ExpressVPN executive facing fine over UAE spying probe

A computer being guarded by cybersecurity.
(Image credit: iStock)

(ed: ExpressVPN has issued a statement on its website explaining the role of Daniel Gericke in more details and why the company has stuck with his CIO.)

Daniel Gericke, chief information officer of ExpressVPN, is among the three former US intelligence and military personnel who have agreed to jointly pay a fine of more than $1.6million to resolve cybercrime charges against them.

According to a release issued by the US Department of Justice (DoJ), the three have been charged for their involvement in Project Raven, where they allegedly worked as mercenary hackers for the United Arab Emirates.

“Despite being informed on several occasions that their work for U.A.E. CO, under the International Traffic in Arms Regulations (ITAR), constituted a “defense service” requiring a license from the State Department’s Directorate of Defense Trade Controls (DDTC), the defendants proceeded to provide such services without a license,” explains the DoJ.

TechRadar needs yo...

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

>> Click here to start the survey in a new window <<

The DoJ explains that three have decided to pay the fine to resolve the charges that included overseeing the creation of “zero-click computer hacking and intelligence gathering systems” for the UAE government.

Busy week for ExpressVPN

According to reports, Project Raven, first exposed in 2019, involved the creation and use of zero-click surveillance tools by the UAE allegedly against vocal critics of UAE’s human rights record. 

The three defendants have now agreed to cooperate with US authorities and pay the fine in exchange for deferred prosecution.

The release notes that the three have also forfeited foreign and US security clearances and face future employment restrictions, though ExpressVPN stressed in an email to CNET that its trust in Gericke "remains strong." 

"We've known the key facts relating to Daniel's employment history since before we hired him, as he disclosed them proactively and transparently with us from the start. In fact, it was his history and expertise that made him an invaluable hire for our mission to protect users' privacy and security," ExpressVPN told CNET

Notably, the DoJ resolution comes on the heels of ExpressVPN’s acquisition by Kape Technologies in a deal valued close to $1 billion.


Mayank Sharma

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.