Category Archives: NSA Spying

Iran Gets GOLD

Posted on by

An Iran nuclear czar? Zarif and Kerry today, Friday said a deal was never closer.

Iran has had 13 tons of their gold stored in South Africa for at least 2 years and due to lifted sanctions, the gold has been released and delivery in a handful of shipments under high security is complete. The gold was delivered to the central bank.

Since 2013 under the Obama White House agreement, Iran has received $4.2 billion in unfrozen assets and was awarded another $2.8 billion by Obama just to stay at the table and committing to continued talks.

Iran Violations:

Iran has been found in non-compliance with its International Atomic Energy Agency (IAEA) safeguards agreement, and accordingly is in non-compliance with the Nuclear Non-Proliferation Treaty (NPT).1 Iran is continuing its uranium enrichment program and heavy water-related activities in defiance of Security Council resolutions calling for their suspension. The IAEA is trying to resolve a number of matters indicating a possible military dimension to Iran’s nuclear program, but Iran is not cooperating with the IAEA’s investigations. There are well-founded concerns that the Iranian enrichment and heavy water programs have a military objective – to give Iran the capability to produce nuclear weapons if it decides to do so. What is not clear is how far Iran intends to proceed down this path – will it cross the nuclear weapon threshold, or if not, how far short will it stop?

Amongst other issues, this paper addresses the commonly held belief that Iran is entitled to undertake uranium enrichment, and the closely related question whether nuclear hedging – establishing a nuclear weapon break-out capability in the guise of a civilian program – is a legitimate activity under the NPT. If a negotiated solution with Iran is achieved that allows for continued enrichment, this must also adequately address international concerns that Iran’s nuclear program has a military purpose. A “solution” that allows continued development of a military dimension would be pointless. Many more details in this report.

Going back a decade, it has been well known that Iran has been using the black market to skirt sanctions.  The audio discussion on the black market and violations is here. Additionally, you would be stunned at who does business with Iran and the value of that commerce.

What about the secret low enriched uranium? Glad you asked.

The controversy over the status of Iran’s newly produced low enriched uranium (LEU) hexafluoride under the Joint Plan of Action (JPA) initially surprised us at ISIS. We have been monitoring the various provisions of the JPA since its inception, including Iran’s pledge to convert its newly produced LEU hexafluoride stocks into uranium dioxide form during the JPA term and its extensions. We would have expected the public controversy to center on other issues, including the near 20 percent LEU stocks in Iran. These stocks are far too large, and if left in place, will undermine the administration’s central case that Iran would need 12 months to break out, if it reneged on a long term deal. Yet, upon reflection, this issue of the newly produced LEU is a microcosm of the legal, technical, and political challenges in the on-going negotiations with Iran. It is also another indication that U.S. secrecy is excessive and contributing to problems on its own. Finally, it is necessary to state that this case is a lesson in how difficult it is to understand all the issues in these negotiations, even for those of us who spend enormous amount of time following and assessing provisions in these negotiations.

Concessions

From CNN:

Concessions checklist

So what has the U.S. ceded so far? And what has it gotten in return? Supporters and opponents of the Iran talks are both keeping their checklists ready. They’re tallying the wins and losses and keeping a close eye on the remaining sticking points.

Breakout time

Breakout time is the amount of time it takes to amass enough weapons-grade uranium for one nuclear bomb. In the event of a final deal, if Iran were to dash toward weaponization, it would take 12 months to build a nuclear bomb, according to U.S. calculations.

That figure is a considerable improvement over the two- to three-month breakout time that Iran currently has.

Some worry, however, that one year is not enough to guarantee the U.S. and other countries could actually prevent Iran from obtaining a nuclear weapon should Iran decide to race toward one, given the number of diplomatic and verification steps that would precede the use of military force.

Centrifuges

Iran will be allowed to keep 6,104 centrifuges, and just over 5,000 of those will continue enriching uranium, based on the preliminary agreement.

That’s a far ways from where American officials initially said they wanted to end up, first demanding Iran cut its centrifuges to between 500 and 1,500 and then floating 4,000.

