Rodney Joffe Explained

Rodney Joffe
Birth Name:Rodney Lance Joffe
Birth Place:South Africa
Other Names:Max
Citizenship:American[1]
Occupation:Computer scientist
Known For:Computer security

Rodney Joffe is a South African/American entrepreneur and cybersecurity expert. He is a recipient of the FBI's Director's Award for Outstanding Cyber Investigation for his role in uncovering the Mariposa botnet.[2]

Early life

Joffe was born in South Africa.[3] He has been involved in information technology since 1973, when he trained as a systems analyst and programmer in the pensions actuarial group of the Old Mutual Life Insurance Company in Cape Town.[4]

Career

Joffe is credited with creating web site hosting company Genuity (Internet company), as well as UltraDNS, a domain name service company which was sold to Neustar in 2006. He retired from Neustar in September, 2021.[5]

From 2009-2010, Joffe was Director of the Conficker Working Group.[6]

Durham inquiry

On September 15, 2021, Internet researchers successfully extrapolated information from civil litigation brought by Alfa Bank and other open source data to identify Joffe as "Max" from Dexter Filkins' New Yorker articles about Alfa-Bank and The Trump Organization, in addition to being a client of Michael Sussmann.[7] [8] [9]

On September 30, 2021, Joffe was confirmed to be Tech Executive-1.[10] [11] [12] [13]

In a February 2022 court motion related to Michael Sussmann's prosecution, Special Counsel Durham alleged that Joffe and his associates had exploited access his company had through a pending cybersecurity contract with the Executive Office of the President (EOP) to acquire nonpublic government domain name system and other data traffic "for the purpose of gathering derogatory information about Donald Trump."[14] [15] Durham did not allege that any eavesdropping of Trump communications content occurred,[16] and on March 4, 2022, he dropped these claims against Joffe.[17] [18]

A spokesman for Joffe released a statement asserting that his client had lawful access under a contract to analyze White House DNS data for potential security threats.[19] The spokesman stated that Joffe's work was in response to hacks of the EOP in 2015 and of the DNC in 2016, as well as Russian YotaPhone queries in proximity to the EOP and the Trump campaign, that raised "serious and legitimate national security concerns about Russian attempts to infiltrate the 2016 election". According to Joffe's spokesman, "deeply concerned" cybersecurity researchers prepared a report "about the anomalies they found in the data" and shared it with the CIA.[20]

Awards

In 2013, Joffe received the FBI's Director's Award for Outstanding Cyber Investigation for his role in uncovering the Mariposa botnet.[21]

In 2015, Joffe received the Mary Litynski Lifetime Achievement Award from M3AAWG, for his lifetime work in fighting text spam, malware and DDoS attacks.[22]

In 2018, Joffe received the Contribution to Cyber Security Award, presented at the 2018 Computing Security Awards.

Three years in a row from 2018-2020, Joffe was named Cybersecurity Professional of the Year, at the Cybersecurity Excellence Awards.[23]

Patents

  1. Distributed computing system and method for distributing user requests to replicated network servers - Hopscotch - US 8,683,075 [24]
    1. Domain name system and method of operating using restricted channels - US 9,871,794 [25]
    2. Domain name system and method of operating using restricted channels - US 10,356,097 [26]
    3. Method And System For Detecting Network Compromise - US 9,356,942 [27]
    4. Method And System For Detecting Network Compromise - Continuation - US 9,674,222 [28]
    5. Method and apparatus for balancing the process load on network servers according to network and serve based policies - US 6,185,619 [29]
    6. Method and system for detecting network compromise - US 10,230,761 [30]
    7. Multi-tenant unit - US 6,144,638 [31]
    8. Secure Domain Name System - US 9,648,004 [32]
    9. Secure Domain Name System - US 9,172,713 [33]

