A former software engineer with the U.S. Central Intelligence Agency (CIA) has received a 40-year prison sentence from the Southern District of New York (SDNY) for transferring classified documents to WikiLeaks as well as possessing child pornography.
Joshua Adam Schulte, aged 35, was initially charged in June 2018 and subsequently found guilty in July 2022. On September 13, 2023, he faced additional convictions regarding child pornography, leading to a sentence that includes a lifetime of supervised release alongside incarceration.
The U.S. Department of Justice (DoJ) emphasized that Schulte’s actions represent the largest data breach in CIA history. His unauthorized transmission of sensitive information to WikiLeaks is considered one of the most significant leaks of classified information the U.S. has seen.
The sensitive data Schulte disclosed included a collection of hacking tools and exploits categorized as Vault 7 and Vault 8. WikiLeaks began releasing this material on March 7, 2017, over an extensive period.
The charges relate to Schulte’s tenure as a software developer in the CIA’s Center for Cyber Intelligence (CCI) from 2012 to 2016, during which time he developed offensive cyber operation tools. Evidence from the trial suggested he misused his administrative access to extract “copies of the entire CCI tool development archives” in 2016.
This disclosed information outlined methods for collecting foreign intelligence against U.S. adversaries, including a diverse array of cyber weapons capable of compromising vehicles, smart TVs, web browsers, and various operating systems.
The breach, labeled a “digital Pearl Harbor,” resulted in substantial financial losses for the agency—estimated in the hundreds of millions of dollars—while jeopardizing U.S. national security and endangering CIA personnel.
Additionally, Schulte was accused of misleading the FBI multiple times regarding his role and attempts to fabricate narratives about how the confidential information was sourced from CIA computers to deflect suspicion.
A search of his residence in New York in March 2017 led to the discovery of a vast cache of child sexual abuse material (CSAM), which included around 3,400 images and videos, some acquired during his employment within the CIA via the dark web and Russian websites.
While awaiting trial, Schulte was discovered using unauthorized cell phones in jail to create encrypted email and social media accounts. He attempted to share protected discovery materials with WikiLeaks and publish classified information regarding CIA cyber techniques and tools.
The DoJ noted that Schulte’s own writings revealed a goal of undermining diplomatic relations, closing embassies, and ending U.S. overseas operations.
FBI Assistant Director in Charge James Smith commented on the severity of Schulte’s actions, highlighting the dual threat posed by his betrayal of national security and his possession of horrific child exploitation materials. The light shed on this case highlights pressing concerns for organizations about the integrity of sensitive data and insider threats, urging business owners to remain vigilant against potential vulnerabilities within their systems.
