Citigroup Pentagon Payment Portal 1.3 Million Weekend Hack Attempts

There are 47 pages of regulations for Department of Defense personnel using Citigroup credit cards while traveling.

Pentagon confirms hack attempt against Defense Department credit card holders

  • The Pentagon on Thursday confirmed that there was a hacking attempt against an online financial services portal that Citigroup manages for the Defense Department.
  • Citigroup had told CNBC that a “malicious actor” attempted to gain access to several Citi credit card accounts tied to the Department of Defense.
  • The attack, which included 1.3 million attempts, occurred over this past weekend.

The Pentagon on Thursday confirmed that there was a hacking attempt this past weekend against an online financial services portal that Citigroup manages for Defense Department credit card holders.

The confirmation comes a day after Citigroup told CNBC that a “malicious actor” attempted to gain access to information for Pentagon-linked credit card accounts.

The bank had responded to CNBC’s inquiry regarding an attempted hack this past weekend. The Pentagon, citing information from Citigroup, confirmed to CNBC on Thursday that there was an attack over the weekend of March 10.

Pentagon Paying For Transgender Soldier's - One News Page ...

The bank told the Defense Department that the attack came from a computer system that was randomly guessing cardholder account usernames and passwords.

The program hit Citigroup’s Pentagon online account application more than 1.3 million times. The hackers did successfully guess 318 Pentagon cardholders’ usernames and passwords, but they did not get past a secondary layer of account authentication.

“No data compromise occurred,” Citi told the Pentagon.

Citi provides financial services for the Government Travel Charge Card, or GTCC, which is used by Department of Defense personnel to pay for authorized expenses when on official travel.

CitiManager is the online portal used by the Defense Department to view statements online, make payments and confirm account balances.

The Pentagon’s Defense Travel Management Office oversees the processing of the GTCC.

*** Back in 2016, there was a hacker contest held by the Pentagon under Secretary Ash Carter….guess they missed that payment portal vulnerability possibility.

When the Pentagon announced the “Hack the Pentagon” event back in March, many wondered what kinds of vulnerabilities hackers would find when checking government websites for bugs. Now we know.

According to Defense Secretary Ash Carter, more than 250 participants out of the 1,400 submitted at least one vulnerability report, with 138 of those vulnerabilities determined to be “legitimate, unique and eligible for a bounty,” he said. The bounties ranged per person from $100 to around $15,000 if someone submitted multiple bugs.

The pilot program, which ran from April 18 to May 12, cost about $150,000, with around half of that going to participants. The results were released on Friday, according to the Department of Defense’s website.

“Hack the Pentagon” was deemed a cost-effective way to scour five of the US defense departments’ websites (defense.gov, dodlive.mil, dvidshub.net, myafn.net and dimoc.mil, according to a DoD spokesman) for security bugs. Instead of going to outside security firms, which would’ve cost upwards of $1 million, the government instead recruited amateur hackers to do it for much less, some who were only in high school.

In addition to reporting on the number of bugs, Carter also said that the government has worked with HackerOne, a bug bounty platform, to fix the vulnerabilities and that the department has “built stronger bridges to innovative citizens who want to make a difference to our defense mission.” Carter wants the “bug bounty” program to extend to other areas of the government and wants to ensure that hackers and researchers can report bugs without a dedicated program.

“When it comes to information and technology, the defense establishment usually relies on closed systems,” he said. “But the more friendly eyes we have on some of our systems and websites, the more gaps we can find, the more vulnerabilities we can fix, and the greater security we can provide to our warfighters.”

Many website already have bug bounty programs in place, but it was the first time the federal government had come up with such a program. It’s good experience for young hackers and security fiends who want to try and hack a government agency, although that’s a small amount of money for their time.

When Napalm, Christian Persecution and Genocide are Ignored

There are several human rights groups operating in the Middle East reporting on civil war and military conflict casualties. Yes, the United Nations is reporting also, including being in theater…but reporting is just reporting while people die, become sick and are displaced such as living under ground for safety as best they can.