Notes and References

  1. Web site: Memo of Law Re Sussmann 10.12.21 Exhibits - Part 1 . October 15, 2021 . 93 . Did you understand why Mr. Sussmann was using a pseudonym for Rodney Joffe? [...] To the best of my recollection, it was described to me as this is an individual [Joffe] who is a senior official who has both significant government and nongovernment contracts. Someone who has no interest in being part of a news cycle, but yet as a patriotic American, felt it was his duty to provide this information to the government in some way for them to take some further research action. .
  2. Web site: StackPath .
  3. News: Butterworth . Trevor . Computer Worm Invaded Iranian Nuke Plant . September 27, 2010 . . Charming and quick-witted, Joffe, who is 55 and originally hails from South Africa... . September 18, 2021 . https://archive.today/20210918065315/https://www.thedailybeast.com/computer-worm-invaded-iranian-nuke-plant . live .
  4. Web site: Nominating Committee – Members 2005. ICANN. www.icann.org. February 13, 2022.
  5. News: Blackwell . Evelyn . Who is Rodney Joffe, aka 'Tech Executive-1' in Durham indictment? . World News Era . 30 September 2021 . Joffe retired earlier this month from Neustar Inc., a Reston, Va.-based company that provides various internet-related services..
  6. Web site: 2010-06-14 . Conficker still a threat, says Working Group . 2022-06-17 . Infosecurity Magazine.
  7. Filkins . Dexter . Was There a Connection Between a Russian Bank and the Trump Campaign? . October 8, 2018 . . In June, 2016, after news broke that the Democratic National Committee had been hacked, a group of prominent computer scientists went on alert. Reports said that the infiltrators were probably Russian, which suggested to most members of the group that one of the country’s intelligence agencies had been involved. They speculated that if the Russians were hacking the Democrats they must be hacking the Republicans, too. "We thought there was no way in the world the Russians would just attack the Democrats," one of the computer scientists, who asked to be identified only as Max, told me. [...] (Max described himself as "a John McCain Republican.") [...] Max’s group began combing the Domain Name System, a worldwide network that acts as a sort of phone book for the Internet, translating easy-to-remember domain names into I.P. addresses, the strings of numbers that computers use to identify one another. [...] Max and his group are part of a community that has unusual access to these records, which are especially useful to cybersecurity experts who work to protect clients from attacks. Max and the other computer scientists asked me to withhold their names, out of concern for their privacy and their security. I met with Max and his lawyer repeatedly, and interviewed other prominent computer experts. . October 8, 2018 . https://archive.today/20181008152608/https://www.newyorker.com/magazine/2018/10/15/was-there-a-connection-between-a-russian-bank-and-the-trump-campaign . live .
  8. Fool_Nelson . 1438214296035545088 . September 15, 2021 . 3/ Given "Max/@michaelsuss's client" was a "John McCain Republican", Joffe is a good candidate given he donated to a Republican while living in Arizona and his company @Neustar has been represented by Perkins Coie. . September 21, 2021 . https://archive.today/20210921192424/https://twitter.com/FOOL_NELSON/status/1438214296035545088 . live .
  9. News: Identity of 'Tech Executive' in Durham indictment over Alfa Bank claims revealed . September 30, 2021 . . Online sleuths figured out earlier this month Joffe was likely the unnamed technology executive. . https://archive.today/20211001024447/https://www.washingtonexaminer.com/news/identity-of-tech-executive-in-durham-indictment-revealed . October 1, 2021 . live .
  10. News: Savage . Charlie . Goldman . Adam . Trump Server Mystery Produces Fresh Conflict . September 30, 2021 . The New York Times . [T]hree of their names have appeared among a list of data experts in a lawsuit brought by Alfa Bank, and Trump supporters have speculated online about their identities. The Times has confirmed them, and their lawyers provided statements defending their actions. [...] “Tech Executive-1” is Mr. Joffe, who in 2013 received the F.B.I. Director’s Award for helping crack a cybercrime case, and retired this month from Neustar, another information services company. . September 30, 2021 . https://archive.today/20210930170425/https://www.nytimes.com/2021/09/30/us/politics/trump-alfa-bank-indictment.html . live .