The agreement still cuts down most of the nearly 19,000 currently installed — about 10,000 of which are now used for enrichment — but even the additional centrifuges won’t be scrapped entirely. They’ll remain in Iran under the control of the UN’s nuclear watchdog, the International Atomic Energy Agency, and will be freed up at the end of the period of constraints on its program.

Enrichment activity

Under the framework for negotiations, Iran has already significantly reduced the level to which it enriches uranium, capping those levels far below what is needed for a nuclear weapon.

Iran has agreed to restrict all of its enrichment activity to one reactor site — Natanz. This is reassuring to the U.S. and Israel because it would be easier for them to take effective military action to degrade Iran’s nuclear capabilities.

Furthermore, Iran will only use its first-generation centrifuges, which are slow to enrich uranium and are unreliable.

Duration of the deal

The restrictions that will keep Iran to a one-year breakout time will expire after 10 years.

President Barack Obama has conceded that “in year 13, 14, 15 … the breakout times would have shrunk almost down to zero.”

After the 10th year, Iran would be able to start upping its uranium enrichment. And after 15 years, the program would be completely unbridled.

There was always going to be a sunset — it’s inconceivable that Iran would accept restrictions and inspections on its nuclear program indefinitely — but the Obama administration’s starting ask was for restrictions lasting 20 to 25 years.

Even if political change doesn’t come to Iran in that period — which he hopes it will — Obama insisted this spring that the U.S. will have “much more insight into their capabilities” as a result of the rigorous inspections, and 10 to 15 years improves considerably upon the status quo.

But the sunset provision has experts like Mark Dubowitz of the Foundation for the Defense of Democracies worried that Iran will simply “go back to what they were doing before” — and without the limitations of sanctions.

“We think 10 to 15 years is a long time,” he said. “They think it’s a blip in history.”

Revealing past Iranian military activities

For years the United States and the rest of the international community has demanded that Iran come clean about suspected past efforts to militarize its nuclear program.

Tehran even pledged to the IAEA in 2007 that it would do so, and the fact that it hasn’t raises questions about the reliability of its commitments.

When Kerry was asked by PBS in April about Iran’s obligation to answer such questions, he said bluntly, “They have to do it. It will be done. If there’s going to be a deal, it will be done.”

Kerry, though, recently indicated such a “confession” was no longer essential to a deal.

“We’re not fixated on Iran specifically accounting for what they did at one point in time or another. We know what they did,” Kerry said last month.

Underground nuclear sites

Under an eventual deal, Iran would stop enriching uranium at Fordow, its fortified, underground nuclear site, for 15 years and only use the facility for research with some inactive centrifuges remaining onsite. It also won’t be able to store any fissile material at the site.

Though the West had originally called for Fordow to be shut down entirely, cutting off enrichment at the site is a relief not just for the U.S. but also for Israel, which was concerned its military arsenal would not be able to reach the site — buried deep in the side of a mountain.

The U.S. has a more powerful bunker-busting bomb than Israel, one that may be able to penetrate the site, though not with total certainty.

Heavy water reactor

Iran will significantly modify its heavy water reactor so it can no longer produce weapons-grade plutonium, a possible component for a nuclear bomb.

Iran has already begun redesigning the reactor to limit its capacity — a key change for a country that has repeatedly defended the reactor’s medical and scientific applications.

Israel had previously called for the reactor’s total dismantlement, but serious modifications have quelled many concerns about Iran’s ability to use the reactor for non-peaceful purposes.

Outstanding issues

Officials still have to determine whether Iran will dilute or export its eight-ton stockpile of highly enriched uranium and determine the parameters for Iran to use more highly enriched uranium for scientific research purposes.

But it’s the two other remaining issues that are the most contentious, and will ultimately determine for most experts whether they have confidence that the deal will keep Iran from getting a nuclear bomb.

Inspections

The West is insisting that Iran give inspectors unfettered access to any site they suspect of nuclear activity — military sites included. Without that, officials fear that Iran could try to sneak its way to a bomb by using a secret facility, especially given its history of cheating and concealing its nuclear work.

