#AI Review of #News: Global #security and intelligence briefing for Thursday, May 28, 2026. thenewsandtimes.blogspot.com…
— Michael Novakhov (@mikenov) May 28, 2026
Day: May 28, 2026
Iran’s Counterintelligence Methodologies Explained gemini.google.com/share/c88b…
— Michael Novakhov (@mikenov) May 28, 2026
Categories
News Today
News Today – 6 am gemini.google.com/share/e2c3…
— Michael Novakhov (@mikenov) May 28, 2026
News at 7 AM gemini.google.com/share/fbed…
The Iranian intelligence apparatus—primarily split between the civilian Ministry of Intelligence and Security (MOIS) and the military-aligned Islamic Revolutionary Guard Corps Intelligence Organization (IRGC-IO)—faces a highly complex operational environment. When countering what Tehran defines as a U.S.-Israeli “hybrid warfare” campaign involving sabotage and smuggling, their counterintelligence (CI) methodologies rely heavily on saturating the environment, both physically and digitally.Here are the specific tradecraft and methodologies MOIS and IRGC-IO are likely employing to detect and disrupt these networks:
Exploiting the State-Crime Nexus
Iran actively utilizes transnational criminal organizations—such as European gangs, drug cartels, and human traffickers—for its own offensive operations abroad, largely managed by the IRGC’s Unit 840. Defensively, this deep entanglement with the underworld creates a massive counterintelligence advantage.
Informant Networks: MOIS deeply penetrates regional smuggling routes in highly porous border provinces like Sistan-Baluchestan (southeast) and Kurdistan (northwest). They likely use cartel and smuggler informants to detect operational anomalies—such as a sudden influx of highly specialized explosives, satellite communication terminals, or foreign currency that deviates from standard criminal contraband.
Controlled Delivery and Honeypots: Iranian CI frequently establishes front companies or leverages compromised black-market vendors to run “honeypot” supply chains. By allowing a sabotage cell to procure what they believe to be untraceable equipment, MOIS can abductively map the network backward to identify the foreign handlers and the domestic cell structure before an attack occurs.Signal Interception and Traffic Analysis
Given the regime’s focus on countering cognitive and psychological warfare, their cyber units operate aggressively to detect the digital footprints of sabotage cells.
Encrypted Anomaly Detection: While foreign operatives use secure, encrypted channels to communicate with handlers in Tel Aviv or Langley, the mere presence of highly encrypted, burst-transmission traffic originating from sensitive areas (like near the Yazd Missile Base or Natanz) acts as a flare. The IRGC Electronic Warfare commands map these transmission anomalies to pinpoint the physical locations of proxy elements.
Device Profiling: Recent MOIS statements explicitly called out the smuggling of illegal communication devices. Iranian CI forces conduct deep-packet inspection on domestic internet infrastructure to identify the distinct digital signatures of unauthorized satellite uplinks attempting to bypass the heavily monitored national intranet.Institutional Redundancy as a Dragnet
The Iranian intelligence community consists of over a dozen distinct entities. While the overlap between MOIS (focused on domestic security and traditional statecraft) and IRGC-IO (focused on regime preservation and military security) often creates intense bureaucratic friction and turf wars, it also creates a highly saturated CI environment.
Dual-Track Surveillance: A U.S. or Israeli operative attempting to build a domestic proxy network in Iran must evade two entirely separate, aggressively competing counterintelligence apparatuses. If a foreign cell manages to bypass MOIS’s civilian informant networks, they may still trip the IRGC-IO’s military-grade surveillance perimeters around critical infrastructure. This structural redundancy, though inefficient, inherently narrows the epistemological gap by multiplying the data collection vectors.
Preemptive Disruption via “Hybrid” Attribution
Iranian CI does not just operate in the shadows; it uses public attribution as an active defensive tool.