The Violations Documentation Center in Syria has filed with evidence to the United Nations Security Council that 59 reports of napalm attacks by the Syrian government and Russian forces, resulting in 6 fatalities. Yes….NAPALM

US Defence Secretary Jim Mattis has warned Syria it would be “very unwise” to use poison gas in Eastern Ghouta amid reports of chlorine attacks.

Mr Mattis did not say President Trump would take military action, but the US struck Syria last April after a suspected gas attack in northern Syria.

Fierce fighting is continuing and the Syrian army says it has surrounded a major town in the rebel-held enclave.

More than 1,000 civilians have been reported killed in recent weeks.

The Syrian military has been accused of targeting civilians, but it says it is trying to liberate the region – the last major opposition stronghold near the capital Damscus – from those it terms terrorists.

The statistical report on deaths and casualties in Syria up to February 2018 is here.

Newsweek reports Christian deaths this way:

The persecution and genocide of Christians across the world is worse today “than at any time in history,” and Western governments are failing to stop it, a report from a Catholic organization said.

The study by Aid to the Church in Need said the treatment of Christians has worsened substantially in the past two years compared with the two years prior, and has grown more violent than any other period in modern times.

“Not only are Christians more persecuted than any other faith group, but ever-increasing numbers are experiencing the very worst forms of persecution,” the report said.

The report examined the plight of Christians in China, Egypt, Eritrea, India, Iran, Iraq, Nigeria, North Korea, Pakistan, Saudi Arabia, Sudan, Syria and Turkey over the period lasting from 2015 until 2017. The research showed that in that time, Christians suffered crimes against humanity, and some were hanged or crucified. The report found that Saudi Arabia was the only country where the situation for Christians did not get worse, and that was only because the situation couldn’t get any worse than it already was.

The authors criticized the administration of President Donald Trump for not holding Saudi Arabia accountable for its human rights violations and instead focusing on the trade relationship between the two nations. In May 2017, Trump signed a $110 billion arms deal with Saudi Arabia during his first overseas trip in office.

The report put special focus on Middle Eastern countries like Iraq and Syria, where the authors argued Christians would have been entirely wiped out if it weren’t for military action and the assistance of Christian humanitarian organizations, like Aid to the Church in Need.

“The defeat of Daesh [the Islamic State militant group] and other Islamists in major strongholds of the Middle East offers the last hope of recovery for Christian groups threatened with extinction,” the report found. “Many would not survive another similar violent attack.”

688836500

Relatives of Coptic Christians who were killed during a bus attack surround their coffins during their funeral service, at Ava Samuel desert monastery, in Minya, Egypt. Getty Images

The report, which was released in November 2017 but received renewed attention this week, is based on research in the countries and testimony from victims. It detailed attacks against Coptic Christians in Egypt and monasteries burned in Syria.

In Africa, the report focused on countries like Sudan, where the government ordered that churches be destroyed, and Nigeria, where ISIS-affiliated groups like Boko Haram have led a surge in attacks on Christians. In Eritrea, hundreds of Christians have been rounded up and imprisoned over the past year because of their faith.

The report also documented numerous case studies in which Christians in countries such as India and Nigeria were murdered or beaten for practicing their faith.

898735196

Indian Christians gathers at St. Teresa’s Church for the midnight Christmas mass in Kolkata, India. Getty Images

“A Christian pastor in India was left in a coma after being beaten in a ‘planned’ attack apparently carried out by Hindutva extremists,” the report noted. “Before slipping into unconsciousness, the pastor told police that the attack was religiously motivated.”

“You must never come to our village to pray. You should never enter our village,” the men told the pastor, according to the report.

In late October, Vice President Mike Pence pledged that the Trump administration would redirect aid money formerly given to the United Nations to the U.S. Agency for International Development, a move that was meant to appease Christian organizations that say the U.N. isn’t doing enough for persecuted Christians.

Moath Hamza Ahmed Al-Alwi, GITMO Hearing for Release

Release back to Yemen, his home country? His terror history/jihad file is here.

Image result for Moath Hamza Ahmed al Alwi

His detainee ID number is 028. Guantanamo analysts estimated he was born in 1977, in Bajor, Yemen.