“The most likely form of cheating would be at undeclared or secret facilities, and so you’ve got to have strong inspections,” said Gary Samore, who previously served as Obama’s top arms control adviser.

Iranian officials, though, have insisted that they won’t relent on that point, certainly not when it comes to military facilities.

Deputy Secretary of State Tony Blinken insisted Thursday on CNN that the U.S. will “walk away” if Iran doesn’t agree to the rigorous inspections and verification regime the U.S. is seeking.

Negotiators have floated the idea of a commission of countries that would hear Iran’s objections to inspections requests. But if Iran still refuses to allow inspections at the site, international sanctions would be reimposed.

Ilan Berman, a skeptic of the deal, said that type of “managed access” could give the Iranians the chance to scrub evidence from a site while they stall for time.

“You want to do snap inspections, not ones where they can move things around,” said Berman, vice president of the American Foreign Policy Council.

Sanctions relief

Western officials have insisted that sanctions won’t be removed until Iran holds up its end of the bargain by reining in its nuclear activity as agreed.

Iran, on the other hand, at first demanded sanctions be lifted as soon as a final agreement is signed and sealed. Iranian officials now appear to be relenting somewhat and agreeing that sanctions could fall at a later date, after they make the necessary changes to their nuclear program.

Negotiators are now looking to iron out the details of the sequence for the removal of those sanctions.

But once those sanctions come off, it’s unclear how effectively the international community could snap them back into place — if it’s even willing to. While Iran’s economy has suffered because of the restrictions, so have many companies based in the countries that have imposed them.

 

 

ISIS New Targets Include Sphinx and Pyramids

Posted on by

ISIS has been destroying antiquities for more than a year. Some were more than 2000 years old. They include Palmyra, the Mosul Museum and Nineveh, the site of Nimrud.

Just this week, did ISIS launch a deadly attack in the Sinai. Islamic State is on the move and Egypt is in their sights for destruction.

For security measures in place and some historical perspective, click here.

Islamic State threatens pyramids, sphinx, as it begins attack on Egypt

ISLAMIC State has launched a bold new attack — this time in Sinai against Egypt. Are the Pryamids and Great Sphinx — along with countless other treasures — next on their hit list?

“When Egypt comes under the auspices of the Khalifa (Caliphate), there will be no more Pyramids, no more Sphinx, no more idolatry. This will be just”.

These are the chilling words recently spoken to presenter Dan Cruickshank by British Muslim activist Anjem Choudary.

Just days after his show, Civilisation Under Attack, went to air in the UK, Islamic State has taken steps to turn them into reality.

Egyptian warplanes are launching air strikes and troops going house-to-house in the troubled Sinai Peninsula as the jihadist militants conduct an unprecedented, coordinated attack.

It’s just the latest action in a chain of events that threatens to topple the cradle of civilisation into internal chaos on a scale similar to that of Syria and Iraq.

And Islamic State is ready to seize the moment.

New wave of unrest

The combat in Sinai, described as “war” by Egyptian media and officials, has heightened tensions across the country.

Since the popular “Arab Spring” uprising against the 30-year rule of President Hosni Mubarak, Egypt has gradually been sliding towards chaos.

Today the troubled nation marks the second anniversary of the military’s overthrow of democratically elected Islamist President Mohammed Morsi.

It was a move that fanned dissent throughout Egypt and the insurgency in north Sinai.

It also follows the dramatic assassination this week of the country’s chief prosecutor in a car bombing in Cairo, prompting general-turned-politician President Abdel-Fattah el-Sissi to press for even harsher anti-terrorism laws targeting Islamic militants.

A special forces raid yesterday on a Cairo apartment killed nine members of Morsi’s outlawed Muslim Brotherhood.

The Brotherhood responded by calling for a “rebellion.”

It’s fertile ground for the Islamic State. It’s attempting to initiate exactly that.

The coordinated assault by scores of extremists on Wednesday focused on the town of Sheikh Zuweid. It included suicide bombings and an attack on its main police station, which also was shelled by mortars and rocket-propelled grenades in a firefight with police that lasted most of the day, the officials said.

