Kevin McCarthy told them to back down.

Why it matters: What happens next will be a test of McCarthy's party control and the sincerity of his opposition to the movement. Cheney (R-Wyo.) is seen as a potential leadership rival to the California Republican.