Al-Alawi arrived at Guantanamo on January 17, 2002, and has been held at Guantanamo for 16 years, 1 month and 23 days. In January 2010 the Guantanamo Review Task Force recommended he should be classed as a forever prisoner, one who couldn’t face charges, because he was innocent of committing a crime, who, nevertheless, was too dangerous to release. By his 2015 Periodic Review Board hearing intelligence analysts had dropped the damning allegation that he was one of Osama bin Laden’s bodyguards, claiming instead that he “had spent time” with some of his bodyguards.[3]

Al-Alawi is a long-term Guantanamo hunger striker, who has described his force-feeding as “an endless horror story.”

File:20150922 U ISN028 DETAINEE WRITTEN SUBMISSION PUBLIC.pdf photo

In 2011, it was summarized as such:

Government prosecutors introduced evidence showing that al Alwi, who is a Yemeni, traveled to Afghanistan to join the Taliban in its fight against the Northern Alliance, stayed in al Qaeda and Taliban-run guesthouses, and received light arms training at a “Taliban-linked training camp near Kabul.” The court also found that “Al Alwi then joined a combat unit, led by a high-ranking al Qaeda official” and that “fought with the Taliban on two different fronts.”

Al Alwi’s story is a common one found in declassified and leaked documents produced at Guantanamo. Like many other detainees held there, al Alwi was a member of al Qaeda’s 55th Arab Brigade, which is the “combat unit” referenced in the circuit court’s opinion.

A leaked Joint Task Force Guantanamo (JTF-GTMO) threat assessment of al Alwi, dated March 14, 2008, notes that the 55th Arab Brigade was “also referred to in reporting as the al Qaeda Brigade, the Mujahideen Brigade, and the Arab Fighters.” It “served as [Osama bin Laden’s] primary battle formation supporting Taliban objectives, with [Osama bin Laden] participating closely in the command and control of the brigade.”

The 55th Arab Brigade was headed by top al Qaeda lieutenant Abdel Hadi al Iraqi, who is also currently held at Guantanamo. Al Iraqi had “primary operational command” of the brigade and served as bin Laden’s “military commander in the field,” according to the leaked threat assessment. Indeed, al Alwi admitted that he fought under the command of al Iraqi, as well as one of al Iraqi’s sub-commanders.

The court’s findings closely match JTF-GTMO’s description of the 55th Arab Brigade. Citing al Alwi’s admissions, the court concluded that al Alwi “joined a combat unit, the Omar Sayef Group,” which “fought the Northern Alliance and related forces on two fronts.” Al Alwi “fought under the leadership of an Iraqi named Abd al Hadi, a high-level al Qaeda member responsible for commanding Arab and Taliban troops in Kabul,” the court concluded.

The 55th Arab Brigade’s existence has long been known to US counterterrorism officials. The leaked JTF-GTMO threat assessment cites an FBI analysis written in 1998, as well as several other analyses by intelligence officials. In late 2001, the brigade was quashed by Coalition forces in Afghanistan, with many of its members being killed or captured. In the years that followed, al Qaeda reformed the 55th under the auspices of the Lashkar al Zil, or Shadow Army, which draws members from various jihadist groups operating in Afghanistan and Pakistan.

As in previous habeas proceedings, the courts did not weigh all of the evidence against al Alwi. The district and circuit courts concluded that al Alwi’s own admissions, including those tying him to al Qaeda’s 55th Arab Brigade, were enough to justify his detention.

Additional intelligence not considered

The leaked JTF-GTMO threat assessment summarizes additional intelligence compiled in al Alwi’s case, including descriptions of al Alwi provided by other Guantanamo detainees, several of whom were senior al Qaeda leaders.

Al Alwi was originally “recruited through an al Qaeda associated Salafist network linked to Sheikh Muqbil Bin Hadi al Wadi,” JTF-GTMO found. Al Alwi admitted that he visited Sheikh Wadi and that he attended the al Furqan Institute. Sheikh Wadi, who died in 2001, recruited jihadists for training in Afghanistan at both al Furqan and the al Dimaj Institute in Yemen.