  11. ClimateAudit .
  12. Ross . Chuck . ChuckRossDC . 1443638221368434688 . CNN confirms what @FOOL_NELSON sleuthed a while back -- "Tech executive 1" in the Sussmann indictment is Rodney Joffe of the firm Neustar. Alfa Bank had subpoenaed Joffe earlier this year in its lawsuit against Fusion GPS. .
  13. News: Perez . Evan . Polantz . Katelyn . Durham issues fresh round of subpoenas in his continuing probe of FBI investigation into Trump, Russia . . September 30, 2021 . While working for Perkins Coie, Sussmann also represented Rodney Joffe, a cybersecurity expert referred to in Durham's indictment as "Tech Executive-1." In 2016, Joffe, who has not been previously identified, worked with researchers to collect internet data about the Trump Organization that Sussmann took to the FBI. . September 30, 2021 . https://archive.today/20210930210717/https://www.cnn.com/2021/09/30/politics/durham-subpoenas-probe-russia-fbi-sussman/index.html . live .
  14. News: Neidig . Harper . Durham alleges cyber analysts 'exploited' access to Trump White House server . The Hill . February 14, 2022.
  15. News: Special counsel, Democratic lawyer clash over new allegations regarding data purported to tie Trump to Russia . ABC News . February 15, 2022. Alexander Mallin. Jack Date.
  16. News: Special counsel Durham alleges Clinton campaign lawyer used data to raise suspicions about Trump . CNN . February 14, 2022. Katelyn Polantz. Evan Perez.
  17. Web site: emptywheel . 2022-03-06 . John Durham Drops Claim that Rodney Joffe "Mined" EOP Data for Derogatory Information on Trump from Boilerplate . 2022-06-17 . emptywheel . en-US.
  18. Web site: 2022-03-12 . Michael Sussmann's Attorneys: John Durham Engaged in 'Extraordinary Prosecutorial Overreach' and Failed to Cite a 'Single Analogous Precedent' for Indictment . 2022-06-17 . Law & Crime . en.
  19. News: Savage . Charlie . Court Filing Started a Furor in Right-Wing Outlets, but Their Narrative Is Off Track . . February 14, 2022.
  20. News: Special counsel, Democratic lawyer clash over new allegations regarding data purported to tie Trump to Russia . ABC News . February 15, 2022. Alexander Mallin. Jack Date . "As a result of the hacks of EOP and DNC [Democratic National Committee] servers in 2015 and 2016, respectively, there were serious and legitimate national security concerns about Russian attempts to infiltrate the 2016 election. Upon identifying DNS queries from Russian-made Yota phones in proximity to the Trump campaign and the EOP, respected cybersecurity researchers were deeply concerned about the anomalies they found in the data and prepared a report of their findings, which was subsequently shared with the CIA." .
  21. Web site: Neustar's Rodney Joffe Receives Prestigious FBI Director's Award . October 29, 2013 . September 21, 2021 . https://archive.today/20210921154607/https://www.home.neustar/about-us/news-room/press-releases/2013/neustar-s-rodney-joffe-receives-prestigious-fbi-director-s-award . live .
  22. Web site: Group (M3AAWG) . Messaging Anti-Abuse Working . 2015-06-10 . Rodney Joffe Receives 2016 M3AAWG Mary Litynski Award for Lifetime Work in Fighting Text Spam, Malware and DDoS Attacks . 2022-06-17 . GlobeNewswire News Room . en.
  23. Web site: Rodney Joffe Named a 2020 Cybersecurity Professional of the Year by the Cybersecurity Excellence Awards . 2022-06-17 . I-COM . en-US.
  24. Web site: United States Patent: 8683075 - Distributed computing system and method for distributing user requests to replicated network servers .
  25. Web site: United States Patent: 9871794 - Domain name system and method of operating using restricted channels .
  26. Web site: United States Patent: 10356097 - Domain name system and method of operating using restricted channels .
  27. Web site: United States Patent: 9356942 - Method and system for detecting network compromise .
  28. Web site: United States Patent: 9674222 - Method and system for detecting network compromise .
  29. Web site: United States Patent: 6185619 - Method and apparatus for balancing the process load on network servers according to network and serve based policies .
  30. Web site: United States Patent: 10230761 - Method and system for detecting network compromise .
  31. Web site: United States Patent: 6144638 - Multi-tenant unit .
  32. Web site: United States Patent: 9648004 - Secure domain name system .
  33. Web site: United States Patent: 9172713 - Secure domain name system .