Tag Archive for Department of Homeland Security

(U//FOUO) DHS Independence Day 2010 Awareness Note

(U//FOUO) The Homeland Infrastructure Threat and Risk Analysis Center (HITRAC) produces Infrastructure Protection Notes to provide information on risks impacting the critical infrastructure community including terrorist threats, natural hazards, and other events. This IP Note is a joint publication of the DHS Office of Intelligence and Analysis (I&A) Homeland Counterterrorism Division and the Office of Infrastructure Protection (IP), and is designed to
promote security awareness and to identify actions that the critical infrastructure community can take to mitigate risks to the Nation’s critical infrastructure. As an update to the 26 May 2010 IP Note: Preparing for an Evolving Terrorist Threat, this IP Note serves as a reminder for the critical infrastructure community to remain vigilant during the 4 July 2010 Independence Day holiday.

DHS National Information Exchange Model (NIEM) Overview

DHS and DOJ officials have announced a new partnership to provide leadership for enhanced development of the Global Justice XML Data Model as a base for the deployment of the National Information Exchange Model (NIEM). NIEM will provide enhanced capabilities for organizations to share data across federal, state, local and tribal lines. This paper gives an overview of the National Information Exchange Model (NIEM). It outlines the background, concepts, objectives and the development strategy for implementing NIEM.

(U//FOUO) DHS Warning on Pressure Cooker IEDs

(U//FOUO) Rudimentary improvised explosive devices (IEDs) using pressure cookers to contain the initiator, switch, and explosive charge (typically ammonium nitrate or RDX) frequently have been used in Afghanistan, India, Nepal, and Pakistan. Pressure cookers are common in these countries, and their presence probably would not seem out of place or suspicious to passersby or authorities. Because they are less common in the United States, the presence of a pressure cooker in an unusual location such as a building lobby or busy street corner should be treated as suspicious.

DHS Cybersecurity Research Roadmap

Global-scale identity management concerns identifying and authenticating entities such as people, hardware devices, distributed sensors and actuators, and software applications when accessing critical information technology (IT) systems from anywhere. The term global-scale is intended to emphasize the pervasive nature of identities and implies the existence of identities in federated systems that may be beyond the control of any single organization. This does not imply universal access or a single identity for all purposes, which would be inherently dangerous. In this context, global-scale identity management encompasses the establishment of identities, management of credentials, oversight and accountability, scalable revocation, establishment and enforcement of relevant policies, and resolution of potential conflicts. To whatever extent it can be automated, it must be administratively manageable and psychologically acceptable to users. It must, of course, also be embedded in trustworthy systems and be integrally related to authentication mechanisms and authorization systems, such as access controls. It also necessarily involves the trustworthy binding of identities and credentials. It is much broader than just identifying known individuals. It must scale to enormous numbers of users, computer systems, hardware platforms and components, computer programs and processes, and other entities.

(U//FOUO) DHS Attacks on Drinking Water Systems

(U//FOUO) Drinking water systems, especially treatment, distribution, and chemical storage facilities, may be targets for physical destruction, intentional contamination (possibly with chemical, biological or radiological materials), or cyber attack because the infrastructure is highly visible, less hardened, and more accessible than some other critical infrastructure. Terrorists have shown interest in biological agents that could be used for water contamination and, prior to 2003, planned surveillance of U.S. dams, reservoirs, and water supply systems to assess their potential as targets. Even a small-scale or thwarted attack could disrupt or deny service to businesses, households, and emergency responders or inspire public fear.

Alaska State Homeland Security Strategy 2010

Through this State Homeland Security Strategy (SHSS), the State of Alaska will improve its protection of the people, its economy, and its culture. The State of Alaska will reduce vulnerabilities to terrorist attacks, major disasters, or emergencies. This vital mission requires coordination, cooperation, and a focused effort throughout the state, federal agencies (military and civilian), state agencies, local jurisdictions, tribal, private, and non–profit organizations.

DHS/DOJ Fire Service Integration for Fusion Centers

This document identifies recommended actions and guidance for state and major urban area fusion centers (fusion centers) to effectively integrate the fire service into the fusion process. Within the context of this document, the fire service is defined as including fire and emergency operations, emergency medical service operations, rescue operations, hazardous materials operations, fire prevention/protection, fire investigation, incident management, and responder safety.

(U//FOUO) DHS Homeland Terrorist Threat Reporting Guide

This Terrorist Threats to the U.S. Homeland Reporting Guide (TTRG) was jointly produced by the Federal Bureau of Investigation (FBI) and the Department of Homeland Security (DHS). The purpose of this document is to leverage the vast information collection and reporting resources of our state, local and tribal law enforcement partners, as well as other first responder partners, in recognizing activities or conditions that may be indicative of terrorist activity. State and local organizations are on the front line in the war against terror and therefore have a critical role as primary sources of information. Timely and relevant information from the “front lines” is critical to the identification of terrorists and their supporters, development of insights into their plans and intentions, and subsequent disruption of their operations.

(U//FOUO) DHS Courthouse Attacks Report

(U//FOUO) This assessment describes threats and other suspicious activities directed against courthouses in the United States over the past twelve months. Additionally, it provides indications of surveillance and suggested protective measures for vehicle-borne improvised explosive devices and homicide-suicide bombers to assist in the protection of courthouses and related facilities.

