[pinkcan]

I understand this document is from 2009, not secret, and probably contains information known elsewhere.

Still, what is the intent of the CIA in publishing this on the open web? I assume they would be able to distribute this to US nationals even in other orgs through internal networks.

[dmbche]

My reasoning is that this, to people not as well versed on the subject, indicates that the CIA shares anything that it doesn't absolutely need to keep hidden from the public. It indicates that they are trustworthy.

Also, everything in there is somewhat "common knowledge" as in if you sat down for 4 hours thinking on the subject you'd probably get most of whats written here. So this has little impact on risk - anyone that would be a serious risk doesn't need this, so it's a neat read for the public instead.

[dredmorbius]

Among other possiblities: working with independent assets for whom some modicum of tradecraft is advisable, but who would not able to attain standard clearances, and for whom the fact that the content is openly available online might itself serve as plausible cover should it be determined they've viewed or accessed it.

There's also the open source (software, not intelligence) model of many eyes and being able to achieve open review of techniques.

[polytely]

Recruitment, they need to be cool to attract the people they want as employees

[kjellsbells]

Its always struck me as a little odd that their recruitment (at least, their public recruitment) is focused on young people, new grads, etc. I wonder why they dont publicly try to recruit people who have been in industries or domains for years, eg pick up people working at Qualcomm who already have good reason to be traveling across the world and meeting people.

[runjake]

Public recruitment typically happens at university, which is dominated by young people.

Older people who show up at the university job fair or get “encouraged” by faculty with connections get recruited just the same.

In fact, they’re not recruiting 20 year olds, they’re more likely to recruit people in their late 20s or even 30s who have some real life experience and travel under their belts.

Caveat: apparently service in the Peace Corps and certain other NGOs will disqualify you for Officer duty. At least that’s the claim, backed up by several ex-officers.

[hollerith]

One consideration is that hiring people at the start of their working lives minimizes the number of people they need to trust with sensitive information. Another: the younger the person, the less averse they tend to be to risk their lives.

[specproc]

They might do for specific jobs, but you want them nice and fresh for a career path. Too much time out in the world fosters the sort of independent thinking that's a liability in that line of work.

[HWR_14]

Isn't most public recruitment aimed at young, new grads? Is there a "mid-career come work at Goldman Sachs" recruitment pitch they put out to the general public?

[logicallee]

>Still, what is the intent of the CIA in publishing this on the open web?

I think this is great for branding. All you ever hear is negative stuff. They should publish more in their own name and on their own site.

[brigandish]

I for one am quite happy that they're unable to make their "brand" look better.

The other day I wondered to myself what would happen if all of the secrets held by agencies like the CIA or MI6 were to be exposed, all at once. I doubt it would be bad for the likes of you or me.

[Animats]

Have you seen the CIA World Facebook?[1] That goes much further.

[1] https://www.cia.gov/the-world-factbook/

[qup]

> CIA World Facebook

That sent shivers down my spine, but then I realized that's just Facebook.

[dredmorbius]

NB: Fact book, not Facebook.

[boppo1]

Maybe it’s bad advice that ne’er-do-wells will try to employ, leaving them susceptible to the CIA.

[Applejinx]

On the contrary: my guess is that it is a method for people to familiarize themselves with the whole topic of tradecraft, knowing that ALL countries have put great effort into exactly this in recent years.

There's just so many spooks and bad actors about. Having some familiarity makes for a more educated populace who are going to be more wary of being manipulated, so there is really no reason to try and reserve this information for an elite. Because the bad actors are very grateful when you do: they will prosper in a field of targets all of whom are super naive.

[pinkcan]

Wouldn't that be too obvious, wouldn't it be better to plan bogus info elsewhere, especially for and org capable of doing so?

Wouldn't it be dangerous to publish bogus info that can be picked up by nationals and allies, especially since it is branded?

[mike_d]

People think this, but it is still highly effective.

Say you want your adversaries to use pencils instead of pens to write their secret notes. You publish information on the risks of pens and how they leak information on an obscure corner of the internet and seed it to a small forum or two. That gets picked up by a government worker in Germany and they put it into their recommendations. That document then gets stolen by the Chinese. Both of these get shared with Iran. The materials are then leaked and you have the Snowden's of the world shouting from the rooftops the importance of using pencils.

[dmbche]

While I see what you mean, I can't think of any example right away that are touted by people like Snowden - I see there were many honeypots on crypto, TOR and "encrypted" phones, but other than maybe VPNs I wouldn't know what was shared this way.

[mike_d]

> I can't think of any example right away that are touted by people like Snowden

Then it worked perfectly.

[dmbche]

In the sense of - are you talking about something or is it all just vague impressions?

[than3]

Regardless, they have an interesting but relatively sordid history.

Its probably just to drive interest for recruitment since tensions are escalating geopolitically and they are probably finding their projections show they are understaffed. Skilled labor isn't as easy to come by as corporations make it out to be (with everything being replaceable).

Anything published like this would be considered a poison the well attack by any ne'er do wells.