The latest leaked by hacker group Secretive brokers were confidential information that could only come from the NSA, providing conditions for a ritual from the Cold War – hunting greyhounds.

The message from Vladimir Putin can come in many forms.

It may be crude as a pair of Russian bombers that prozujuvaat over the coast of Alaska or lethal as a public murder of a deserter in the streets of Kiev. Now Putin may send a message to the US government through a more nuanced channel: escalating series of leaks of US intelligence last week exposed the NSA operation in the Middle East along with the identity of an official of the agency that participated in it, said Daley Beast.

Information published by self-proclaimed hackers calling itself “Secret agents” (The Shadow Brokers) began to leak into the last months of the Obama administration and increased frequency and impact on US attack on Syrian airport this month – a move that has angered Russia. There is no forensic confirmation link the group with the Kremlin as hacks during last year’s elections, but security experts say the attacks Secretive brokers fit into the scheme created by the Russian intelligence agency GRU during their hacking election.

In that operation, according to US intelligence findings, Russia created a fictitious Internet-persons to launder some of their stolen e-mails, including false “svirkachki” site called DCliks (DCLeaks) and fictional Romanian hacker called “Guchifer 2.0”.

“I think that between the US and Russia are going something that we see only a part,” said security technologist Bruce Shneer, technological chief Aye-bi-em rezilient. “What happens when the bodies of the two countries will enter into war with each other and will not tell us the other?”

Mysterious brokers “premiere performances” in August, appearing out of nowhere-anywhere and publishing group secret hacker tools that belong to the elite program of the NSA, which penetrates into foreign computers to collect intelligence. At that time, mysterious brokers claimed that mercenaries hackers trying to sell secret NSA that will offer the most money. But they continued to publish free files, which apparently was timed public quibbling between the Obama administration and the Russian government.

From the outset, outside experts are not even suspected that the strings pulled Russian intelligence. “Circumstantial evidence and most basic wisdom suggest Russian responsibility,” he tweeted exiled associate of NSA Edward Snowden last year in August. “Why do it? Nobody knows, but I think this is more diplomacy than intelligence related to escalating around the hacking of emails of the Democratic National Committee. ”

The FBI began an investigation in August and arrested collaborator NSA named Hal Martin after Martin revealed that two decades stored secret agency in their house. But even after Martin was taken into federal custody, mysterious brokers continued to post messages and files.

Snowden and other experts have speculated that the Russians got the code without the help of an insider. As part of the daily work, intelligence agencies, including the NSA secretly possess, occupy or hijacking public servers on the Internet anonymously to carry out attacks. If necessary, these machines are filled with at least some of the tools of the agency. Snowden’s theory that the Russians invaded in some of these servers and their gathered NSA-jackpot.

Whatever their origin, leaks dried on January 12, when the sacraments brokers reported that “retire” 10 days before Donald Trump to take an oath. The group reappeared even months after a deadly chemical weapons attack on the Syrian army in Ghouta. Reportedly moved by images of Syrian children injured or killed in the attack, Trump fired 59 Tomahawk missiles on the air base of the Syrian government – dramatically defying the will of Putin, who believes Syrian President Bashar al-Assad’s strategic ally.

The Russian government immediately condemned the reaction of the United States. Two days later, it did the mysterious brokers. The group ended months of silence and released another tranche of secret NSA with a long open letter to Trump in protest over the attack in Syria. This time no excuse for profit motives, mysterious brokers claimed to be disenchanted American voters – “people that they chose you,” they said, using expressions that have a double meaning when coming from an operation believed to be linked to the Kremlin.

Mysterious since brokers play sharper. Their latest announcement, on Friday, expose the public code of a sophisticated tool NSA which “attack” Windows machines, which made some of the capacity of the agency in the hands of newly-fledged every hacker knows how to use the keyboard.

This time, mysterious brokers did not stop the code. For the first time in their short history, they reported and internal spreadsheets, documents and presentations slides for the NSA, some of which were decorated with symbols and labels “strictly confidential”, which are known to all who read materials from Snowden.

Leaked materials thoroughly unravel a hacking operation NSA 2013 called “Jeep Flea Market”, which was produced deep access to the headquarters of Istnets Dubai-based company that deals with transferring money for a number of banks in the Middle East, something that obviously of interest to US intelligence. (Istnets denies been hacked). But brokers mysterious time not only exposed the NSA operation. Other metadata in files revealed the full name of the 35-year-old employee of the NSA in San Antonio, who was allegedly involved in hacking.

NSA hackers do not face the same danger as CIA agents working undercover in foreign countries, but the probability Russia began to unravel after the name, at the same time connecting them with certain operations, increases the risk for the intelligence community.

Perhaps the mysterious brokers mistakenly published the name. Groups like WikiLeaks and journalists received materials from Snowden used the documents to clean metadata that identify people. But a less experienced hacker can not sneak it. Shneer is suspicious. “If we assume that it is a smart and strategic skillful actor, which I think is true, then you have to assume that they did that on purpose,” he said.

Nothing is certain, mysterious brokers puzzle which lacks fragments. But materials arcane brokers operating in Friday immediately disprove one theory for them. NSA would never put confidential spreadsheets and PowerPoint slides on a public server. They can only come from inside the NSA.

This revives a legendary intelligence ritual of the Cold War: Russian mole hunt. “I think that probably requires someone who rebelled against the inside, or artist that had access to that information,” said Eric O’Neill, a strategist for the national security of Carbon Black and former expert in the FBI, who in 2001 discovered the Robert Hansen, double secret agent who spied for the Russians. “In any case, the intelligence community have spies is rather high position.”

If Russia really had a mole in the NSA in 2013, which is najskorata date documents, Shneer considered it unlikely that she now has a mole, otherwise arcane brokers would not exist. “We publish materials even when they become useful for shame rather than intelligence,” he says. “So if you have your man in NAV, you would not have published it. That man is too important. ”

It is also possible, though unprecedented, Russia found a way to penetrate Trust Network NSA.

As shown Snowden when you’re out of the NSA USB full of secret information, it is now relatively easy to steal and smuggle confidential information. But O’Neil said that now the counterintelligence mission of the FBI is a lot easier, because many traces in server logs confidential networks.

“Now a lot easier extracting secrets out, but on the other hand, it is easier and the police and the FBI to find out who had access to the data,” he says. “I like to think that this mole hunt will be slightly easier than before.”

Until then, expect from time to time to see mysterious brokers. In Friday’s pile materials they suggested more discoveries this week: “Who knows what we’ll have next time?”

If Russia really had a mole in the NSA in 2013, which is najskorata date documents, Shneer considered it unlikely that she now has a mole, otherwise arcane brokers would not exist. “We publish materials even when they become useful for shame rather than intelligence,” he says. “So if you have your man in NAV, you would not have published it. That man is too important. ”

It is also possible, though unprecedented, Russia found a way to penetrate Trust Network NSA.

MORE: Man flagged for possible links to Paris shooting turns himself in to Antwerp police

As shown Snowden when you’re out of the NSA USB full of secret information, it is now relatively easy to steal and smuggle confidential information. But O’Neil said that now the counterintelligence mission of the FBI is a lot easier, because many traces in server logs confidential networks.

“Now a lot easier extracting secrets out, but on the other hand, it is easier and the police and the FBI to find out who had access to the data,” he says. “I like to think that this mole hunt will be slightly easier than before.”

Until then, expect from time to time to see mysterious brokers. In Friday’s pile materials they suggested more discoveries this week: “Who knows what we’ll have next time?”