Although al Alwi made some important admissions about his time in Afghanistan, authorities at Guantanamo concluded that he was never truly forthcoming.

Al Alwi used a “known cover story” and withheld “significant details of his activities, associates, facilities, times, and locations in Afghanistan” during questioning, the JTF-GTMO threat assessment reads. In particular, al Alwi claimed that he first traveled to Afghanistan in 2001, but JTF-GTMO’s analysts found that this conflicted with other parts of al Alwi’s own story, as well as additional intelligence placing him in Afghanistan in the late 1990s.

JTF-GTMO determined that al Alwi was a bodyguard for bin Laden and also received advanced terrorist training in al Qaeda’s camps. But al Alwi never did admit that either of those allegations was true. Other detainees in US custody, however, did.

Al Alwi was captured in December 2001 as he fled the Tora Bora Mountains. He was captured as part of a group referred to in JTF-GTMO documents as the “Dirty 30,” which was comprised mainly of Osama bin Laden’s elite bodyguards.

One member of the “Dirty 30” was Mohammed al Qahtani, the so-called “20th hijacker.” Qahtani was slated to take part in the September 11 attacks but was denied entry into the US in the summer of 2001. Qahtani, whose detention has been controversial because of the harsh interrogation methods employed during his questioning, was one of several detainees to identify al Alwi. Qahtani identified al Alwi as “a veteran fighter in Afghanistan.”

Ahmed Ghailani, who helped plot al Qaeda’s August 1998 embassy bombings, “photo-identified” al Alwi to his interrogators as well. According to the leaked threat assessment, Ghailani said al Alwi was a bodyguard for Osama bin Laden. While he was detained by the CIA, Ghailani was subjected to controversial interrogation techniques. He was later transferred to the US to stand trial and convicted of terrorism-related charges.

Other detainees held at Guantanamo identified al Alwi as a bodyguard for Osama bin Laden, too.

JTF-GTMO concluded that al Alwi, whose internment serial number is 28, received “elite hand-to-hand combat training taught by” Walid Bin Attash, a top al Qaeda operative who was involved in both the 9/11 plot and the USS Cole bombing. Attash, who is also known as Khallad, conducted the training course at al Qaeda’s Mes Aynak camp in Afghanistan.

The leaked JTF-GTMO threat assessment notes that the training sessions were “also attended by al Qaeda members slated for the cancelled Southeast Asia 11 September 2001 attacks.” As part of the September 11 operation, al Qaeda originally planned to attack targets on the West Coast of the US using planes flying from Southeast Asia. Osama bin Laden reportedly canceled this part of the operation because he feared it would be too difficult to strike both East Coast and West Coast targets at the same time.

A biography of Khallad released by US intelligence officials provides additional details about the training at Mes Aynak. Osama bin Laden asked Khallad “to help select about two-dozen experienced and reliable operatives for special training” there. Khallad “supervised the training” and many of his trainees went on to achieve infamy.

One of Khallad’s trainees “became a suicide bomber in the Cole operation.” Two others “were later 11 September hijackers.” Another trainee “was a cell leader who was killed during the suicide bombings in Riyadh in May 2003.” Still another “gained renown for his involvement in the bombing of the Limburg in October 2002 and for his plot to assassinate the US Ambassador to Yemen.”

Khallad, who was interrogated as part of the CIA’s so-called enhanced interrogation program, told his interrogators that al Alwi was among these trainees.

The training at Mes Aynak was not the only terrorist training al Alwi received, according to the leaked JTF-GTMO threat assessment. Al Alwi was also allegedly trained at al Qaeda’s al Farouq camp. Top al Qaeda operative Abu Zubaydah told authorities that al Alwi may have been trained at the Khalden camp as well. Before being transferred to Guantanamo, Zubaydah was held in the CIA’s custody and waterboarded in 2002. In 2005, Zubaydah told US authorities that he saw al Alwi “several times during 2000 and 2001.”

