In Salon yesterday, reporter Kim Zetter penned a story describing allegations by two unnamed sources that the federal government has set up a facility in a closed-off room inside an AT&T ânetwork operations centerâ in St. Louis — a site that plays a major role in managing all of AT&T’s Internet operations. According to Zetter, the site is the âtechnical command center from which the company manages all the routers and circuits carrying the company’s domestic and international Internet traffic. Therefore, [the site] could be instrumental for conducting surveillance or collecting data.â
Weâve heard a bit about this before. Back in January, Mark Klein, a former AT&T technician, became a witness in a class-action lawsuit filed by the Electronic Frontier Foundation against AT&T, charging the company with illegally taking part in a NSA domestic-surveillance program. Klein alleged the existence of government surveillance operations in AT&T offices in San Francisco an in Bridgeton, Missouri, near St. Louis, according to AT&T documents.
Zetterâs Salon story cites two sources who worked at the Bridgeton facility but who had never actually entered in the room in question, or even — amazingly — asked the people who worked in it what they were doing, even though the sources had been told by others at the company that âemployees working inside the room were âmonitoring network trafficâ and that the room was being used by âa government agency.ââ
From there, Zetter — who has won several awards for her investigative and feature reporting — builds a case about what could be going on in the room, which leads to a story populated with more than its fair share of âcould beâsâ and âmightâs,â with a frustrating lack of concrete evidence to confirm the suspicions of the employees, technology experts and former NSA hands she speaks to, all of whom say the operation smells like an NSA program.
âIf the NSA is using the secret room,â she writes, âit would appear to bolster recent allegations that the agency has been conducting broad and possibly illegal domestic surveillance and data collection operations âŠâ
Later, thereâs this: âThe nature of the government operation using the Bridgeton room remains unknown, and could be legal. Aside from surveillance or data collection, the room could conceivably house a federal law enforcement operation, a classified research project, or some other unknown government operation.â
The piece also quotes âNSA expert Matthew Aid, who has spent the last decade researching a forthcoming three-volume history of the agency,â saying: “I’m not a betting man, but if I had to plunk $100 down, I’d say it’s safe that it’s NSA.”
Later, Zetter writes, âIt’s possible the Bridgeton room is being used for a federal law enforcement operation ⊠it is also possible that the Bridgeton room is being used for a classified government project, such as data mining, with which the Pentagon has experimented in the past.â
And she tells us that workers at the AT&T center âcould conceivably collect data using any AT&T router around the countryâŠTo do so, the company would need to install a wiretap-like device at select locations for âsniffingâ the desired data.â
All of which builds a case, and raises questions, but never quite delivers the goods. Phrasing the story in this way was intentional, Zetter told CJR Daily, since her sources had never been inside the tightly-controlled room, but were told by âcompany supervisorsâ that company employees inside the room were working on a government project. She says that all of the informed speculation in the story were her and her editorâs way of âhedging our bets,â about what is going on at the AT&T facility, but that they are confident about the finished piece.
Given the New York Timesâ James Risen and Eric Lichtblauâs account of alleged NSA eavesdropping on phone calls back in December and Leslie Cauleyâs May piece in USA Today accusing AT&T, Verizon and BellSouth of handing phone records over to the NSA (which the companies have either denied or declined to comment on) thereâs plenty of circumstantial evidence that suggests Zetter could be right.
But just like the sources for those other stories, Zetterâs anonymous sources stand to lose their livelihoods if theyâre outed, which sets up a frustrating cat-and-mouse game for the reader — if we donât know who these people are, and what their motivations might be, how can we judge the veracity of their claims?
Zetter told CJR Daily that she had other sources who refused go on record, even anonymously, and she declined to divulge how she goes about finding and assessing her anonymous sources.
When asked if, since no one knows for certain what is happening in the room, the sheer number of unanswered questions in the story led to some discussions in the newsroom as to how to handle it, Mark Follman, an editor at Salon who worked on the story, said âYeah, absolutely. That was done explicitly because itâs important that the readers are clear that weâre not saying we know definitively whatâs inside the room — nor were we saying whether or not we thought it was legal or not, because we donât know enough to say. Itâs more a matter of phrasing those questions around the information we felt was newsworthy in terms of the details of this facility. There was certainly enough specific detail there to advance the story.â
He said that âeverything was very carefully vetted, in order to be as transparent as possible with readers about what we knew and did not know,â and that Salon âfelt that the story is plenty newsworthy against the backdrop of all the stories that have come out over the last few months about domestic surveillance.â
In yet another twist to the AT&T story, the San Francisco Chronicleâs David Lazarus wrote yesterday that AT&T has recently updated its privacy policy in ways that âappear to give the telecom giant more latitude when it comes to sharing customers’ personal data with government officials.â
This new policy states says that AT&T now claims to own customers’ confidential information and the company reserves the right to, as the new policy says, âdisclose your information in response to subpoenas, court orders, or other legal process,” and âmay also use your information in order to investigate, prevent or take action regarding illegal activities, suspected fraud (or) situations involving potential threats to the physical safety of any person.â
This is far from being proof of the claims in Zetterâs piece, but it is a timely change on the part of AT&T. Thereâs no doubt that Salonâs âphantom roomâ story is plenty newsworthy given everything thatâs come out over the past few months, and Zetter and Salon appear to have carefully weighed the merits of publishing the story, and felt that they had enough to go on.
But, in the end, Salonâs constant hedging makes the piece a frustrating read, and in some respects a less than fully finished piece. And while circumstantial evidence suggests something may be going on at the AT&T facility, it just isnât enough to convict. Yet.
Paul McLeary is a former CJR staff writer. Since 2008, he has covered the Pentagon for Foreign Policy, Defense News, Breaking Defense, and other outlets. He is currently a defense reporter for Politico.