'Follow the Money': NSA Spies on International Payments

  In 2011, the NSA possessed 180 million records through its "Follow the Money" branch.  Zoom
picture alliance / dpa

In 2011, the NSA possessed 180 million records through its "Follow the Money" branch.

The United States' NSA intelligence agency is interested in international payments processed by companies including Visa, SPIEGEL has learned. It has even set up its own financial database to track money flows through a "tailored access operations" division.

The National Security Agency (NSA) widely monitors international payments, banking and credit card transactions, according to documents seen by SPIEGEL.

The information from the American foreign intelligence agency, acquired by former NSA contractor and whistleblower Edward Snowden, show that the spying is conducted by a branch called "Follow the Money" (FTM). The collected information then flows into the NSA's own financial databank, called "Tracfin," which in 2011 contained 180 million records. Some 84 percent of the data is from credit card transactions.

Further NSA documents from 2010 show that the NSA also targets the transactions of customers of large credit card companies like VISA for surveillance. NSA analysts at an internal conference that year described in detail how they had apparently successfully searched through the US company's complex transaction network for tapping possibilities.

Their aim was to gain access to transactions by VISA customers in Europe, the Middle East and Africa, according to one presentation. The goal was to "collect, parse and ingest transactional data for priority credit card associations, focusing on priority geographic regions."

In response to a SPIEGEL inquiry, however, VISA issued a statement in which it said, "We are not aware of any unauthorized access to our network. Visa takes data security seriously and, in response to any attempted intrusion, we would pursue all available remedies to the fullest extent of the law. Further, its Visa's policy to only provide transaction information in response to a subpoena or other valid legal process."

The NSA's Tracfin data bank also contained data from the Brussels-based Society for Worldwide Interbank Financial Telecommunication (SWIFT), a network used by thousands of banks to send transaction information securely. SWIFT was named as a "target," according to the documents, which also show that the NSA spied on the organization on several levels, involving, among others, the agency's "tailored access operations" division. One of the ways the agency accessed the data included reading "SWIFT printer traffic from numerous banks," the documents show.

But even intelligence agency employees are somewhat concerned about spying on the world finance system, according to one document from the UK's intelligence agency GCHQ concerning the legal perspectives on "financial data" and the agency's own cooperations with the NSA in this area. The collection, storage and sharing of politically sensitive data is a deep invasion of privacy, and involved "bulk data" full of "rich personal information," much of which "is not about our targets," the document says.

SPIEGEL/kla

Article...
  • For reasons of data protection and privacy, your IP address will only be stored if you are a registered user of Facebook and you are currently logged in to the service. For more detailed information, please click on the "i" symbol.
  • Post to other social networks

Comments
Discuss this issue with other readers!
3 total posts
Show all comments
    Page 1    
1. follow the money
toocrazy 09/16/2013
Just think of all the information you provide to the bank to obtain a credit card. Now envision the NSA and others reviewing this information.
2. Statement from Visa
spon-facebook-1261410542 09/16/2013
The statement from Visa shows they are cooperating. Note that it says it does not allow "any unauthorized access". In other words, it does allow authorized access. The statement also says it only allows access to information based on a "valid legal process." This is remarkably similar to the same statement made by Goolge, Yahoo and Facebook. Again, Visa allows access to their information as they view the mass collection as part of a legal process.
3. Visa says
spon-facebook-1080326300 09/30/2013
I finally got a response from Visa, they don't seem to worry about this issue: "Thank you for contacting Visa Europe. With respect to the claims in the Der Spiegel article, we are not aware of any unauthorized intrusion into our network. Visa takes data security seriously and, in response any attempted intrusion, we would pursue all available remedies to the fullest extent of the law. Further, it’s Visa’s policy to only provide transaction information in response to a subpoena or other valid legal process."
Show all comments
    Page 1    
Keep track of the news

Stay informed with our free news services:

All news from SPIEGEL International
Twitter | RSS
All news from World section
RSS

© SPIEGEL ONLINE 2013
All Rights Reserved
Reproduction only allowed with the permission of SPIEGELnet GmbH




European Partners
Presseurop

Politiken

Corriere della Sera

Fraudster’s False Bribery Claims

17 Arrests at Italy-Croatia Game


Facebook
Twitter