The army said 17 troops and more than 100 militants were killed in the fighting.

It expects it to be just the start of a new military campaign.

Enormous heritage at stake

Islamic State has already telegraphed its attitude to Egypt’s rich cultural heritage.

They should be destroyed.

The dogma is simple: No object should be the subject of idolisation or worship.

According to a statement by preacher Ibrahim Al Kandari, as reported in the Egyptian Al-Watan daily, it is irrelevant that most of Egypt’s ancient monuments are cultural, not religious.

“The fact that early Muslims who were among prophet Mohammed’s followers did not destroy the pharaohs’ monuments upon entering Egypt does not mean that we shouldn’t do it now,” Al Kandari told the paper earlier this year.

Islamic State leader Abu Bakr al-Baghdadi has reportedly stated the demolition of historic monuments is a “religious duty”.

The jihadist extremists have already demonstrated its attitude towards relics of cultures other than its own. They point to Islamic prohibitions against depicting “living beings”: They are supposed to promote idolatry.

It has smashed statues in the museum of Mosul. It has brutally demolished the ancient cities of Hatra and Nimrud, and looted the city of Dur Sharrukin. It’s an extremist philospy reflected in the destruction of the enormous Bamiyan Buddhas in 2001 by Afghanistan’s Taliban.

But Islamic State recently moderated its stance, promising to protect the Roman ruins of the city of Palmyra. It has since blown up several medieval mausoleums in the area.

It’s not the first time Egypt’s Great Pyramids and Sphinx have been threatened.

While often attributed Napoleon, the destruction of the Great Sphinx’s nose is believed by many to have been caused by Muhammad Sa’im al-Dahar in the 14th century. He believed local peasants may have been worshipping the ancient monument.

In 2012 a cleric of Egypt’s radical Salafi movement declared a fatwa against the World Heritage site — citing the Prophet Mohammed’s destruction of idols in Mecca as precedent.

Egypt’s tourism industry was akin to “prostitution and debauchery”, he said.

Egypt’s military response

Air raids yesterday killed 23 extremists just south of Rafah, a key Sinai border town near the Gaza strip, Sinai Egyptian security officials said.

They added that the army was searching for militants in the town of Sheikh Zuweid, where a string of army checkpoints were attacked a day earlier.

Soldiers were de-mining roads in and around the area that had been booby trapped with mines and improvised explosive devices, the officials said, speaking on condition of anonymity because they were not authorised to talk to the media.

The army also raided a house in Rafah, killing six armed Isanuc State militants wearing military uniforms, the officials said, adding that it had cleared the area around the Sheikh Zuweid police station of mines and IEDs.

A newspaper close to the Egyptian government said Thursday the militants behind the Sinai attacks used sophisticated weaponry, including Russian-made Kornet antitank missiles. The el-Watan daily also said they also used mortars, anti-aircraft guns and other guided missiles.

The main insurgent organisation operating in Sinai, which calls itself the Sinai Province of the Islamic State group, claimed its fighters struck 15 army and police positions and staged three suicide bombings, two against checkpoints and one that hit an officers’ club in nearby el-Arish, the area’s largest city. The authenticity of the claim could not be immediately verified but it was posted on a Facebook page associated with the group.

Militants in northern Sinai have battled security forces for years, but they stepped up their attacks after Morsi’s ouster on July 3, 2013, which followed mass demonstrations against his rule. El-Sissi led the ouster and was elected president last year.

Political opposition blamed

Egyptian authorities and pro-government media have blamed much of the recent violence on the Muslim Brotherhood, which has been branded a terrorist group.

The Brotherhood denies involvement, although it and other President Morsi supporters have faced a sweeping crackdown that has led to thousands of arrests, mass convictions and death sentences.

The democratically elected Preisdent is among those condemned to die, but he has appealed.

The Brotherhood has called for a “rebellion” and described the special forces killings as “a turning point that will have its own repercussions.”

“It will not be possible to control the anger of the oppressed,” the Brotherhood said in a statement.

Israeli Prime Minister Benjamin Netanyahu warned of the growing threat to the region from Islamic State militants and expressed condolences to Egypt over the deadly IS-linked attacks in Sinai.