Department of Homeland Security Monitors Public Intelligence

Under the “BP Oil Spill Response Social Media Event Monitoring Initiative” the Department of Homeland Security’s National Operations Center (NOC) monitors “publicly available online forums, blogs, public websites, and message boards” in order to provide “situational awareness and establish a common operating picture for the federal government, and for those state, local, and tribal governments, as appropriate, assisting with the security, safety, and emergency response associated with the oil spill”. According to a “Privacy Impact Assessment” from April 29, 2010 available on the DHS website, Public Intelligence is included in the list of sites monitored by NOC analysts.

(SBU) DHS TRIPwire: Times Square Vehicle Incendiary Device Attack

In the evening of May 1, 2010, a vehicle with a large incendiary device was discovered and rendered safe in Times Square, New York City. The vehicle was parked at 1515 7th Ave. in Times Square, according to local police officials. The vehicle did not detonate as designed, and there were no casualties. The investigation into the attempted bombing is still ongoing. According to open sources, the vehicle was a blue Nissan Pathfinder spotted by a street vendor who noticed smoke emanating from the vehicle about 6:30pm EST. It is believed the vehicle was abandoned just after 6:00pm, and had its hazard lights flashing and its engine still running. A firefighter who arrived on the scene shortly after being notified reported seeing a “flash” and heard a “popping sound” from the trunk of the vehicle. Theatres, hotels and all foot traffic in the area were cleared and streets were cordoned off by police.

(U//FOUO) DHS Times Square Attempted Bombing Snapshot

(U) Times Square:

–(U) At 6:34pm, a 1993 Nissan Pathfinder bearing Connecticut license plates was discovered in front of 45thStreet and Broadway, the Times Square area of New York City, with smoke in the cabin. Eyewitnesses report seeing smoke and hearing popping sounds coming from inside the vehicle, and people were observed running from the scene. A mounted NYPD Patrol Officer responded, evacuated the area, and notified the bomb squad.

(U) On 2 May, at approximately 1330, Al-Jazeera reported that a group claiming to be Tehrik-e Taliban Pakistan had claimed responsibility for the attack in a one-minute long video posted on a video-sharing Website. It has yet to be determined if the tape is authentic, and if so, if the group played any role in the attack.

(U//FOUO//LES) TSA 2006 Terrorist Threat to U.S. Highway System

(U//FOUO) Threats to the U.S. highway system (including tunnels, bridges, long-haul buses, school buses, and commercial trucks) emanate from transnational and domestic terrorist organizations, as well as from insiders and special interest groups. However, the primary threat stems from al-Qa’ida, its affiliates, and other Sunni Muslim extremists, whether foreign or domestic. No reporting indicates a current, credible, and specific terrorist threat to U.S. highway interests. However, since 1993 at least three terrorist plots to bomb tunnels and bridges in the United States have been disrupted, aborted, or abandoned. Further, recurring suspicious incidents involving U.S. highway infrastructure and assets could reflect pre-operational terrorist planning. Thus far, however, no definitive link has been established between any of the suspicious incidents and terrorism.

Colorado Multiyear Training and Exercise Plan 2010-2012

The purpose of the Multiyear Training and Exercise Plan (TEP) is to provide a follow-on companion document to the Colorado Homeland Security Strategy and the priorities set by the State Improvement Planning Workshop. It is a living document that will be updated and refined annually. The Multiyear TEP provides a roadmap for Colorado to follow in accomplishing the priorities described in the Homeland Security Strategy through effective trainings and exercises.

(U//FOUO) DHS/DOJ Fusion Process Analytic Skills & Knowledge Review

To facilitate the development of a nationwide, integrated, inter-connected fusion center capability, the U.S. Department of Homeland Security’s (DHS) National Preparedness Directorate (NPD) and the Office of Intelligence & Analysis (I&A) and the U.S. Department of Justice’s (DOJ) Bureau of Justice Assistance (BJA) have partnered to develop and deploy the Fusion Process Technical Assistance Program. This program has been developed in coordination with the Office of the Director of National Intelligence (ODNI); the Office of the Program Manager, Information Sharing Environment (PM-ISE); the Federal Bureau of Investigation (FBI); and experts from the State and local community—including the Global Justice Information Sharing Initiative (Global), the Criminal
Intelligence Coordinating Council (CICC), and the Global Intelligence Working Group (GIWG).

FEMA Requests Removal of National Level Exercise 2010 (NLE 10) Document

On April 13, 2010, we received a message from Danny Rains who is an investigator for the Federal Emergency Management Agency in the “Office of Security” requesting the removal of a document entitled “National Level Exercise 2010 (NLE 10) Exercise Overview”. The ten page document, which is described in FEMA’s request as “very sensitive”, consists of approximately 20 PowerPoint slides including the title page and was published nearly seven months ago on August 8, 2009. The document is labeled “For Official Use Only” and is marked as a draft copy. The contents of the brief are basically a calender of potential dates for the exercise and very brief descriptions of some preliminary plans for the exercise. The document has already been seen by a large number of people and has been discussed on a variety of websites and forums, including mirrors in some cases.

(U//FOUO) Hydrogen Sulfide: A Potential First Responder Hazard

(U//FOUO) DHS/Office of Intelligence and Analysis (I&A) and the Los Angeles Joint Regional Intelligence Center (JRIC) assess that an intentional release of hydrogen sulfide gas most likely would be by a person using it to commit suicide, thus not exposing large numbers of people. The gas is, however, highly toxic and easy to produce from commonly available materials—properties that could make it attractive for use in a terrorist attack. DHS/I&A and JRIC have no information that terrorists are planning an attack in the United States using hydrogen sulfide gas.