Shaping the Operational Environment: By issuing sweeping public statements warning of U.S.-Israeli “hybrid warfare,” MOIS achieves two goals. First, it attempts to legitimize sweeping crackdowns on domestic opposition, categorizing social unrest as foreign-backed espionage to deter the local populace from cooperating with external actors. Second, it intentionally “spooks” existing proxy networks, forcing them to alter their communication patterns or go to ground—often generating the very operational mistakes that MOIS surveillance teams need to finally identify them.
Recent seizure of espionage materials by Iranian intelligence
This broadcast provides insight into the types of physical materials and communication equipment Iranian security forces are actively interdicting as part of their counter-smuggling operations.— Michael Novakhov (@mikenov) May 28, 2026
#FBI #News Today – AM
share.google/aimode/QhOfPTVU…
#Cybercrime and Public Safety Warnings:
Internet Crime Report Insights:
A newly released FBI Internet Crime Report highlights that cryptocurrency investment fraud is the primary driver of digital financial loss in the U.S., accounting for $7.2 billion in victim losses.
Google Search google.com/search?q=fbi+news…— Michael Novakhov (@mikenov) May 28, 2026
cryptocurrency – Google Search google.com/search?q=cryptocu…
— Michael Novakhov (@mikenov) May 28, 2026
The FBI seized 303 gold bars valued at more than $40 million from the Virginia home of David Rush, a former senior CIA official – Articles and Tweets thenewsandtimes.blogspot.com…
— Michael Novakhov (@mikenov) May 28, 2026
#DavidRush #CIA #FBI
Massive FBI gold seizure from a former intelligence official – Google Search google.com/search?q=massive+…
Search also: Thieves and swindlers among intelligence officers
share.google/aimode/JcifF89i… – AI Mode
Search: David Rush, a former senior CIA official
share.google/aimode/QHqnecgF…
The FBI seized 303 gold bars valued at more than $40 million from the Virginia home of David Rush, a former senior CIA official, on May 18, 2026. Rush was arrested on May 19 and charged with the theft of public money after a CIA internal investigation into missing assets was referred to the FBI. [1, 2, 3, 4, 5]
Details of the Seizure and InvestigationAssets Recovered: In addition to the gold bars—each weighing approximately one kilogram—agents seized roughly $2 million in U.S. currency and 35 luxury watches, primarily Rolexes.
The Alleged Scheme: Between November 2025 and March 2026, Rush allegedly requested tens of millions of dollars in gold and foreign currency for “work-related expenses”. While a portion was found in a storage space near his office, the CIA could not account for the bulk of the assets until they were discovered in his home.
Falsified Credentials: The investigation revealed that Rush had allegedly built his career on a “web of lies,” faking degrees from Clemson University and Rensselaer Polytechnic Institute. He also falsely claimed to be a decorated Navy pilot.
Employment History: Rush served as a senior executive within the CIA, specifically in the Directorate of Science and Technology, and held top-secret/SCI clearance.
Legal Status: Rush is currently being held by the U.S. Marshals Service; a detention hearing is scheduled for June 5, 2026, in Alexandria, Virginia. [2, 3, 4, 6, 7, 8, 9, 10]AI responses may include mistakes.
[1] npr.org/2026/05/28/nx-s1-583…
[2] nytimes.com/2026/05/27/us/po…
[3] bbc.com/news/articles/c5yezd…
[4] washingtonpost.com/national-…
[5] msn.com/en-us/news/insight/e…
[6] nbcnews.com/politics/nationa…
[7] channelnewsasia.com/world/us…
[8] msn.com/en-gb/news/insight/e…
[9] yahoo.com/news/us/articles/f…
[10] alaskasnewssource.com/2026/0…
–AI Mode
David Rush, a former Senior Executive Service-level official at the Central Intelligence Agency (CIA), was arrested by the FBI following allegations that he stole over $40 million in gold bars and lied about his background for decades. [1, 2]
The Arrest and SeizureThe Raid: On May 18, 2026, federal agents executed a search warrant at Rush’s residence in Virginia.
The Cache: Investigators seized 303 gold bars weighing approximately one kilogram each, valued at over $40 million.
