Terrorist and violent extremist groups have long expressed interest in poisoning and adulterating food and beverage supplies in the West but rarely use this as a tactic. Nonetheless, recent incidents in Europe and Africa underscore the continued interest by some groups in targeting food products at point-of-sale, distribution, and storage. The mere threat of product adulteration in the Homeland almost certainly would cause psychological and economic harm. While we have not seen any specific, credible terrorist threats against Homeland food production and distribution infrastructure, we cannot rule out the possibility of inspired violent extremists or disgruntled insiders attempting to adulterate or poison food and beverages with commonly available toxic industrial chemicals or crude biological toxins due to the relative ease of product manipulation, especially at the last point of sale, which criminal actors have demonstrated consistently in the past.

(U//FOUO) DHS Report: Ransomware Goals of Malicious Actors and Current System Vulnerabilities

June 19, 2017

OCIA assesses that if specific industrial control systems (ICS) were successfully infected with ransomware, it could affect the ability of certain sectors to provide real-time management and control of large networks of geographically scattered equipment. Although security researchers have demonstrated the possibility of ransomware targeting control systems, OCIA assesses that such an attack is highly unlikely given the higher success rate against consumer and business systems, the likelihood that business and process control networks are segmented, and the ability for operators to take a control system out of service and employ manual overrides.

(U//FOUO) Northern Virginia Fusion Center: Social Media Recommendations for Public Safety Personnel

June 11, 2017

Public Safety personnel are urged to use caution when sharing information via social media. With recent officer-involved shootings around the country, those who support attacks against public safety affiliates can gain access to information shared online and may use it to condone violence.

Bilderberg Association Annual Report 2016

June 4, 2017

An annual report for the Bilderberg Association from 2016 made available through the U.K. Charities Commission. The Bilderberg Association is one of several international non-profit affiliates of the group known as Bilderberg Meetings. The U.S. affiliate is called American Friends of Bilderberg, Inc. and is a registered non-profit in the State of New York.

Bilderberg Association Annual Report 2015

June 4, 2017

An annual report for the Bilderberg Association from 2015 made available through the U.K. Charities Commission. The Bilderberg Association is one of several international non-profit affiliates of the group known as Bilderberg Meetings. The U.S. affiliate is called American Friends of Bilderberg, Inc. and is a registered non-profit in the State of New York.

American Friends of Bilderberg 2015 Tax Return

June 3, 2017

The 2015 tax return for the Washington D.C.-based charity American Friends of Bilderberg.

American Friends of Bilderberg 2014 Tax Return

June 3, 2017

The 2014 tax return for the Washington D.C.-based charity American Friends of Bilderberg.

2017 Bilderberg Meeting Participant List

June 1, 2017

The 65th Bilderberg Meeting will take place from 1-4 June 2017 in Chantilly, Virginia, USA. As of today, 131 participants from 21 countries have confirmed their attendance. As ever, a diverse group of political leaders and experts from industry, finance, academia and the media has been invited.

(U//FOUO) DHS Report: Potential Impacts of WannaCry Ransomware on Critical Infrastructure

May 28, 2017

On May 12, 2017, organizations across the world reported ransomware infections impacting their computer systems. The infections, caused by a ransomware strain referred to as WannaCry, restricts users’ access to a computer and demands a ransom to unlock it. The U.S. Department of Justice defines ransomware as, a type of malicious software cyber actors use to deny access to systems or data until the ransom is paid. After the initial infection, ransomware attempts to spread through systems and networks.

San Bernardino DA Report on Sheriff’s Department Response to 2015 Terror Attack

May 26, 2017

On December 2, 2015 at about 10:58 am San Bernardino Police began to receive numerous calls of shots fired at the Inland Regional Center located at 1365 South Waterman Avenue in San Bernardino. Initial calls indicated that there were several gunshots heard. Another call reported that there were two or possibly three subjects in all black clothing and masks armed with assault weapons. Within a matter of three to four minutes there were multiple calls reporting that multiple masked subjects had entered in the conference room, located in Building 3 of the Inland Regional Center, and opened fire in the main conference room.

National Guard White Paper: The Role of National Guard Intelligence During Civil Disturbances

May 22, 2017

Recent large-scale civil disturbances in two states led the respective governors to mobilize state National Guard (NG) forces. These incidents raised questions and concerns about the appropriate and effective use of NG intelligence capabilities to support domestic civil disturbance operations. Domestic missions are no different from overseas missions in that a key requirement for mission success is situational awareness (SA)—leaders and commanders at all levels must be aware of the situation on the ground and have a deep understanding of the operational environment in which their forces are operating and the inherent threats faced in that environment. Overseas, where the threat is by definition foreign, the intelligence component provides the preponderance of threat data. Domestically, defining threat information may entail the collection of information concerning U.S. persons. By law, the military and civilian intelligence components face constraints in the manner they may lawfully collect, disseminate, and retain such information.