In all likelihood, the damning statements made by senior al Qaeda terrorists were not introduced during al Alwi’s habeas proceedings because of the controversies surrounding their interrogations.

A “high” risk

Although the courts focused narrowly on al Alwi’s role fighting for the 55th Arab Brigade, JTF-GTMO looked at the entire intelligence picture and concluded that al Alwi is a “high risk.” Al Alwi is “likely to pose a threat to the US, its interests, and allies” if he is released, JTF-GTMO warned.

The leaked threat assessment also notes that al Alwi “has demonstrated his hatred for Americans at JTF-GTMO and will likely reestablish ties to al Qaeda and other extremist elements if released.”

JTF-GTMO recommended that al Alwi be retained in the Department of Defense’s custody. And in a section of the threat assessment detailing the reasons for al Alwi’s continued detention, JTF-GTMO’s analysts wrote that he “was identified as someone more disposed than others to conduct terrorist attacks in Yemen.”

The courts have now agreed that al Alwi’s detention is justified, albeit based on a much narrower review of the intelligence concerning his al Qaeda career.

 

Will Everyone Love Trump’s Military Parade?

Image result for trump military parade photo

The Pentagon says a military parade requested by President Trump will take place in Washington on Veterans Day to honor those who have served in the military from the Revolutionary War through today.

The document addressed to the chairman of the Joint Chiefs of Staff provides “initial guidance,” including assurances that the display will not include tanks, to minimize damage to the city streets. The D.C. City Council had already tweeted its objections (“Tanks but No Tanks“).

The memo does not estimate the cost, but as NPR has reported, estimates have suggested it would be between $3 million and $50 million. Tamara Keith and Tom Bowman reported that holding it on Veterans Day, which also commemorates the end of World War I, could reduce complaints:

“By potentially tying the parade to the 100th anniversary of the end of the ‘War To End All Wars,’ there may be an effort to associate with the tradition of celebrating war victories and avoid associations with countries like North Korea, China and Russia, which regularly hold military parades, in part for the propaganda value.

“Members of Congress from both parties have been critical of the idea of a military parade, questioning its cost and necessity.”

The memo says the parade will begin at the White House and proceed to the U.S. Capitol, with a “heavy air component at the end.” It notes that Trump will be surrounded by military heroes in the reviewing area at the Capitol.

Full page document found here.

The memo listed a number of guidelines for the parade on Nov. 11 and said the parade route will be from the White House to the Capitol and have a “heavy air component at the end of the parade.”

Military parades in the United States are generally rare. Such parades in other countries are usually staged to celebrate victories in battle or showcase military might.

In 1991, tanks and thousands of troops paraded through Washington to celebrate the ousting of Saddam Hussein’s Iraqi forces from Kuwait in the Gulf War.

The District of Columbia Council had ridiculed the idea of a parade on Pennsylvania Avenue, the 1.2-mile (1.9-km) stretch between the Capitol and the White House that is also the site of the Trump International Hotel.

Pritzker, Boxer, Sherman and MoveOn.org, the Strike Force

The top person on John Kerry’s Iran JPOA team was Wendy Sherman. But then we have Obama’s dear friend Penny Pritzker in the mix too, along with Barbara Boxer and Hillary’s Jake Sherman all part of this National Security Action team, which is all things against Trump. So, while we do have the Director of MoveOn in the mix…this group likely has some robust funding from Soros.

This is a strike force that even includes Jeremy Bash.

He served as Chief of Staff of the CIA (2009-2011) and Defense Department (2011-2013), was Panetta’s right hand person and perhaps we should remember it was Panetta that allowed Hollywood access to top secret information to make a movie, that Zero Dark Thirty movie.

According to a June 15, 2011, email from Benjamin Rhodes, Deputy National Security Advisor for Strategic Communications, the Obama White House was intent on “trying to have visibility into the UBL (Usama bin Laden) projects and this is likely a high profile one.”

Image result for Ben rhodes jake sherman photo

Ben Rhodes the aspiring novelist became Obama’s top advisor even when Rhodes security clearance was denied.