Other Valuables: Agents also uncovered $2 million in cash and roughly 35 luxury watches, including numerous Rolexes.
The Scheme: Between November 2025 and March 2026, Rush allegedly requested and received large sums of foreign currency and gold from the government under the guise of “work-related expenses” while working for the CIA’s Directorate of Science and Technology. Internal agency audits later discovered the gold and cash were missing. [1, 3, 4]Background and Resume Fraud
Beyond the missing gold, federal prosecutors reveal that Rush allegedly falsified his entire professional and educational history to secure his high-level security clearance and position: [3, 5]Fake Degrees: He claimed to hold a bachelor’s degree from Clemson University and a master’s degree from Rensselaer Polytechnic Institute, but records show he never attended either.
Faked Military Standing: He claimed to be a U.S. Navy pilot and a continuing Navy Reserve captain. While he was honorably discharged as a lieutenant in 2015, he allegedly continued to claim military leave, collecting $77,000 in fraudulent compensation. [1, 3, 5, 6]Current Legal Status
Rush is charged with theft of public money in a complaint filed in the U.S. District Court for the Eastern District of Virginia. He waived his right to a preliminary hearing and remains in federal custody. [2, 3, 7]
Would you like more details regarding the court filings, the Directorate of Science and Technology where he worked, or the ongoing federal investigation?[1] npr.org
[2] abcnews.com
[3] washingtonpost.com
[4] bbc.com
[5] cbsnews.com
[6] foxnews.com
[7] usatoday.com
–Search also:
Thieves and swindlers among intelligence officers
AI Mode
share.google/aimode/JcifF89i…
Intelligence officers who abuse their status for theft, swindling, or embezzlement represent severe counterintelligence and internal security failures.. While intelligence agencies operate in secrecy, their personnel are highly trained in manipulation, financial tracking evasion, and falsifying identities—skills that rogue actors frequently turn against their own governments or the public. [1, 2, 3, 4]
Rogue officers usually fall into three distinct criminal profiles:
1. Direct Embezzlers of Agency Funds
Because espionage operations rely heavily on “blind budgets” (unvouched funds used for covert payoffs without receipts), internal theft is a persistent threat. [5, 6]The 2026 David Rush Case: In May 2026, a federal grand jury indicted former senior CIA official David Rush. Holding a top-secret clearance, Rush requested tens of millions of dollars in foreign currency and gold bars under the guise of work-related field expenses. An FBI raid on his Virginia home recovered 300 gold bars valued at over $40 million, along with $2 million in cash and 35 luxury watches.
South Korea’s National Intelligence Service (NIS): Multiple former NIS chiefs, including Nam Jae-joon and Lee Byung-kee, were convicted of systematically diverting millions of dollars from the spy agency’s untraceable anti-espionage funds. The money was funneled directly to presidential aides for personal uses like luxury wardrobes and private medical treatments. [5, 7, 8, 9]2. High-Profile Swindlers & “Greed-Driven” Traitors
Many of history’s most damaging double agents did not spy out of ideological conviction, but rather acted as corporate swindlers, treating classified national security secrets as a commodity to fund lavish lifestyles. [10]
Aldrich Ames (CIA): Ames is one of the most infamous financial swindlers in intelligence history. Driven by personal debt, he sold the identities of Western assets to the Soviet KGB in exchange for over $4 million in payouts, using the stolen wealth to buy a luxury estate and a sports car while actively working as a counterintelligence chief.Charles McGonigal (FBI): In late 2023, the former head of FBI counterintelligence in New York was sentenced to prison. McGonigal acted as a high-level fixer, taking hidden cash payments from a former Albanian intelligence operative and violating U.S. sanctions by working for an oligarch to investigate a billionaire rival. [1, 11]
3. Impostors and “Stolen Valor” Con Artists
A major subset of swindling involves individuals who never worked in intelligence but leverage fake spy credentials to defraud investors, corporations, or romantic partners. [12, 13, 14]
The John Beale Fraud: John Beale, a senior official at the Environmental Protection Agency (EPA), successfully defrauded the U.S. government out of nearly $900,000. He skipped work for years by falsifying a dual identity, convincing his employers that his prolonged absences were due to high-stakes, classified missions for the CIA.