U.S. State Department Europe Migrant and Refugee Snapshot March 2017

May 21, 2017

Since 2014, over 1.6 million migrants and asylum seekers have arrived by sea to Europe. European countries registered over 3.18 million new asylum applications. Over 700,000 applicants were granted a form of protective status, mostly in Germany, France, Sweden, Italy, and the Netherlands, with 450,000 applicants rejected in the same time period, and over 1.1 million pending applications at the end of 2016. Amendments to the Schengen Border Code, proposed in response to terrorist threats, aim to strengthen external borders by requiring systematic database checks at entry and exit.

UN Guidelines for the Use of Force by Military Components in Peacekeeping Operations

May 21, 2017

These guidelines briefly highlight the strategic considerations that guide, oversee and provide the resources for the operational and tactical use of force. While the strategic considerations of the use of force are rooted in the core peacekeeping principles, mission mandate and rules of engagement, the guidelines recognize that political and other context specific factors influence the strategic considerations on the use of force. The main emphasis, however, is on the operational and tactical considerations regarding the use of force. This document examines the required thinking and action (including situational awareness and operational/strategic communications) at these levels to pre-empt, deter, contain or respond to threats without excessive use of force.

(U//FOUO) New Jersey Regional Operations and Intelligence Center: Reduce Online Exposure by “Opting-Out”

May 15, 2017

Law enforcement and public officials should take the following proactive steps to limit the amount of personally identifiable information (PII) that is accessible online. Cyber criminals and extremists, such as the self-proclaimed Islamic State of Iraq and the Levant (ISIL), capture personal information of law enforcement, military, and government officials, and then share it with their associates, encouraging both physical and virtual attacks. The Office of the ROIC Threat Analysis Unit, and the Cyber Threat Intelligence Unit, are providing these “opt-out” guidelines to reduce online exposure from websites that provide or sell PII.

(U//FOUO) Los Angeles Joint Regional Intelligence Center: Vehicle Ramming Attacks Increasing

May 14, 2017

Use of vehicles by violent extremists for ramming attacks has increased steadily, while use of vehicle-borne improvised explosive devices (VBIEDs) remains rare outside the Middle East. Given the ease with which ramming attacks can be accomplished, it is likely use of this tactic will continue to rise. Unlike VBIEDs, ramming attacks require little specialized training or skill, present minimal risk of detection when acquiring the weapon, and offer flexibility with regard to preparation, timing, and target. Foreign terrorist organizations (FTOs) have pointedly encouraged use of vehicle ramming attacks, offering explicit tactical advice on vehicle selection, driving tips to maximize fatalities, and targeting suggestions that include parades, festivals, street fairs, outdoor markets or conventions, political rallies, and other crowded targets of opportunity.

(U//FOUO) TSA Report: Vehicle Ramming Attacks Threat Landscape, Indicators, Countermeasures

May 7, 2017

Vehicle-ramming attacks are considered unsophisticated, in that a perpetrator could carry out such an attack with minimal planning and training. It is likely that terrorist groups will continue to encourage aspiring attackers to employ unsophisticated tactics such as vehicle-ramming, since these types of attacks minimize the potential for premature detection and could inflict mass fatalities if successful. Furthermore, events that draw large groups of people—and thus present an attractive vehicle ramming target—are usually scheduled and announced in advance, which greatly facilitates attack planning and training activities.

DHS Guide: Risks to Critical Infrastructure Using Cloud Services

May 1, 2017

Cloud services offer a number of benefits such as scalability, high availability, and decreased ownership cost. As a result, owners and operators in several critical infrastructure sectors such as Communications, Energy, Financial Services, Information Technology, and Transportation Services have migrated in-house computing resources to cloud infrastructures. However, cloud service environments still possess many of the same potential vulnerabilities associated with internally hosted environments, as well as additional exploits to virtual systems or networks. Owners and operators of critical infrastructure need to fully understand the risk environment as they address current cloud services and consider additional migration.

(U//FOUO) DHS Critical Infrastructure Note: Healthcare and Public Health Sector Cyberdependencies

April 30, 2017

The Department of Homeland Security (DHS) assesses that given the high value of patient information and proprietary data on the black market, the Healthcare and Public Health Sector will continue to be one of the primary targets for malicious cyber actors. Stolen health data sells on the black market for more than 10 to 20 times the price of stolen credit card data. DHS assesses that growth in the medical device market over the next 4 years will result in more devices connected to the Internet, and an increase in the number of cyber-related incidents that target those devices. This is partly because manufacturers do not place enough emphasis on the security of medical devices.