In early July 2012, Obama’s senior White House adviser on Iran, Puneet Talwar, and Secretary of State Hillary Clinton’s right-hand man, Jake Sullivan, arrived in the sleepy Arabian sultanate of Oman, 150 miles across sparkling Gulf waters from the Iranian coast. It was the first significant back-channel contact with Tehran.

FNC: A group of about 50 former Obama administration officials recently formed a think tank called National Security Action to attack the Trump administration’s national security policies.

The mission statement of the group is anything but subtle: “National Security Action is dedicated to advancing American global leadership and opposing the reckless policies of the Trump administration that endanger our national security and undermine U.S. strength in the world.”

National Security Action plans to pursue typical liberal foreign policy themes such as climate change, challenging President Trump’s leadership, immigration and allegations of corruption between the president and foreign powers.

This organization uses the acronym NSA, which is ironic. Three of its founding members – Ben Rhodes, Susan Rice and Samantha Power – likely were involved in abusing intelligence from the federal NSA (National Security Agency) to unmask the names of Trump campaign staff from intelligence reports and to leak NSA intercepts to the media to hurt Donald Trump politically. This included a leak to the media of an NSA transcript in February 2017 of former National Security Adviser Michael Flynn’s discussion with Russian Ambassador to the U.S. Sergei Kislyak. No one has been prosecuted for this leak.

Given the likely involvement of Rhodes, Rice and Power to weaponize intelligence against the Trump presidential campaign, will their anti-Trump NSA issue an apology for these abuses?

It is interesting that the new anti-Trump group says nothing in its mandate about protecting the privacy of Americans from illegal surveillance, preventing the politicization of U.S. intelligence agencies or promoting aggressive intelligence oversight. Maybe this is because the founders plan to abuse U.S. intelligence agencies to spy on Republican lawmakers and candidates if they join a future Democratic administration.

It takes a lot of chutzpah for this group of former Obama officials, who were part of the worst U.S. foreign policy in history, to condemn the current president’s successful international leadership and foreign policy.

After all, ISIS was born on President Obama’s watch because of his mismanagement of the U.S. withdrawal from Iraq and his “leading from behind” Middle East policy. The Syrian civil war spun out of control because of the incompetence of President Obama and his national security team.

This was a team that provided false information to the American people about the 2012 terrorist attack on the U.S. consulate in Benghazi and the nuclear deal with Iran. I wonder if the anti-Trump NSA will include videos on its website of former National Security Adviser Susan Rice falsely claiming on five Sunday morning news shows in September 2012 that the attack on the Benghazi consulate was “spontaneous” and in response to an anti-Muslim video.

And of course there’s the North Korean nuclear and missile programs that surged during the Obama years due to the administration’s “Strategic Patience” policy, an approach designed to kick this problem down the road to the next president. Because of President Obama’s incompetence, North Korean dictator Kim Jong Un may have an H-bomb that he soon will be able to load onto an intercontinental ballistic missile to attack the United States.

It must appall this group of former Obama national security officials that President Trump is succeeding as he undoes everything they worked on.

ISIS will soon control no territory in Iraq or Syria because of the Trump administration’s intensified attacks on it and arming of Kurdish militias.

In sharp contrast to President Obama, President Trump drew a chemical weapons red line in Syria and enforced it.

North Korea is pushing for talks with the U.S. in response to strong United Nations sanctions the U.S. worked to obtain in 2017. And compliance with the new sanctions has been significantly improved, especially by China, as the result of President Trump’s actions.

President Trump repaired the damage done to U.S.-Israel relations by President Obama and has recognized Jerusalem as the capital of Israel – something several previous presidents promised but failed to do.

Iranian harassment of U.S. ships in the Persian Gulf stopped in 2017, likely due to the more assertive Iran policy of President Trump. This includes the president’s successful effort to build a stronger U.S. relationship with Saudi Arabia.

President Trump is right when he says he inherited a mess on national security from the Obama administration. This is because President Obama and his national security team undermined U.S. credibility and left President Trump a much more dangerous world. I doubt the new anti-Trump National Security Action think tank will succeed in convincing Americans otherwise.