'Follow the Money' NSA Spies on International Payments

The United States' NSA intelligence agency is interested in international payments processed by companies including Visa, SPIEGEL has learned. It has even set up its own financial database to track money flows through a "tailored access operations" division.

  In 2011, the NSA possessed 180 million records through its "Follow the Money" branch.
picture alliance / dpa

In 2011, the NSA possessed 180 million records through its "Follow the Money" branch.


The National Security Agency (NSA) widely monitors international payments, banking and credit card transactions, according to documents seen by SPIEGEL.

The information from the American foreign intelligence agency, acquired by former NSA contractor and whistleblower Edward Snowden, show that the spying is conducted by a branch called "Follow the Money" (FTM). The collected information then flows into the NSA's own financial databank, called "Tracfin," which in 2011 contained 180 million records. Some 84 percent of the data is from credit card transactions.

Further NSA documents from 2010 show that the NSA also targets the transactions of customers of large credit card companies like VISA for surveillance. NSA analysts at an internal conference that year described in detail how they had apparently successfully searched through the US company's complex transaction network for tapping possibilities.

Their aim was to gain access to transactions by VISA customers in Europe, the Middle East and Africa, according to one presentation. The goal was to "collect, parse and ingest transactional data for priority credit card associations, focusing on priority geographic regions."

In response to a SPIEGEL inquiry, however, VISA issued a statement in which it said, "We are not aware of any unauthorized access to our network. Visa takes data security seriously and, in response to any attempted intrusion, we would pursue all available remedies to the fullest extent of the law. Further, its Visa's policy to only provide transaction information in response to a subpoena or other valid legal process."

The NSA's Tracfin data bank also contained data from the Brussels-based Society for Worldwide Interbank Financial Telecommunication (SWIFT), a network used by thousands of banks to send transaction information securely. SWIFT was named as a "target," according to the documents, which also show that the NSA spied on the organization on several levels, involving, among others, the agency's "tailored access operations" division. One of the ways the agency accessed the data included reading "SWIFT printer traffic from numerous banks," the documents show.

But even intelligence agency employees are somewhat concerned about spying on the world finance system, according to one document from the UK's intelligence agency GCHQ concerning the legal perspectives on "financial data" and the agency's own cooperations with the NSA in this area. The collection, storage and sharing of politically sensitive data is a deep invasion of privacy, and involved "bulk data" full of "rich personal information," much of which "is not about our targets," the document says.

SPIEGEL/kla

Article...
Comments
Discuss this issue with other readers!
3 total posts
Show all comments
Page 1
toocrazy 09/16/2013
1. follow the money
Just think of all the information you provide to the bank to obtain a credit card. Now envision the NSA and others reviewing this information.
spon-facebook-1261410542 09/16/2013
2. Statement from Visa
The statement from Visa shows they are cooperating. Note that it says it does not allow "any unauthorized access". In other words, it does allow authorized access. The statement also says it only allows access to information based on a "valid legal process." This is remarkably similar to the same statement made by Goolge, Yahoo and Facebook. Again, Visa allows access to their information as they view the mass collection as part of a legal process.
spon-facebook-1080326300 09/30/2013
3. Visa says
I finally got a response from Visa, they don't seem to worry about this issue: "Thank you for contacting Visa Europe. With respect to the claims in the Der Spiegel article, we are not aware of any unauthorized intrusion into our network. Visa takes data security seriously and, in response any attempted intrusion, we would pursue all available remedies to the fullest extent of the law. Further, it’s Visa’s policy to only provide transaction information in response to a subpoena or other valid legal process."
Show all comments
Page 1

© SPIEGEL ONLINE 2013
All Rights Reserved
Reproduction only allowed with the permission of SPIEGELnet GmbH


TOP
Die Homepage wurde aktualisiert. Jetzt aufrufen.
Hinweis nicht mehr anzeigen.