Idaho National Laboratory Cyber Threat and Vulnerability Analysis of the U.S. Electric Sector

April 24, 2017

With utilities in the U.S. and around the world increasingly moving toward smart grid technology and other upgrades with inherent cyber vulnerabilities, correlative threats from malicious cyber attacks on the North American electric grid continue to grow in frequency and sophistication. The potential for malicious actors to access and adversely affect physical electricity assets of U.S. electricity generation, transmission, or distribution systems via cyber means is a primary concern for utilities contributing to the bulk electric system. This paper seeks to illustrate the current cyber-physical landscape of the U.S. electric sector in the context of its vulnerabilities to cyber attacks, the likelihood of cyber attacks, and the impacts cyber events and threat actors can achieve on the power grid. In addition, this paper highlights utility perspectives, perceived challenges, and requests for assistance in addressing cyber threats to the electric sector.

(U//FOUO) DHS Intelligence Note: Unknown Cyber Actors Target US Water and Sewage Authority Network

April 17, 2017

An unidentified actor or actors between November 2016 and January 2017 targeted a US water and sewage authority’s network, resulting in excessive cellular charges and unusual traffic on ports 10000 and 9600, according to an FBI source with excellent access who spoke in confidence but whose reliability cannot be determined. The FBI source indicated that four of the seven devices on the authority’s cellular data plan were impacted with high data usage, which was likely a result of compromised network devices. The November 2016–December 2016 billing cycle totaled $45,000, and the December 2016–January 2017 billing cycle totaled $53,000.

Restricted U.S. Army Special Forces Guide to Information Operations

April 11, 2017

This TC serves as a guide to describe the fundamentals of how to incorporate IO at the tactical and operational level. Appendixes A through F offer tactics, techniques, and procedures (TTP) Special Forces (SF) Soldiers can use to analyze and plan information operations. This TC implements Army and joint IO doctrine established in FM 3-13, Inform and Influence Activities, and Joint Publication (JP) 3-13, Information Operations. This TC reinforces the definition of IO used by Army forces: IO employs the core capabilities of electronic warfare (EW), computer network operations (CNO), Military Information Support operations (MISO), military deception (MILDEC), and operations security (OPSEC), in concert with specified supporting and related capabilities, to affect or defend information and information systems and to influence decisionmaking. This TC is specifically targeted for SF; however, it is also useful to Army special operations forces (ARSOF) and the Army in understanding how SF employs IO.

U.S. Army War College Study: Regaining Strategic Initiative in the Gray Zone

April 3, 2017

U.S. competitors pursuing meaningful revision or rejection of the current U.S.-led status quo are employing a host of hybrid methods to advance and secure interests that are in many cases contrary to those of the United States. These challengers employ unique combinations of influence, intimidation, coercion, and aggression to incrementally crowd out effective resistance, establish local or regional advantages, and manipulate risk perceptions in their favor. So far, the United States has not come up with a coherent countervailing approach. It is in this “gray zone”—the awkward and uncomfortable space between traditional conceptions of war and peace—where the United States and its defense enterprise face systemic challenges to U.S. position and authority. As a result, gray zone competition and conflict should be pacers for defense strategy.

(U//FOUO) U. S. Marine Corps Forces Europe and Africa Campaign Plan 2016-2020: Theater Crisis and Contingency Response Forces in Readiness

April 2, 2017

The U.S. Marine Corps Forces Europe and Africa Campaign Plan 2016-2020 defines the organization’s desired baseline operating conditions and capabilities beyond a one-year planning and execution cycle and directs action to achieve desired end states. The Campaign Plan synthesizes strategic guidance provided by U.S. European Command (USEUCOM), U.S. Africa Command (USAFRICOM), and Headquarters Marine Corps (HQMC); accounts for the Commanders’ priorities and vision; establishes a deliberate yet broadly-defined multi-year plan to achieve stated objectives; and provides a framework for implementation, periodic assessment, and refinement.

The 2017 Guide to Detecting Homegrown Violent Extremists

March 27, 2017

The National Counterterrorism Center (NCTC) has released a 2017 version of their handbook for spotting indicators of mobilization to violence among homegrown violent extremists (HVEs). The guide was originally intended for distribution among public safety personnel and is not intended…

Page 10 of 141

« 1 … 8 9 10 11 12 … 141 »

Intelligence Fusion Centers, Virginia

California, Intelligence Fusion Centers