Investment and “Spook Speak” Scams: Sophisticated fraudsters frequently utilize basic corporate espionage tactics, deepfakes, and artificial intelligence to mimic authority figures. They use “spook speak” (the vocabulary and evasive mannerisms of real intelligence operators) to manufacture a false aura of security clearance, making their financial traps appear legitimate. [13, 15, 16, 17, 18]Overview of Rogue Conduct
Profile Category [1, 5, 8, 11, 15] Primary MotivationCore Threat VectorNotable Real-World ExampleInternal EmbezzlerDirect financial enrichmentExploiting unvouched “black budgets” and cash accounts.David Rush (CIA, 2026)Sanctions Evader / FixerGreed and post-retirement wealthSelling access, influence, and tracking methodologies.Charles McGonigal (FBI, 2023)Information BrokerFinancing personal debtLiquidating assets and human intelligence files.Aldrich Ames (CIA, 1994)Intelligence ImpostorStatus-driven fraudFalsifying military or agency history to steal funds.John Beale (EPA, 2013)[1] bbc.com
[2] scu.edu
[3] encyclopedia.com
[4] cia.gov
[5] digitaljournal.com
[6] protossecurity.com
[7] facebook.com
[8] kosu.org
[9] bbc.com
[10] foxnews.com
[11] youtube.com
[12] sjpd.org
[13] cncintel.com
[14] evrimagaci.org
[15] facebook.com
[16] youtube.com
[17] youtube.com
[18] husted.senate.gov
–— Michael Novakhov (@mikenov) May 28, 2026
Thieves and swindlers among intelligence officers – Google Search google.com/search?q=Thieves+…
High-profile cases have exposed intelligence officers and officials using their high-level security clearance and covert tradecraft for theft, corruption, and fraud, ranging from massive government asset embezzlement to elaborate confidence schemes. [1, 2]
Cases of Intelligence Embezzlement and Fraud:CIA Gold Theft Scheme: A former senior CIA official with top-secret clearance was charged with stealing hundreds of gold bars worth over $$40$ million from the federal government and stashing them at his residence.
The “Alpha-214” Scam: Garrison Courtney, a former chief spokesman for the DEA, pleaded guilty to running a years-long fraud scheme where he falsely claimed to be a CIA officer overseeing a top-secret program. He scammed federal defense contractors out of millions of dollars using fake classified documents and forged approvals. [1, 2]Hostile State Espionage and Malicious Impersonation:
Stolen Government Identities: The FBI Internet Crime Complaint Center issued an alert warning that malicious actors—including foreign intelligence services—have actively been using artificial intelligence to impersonate senior U.S. officials. Using “smishing” and “vishing” techniques, these thieves aim to establish trust and trick current or former government personnel into handing over sensitive personal information and login credentials.
LinkedIn Recruitment Scams: Western intelligence agencies, including MI5, have warned of foreign spymasters using fake “headhunter” and consulting firm profiles on professional networking sites to manipulate lawmakers, recruit insiders, and facilitate the theft of state secrets. [3, 4, 5]For details on ongoing investigations into intelligence-related financial crimes, review the enforcement advisories published by the Federal Bureau of Investigation. [6]
AI responses may include mistakes.
[1] govexec.com/oversight/2020/0…
[2] facebook.com/kcrgtv9/posts/a…
[3] af.mil/News/Article-Display/…
[4] ic3.gov/PSA/2025/PSA250515
[5] youtube.com/watch?v=OPM7dMrh…
[6] usmarshals.gov/news/press-re…— Michael Novakhov (@mikenov) May 28, 2026
David Rush, a former senior CIA official – Google Search google.com/search?num=10&new…
— Michael Novakhov (@mikenov) May 28, 2026