“We see in front of our eyes IS acting with extraordinary cruelty both in our northern border and at our southern border,” he said. “Our hearts are with the Egyptian people, we send our condolences to the Egyptian government and the families of those who were killed in battle with the cruel terror.”

FBI Official Warning, Hackers Attacking Corporations

Posted on by

The FBI Most Wanted hackers. Law enforcement is willing to pay $4.2 million to get them

Cybercrime represents one of the most serious threat to Governments and private industries worldwide, law enforcement hunt down this emerging class of criminals who are able to influence the social context like drug traffickers and terrorists.

The FBI has published the lists of most wanted cyber criminals and the rewards for their capture. According to FBI data these individuals are responsible for hundreds of millions of dollars in losses, for this reason, the Feds are willing to pay a combined $4.2 million for information leading to their arrest.

U.S. Retailer giants Target and Home Depot are just a couple of samples of companies that suffered major cyber attacks, we cannot avoid mentioning other illustrious victims of the cybercrime like the Sony Pictures and government agencies, including the Office of Personnel Management.

Recently Trustwave firm published a report related to 2014 incidents that revealed cyber criminal activities are paying with 1,425% return on investment. More details here.

***

But the warning bells are sounding from the FBI

FBI Warns U.S. Companies to Be Ready for Chinese Hack Attacks

by Shane Harris:
In a message obtained by The Daily Beast, the bureau strongly implies Beijing was behind the massive hack that exposed U.S. government employees’ secrets—and U.S. companies are next.
Within the U.S. government, there’s a debate about who’s responsible for the massive hack of federal employees’ darkest secrets. The FBI on Wednesday weighed in with its own answer, strongly implying that it was the work of China.

The FBI is warning U.S. companies to be on the lookout for a malicious computer program that has been linked to the hack of the Office of Personnel Management. Security experts say the malware is known to be used by hackers in China, including those believed to be behind the OPM breach.

The FBI warning, which was sent to companies Wednesday, includes so-called hash values for the malware, called Sakula, that can be used to search a company’s systems to see if they’ve been affected.

The warning, known as an FBI Liaison Alert System, or FLASH, contains technical details of the malware and describes how it works. While the message doesn’t mention the OPM hack, the Sakula malware is used by Chinese hacker groups, according to security experts. And the FBI message is identical to one the bureau sent companies on June 5, a day after the Obama administration said the OPM had been hacked, exposing millions of government employees’ personal information. Among the recipients of both alerts are government contractors working on sensitive and classified projects.

Director of National Intelligence James Clapper has publicly called China the “leading suspect” in the OPM hack, but he hasn’t offered any evidence publicly to substantiate those claims. Devin Nunes, the chairman of the House Intelligence Committee, has said the jury is still out on whether China is to blame.

In an email obtained by The Daily Beast, the FBI said it was sending the alert again because of concerns that not all companies had received it the first time. Apparently, some of their email filters weren’t configured to let the FBI message through.

The FLASH alert says the bureau has identified “cyber actors who have compromised and stolen sensitive business information and personally identifiable information.”
The FLASH alert says the bureau has identified “cyber actors who have compromised and stolen sensitive business information and personally identifiable information,” which includes names, dates of birth, and Social Security Numbers. The message notes that this information was a “priority target” of the hackers and that such data are frequently used for financial fraud. But “the FBI is not aware of such activity by these groups,” the message says.

Experts believe the data stolen from OPM is being compiled for espionage purposes, including targeting U.S. government employees and contractors who have access to classified information and could be blackmailed or recruited as spies.

The message also described the malware as being designed to copy information and send it to another computer, presumably being operated by a hacker. The Sakula malware has been linked to a breach of patient records at the health insurer Anthem. Some experts now believe the hackers who pulled off that breach are the same ones who penetrated the OPM’s computers.

The alert comes as Obama administration officials have been briefing members of Congress and their staff about the extent of the OPM hack. The Daily Beast reported earlier that the hackers had compromised so-called adjudication information, which includes revealing details, gleaned from background investigations, about government employees’ sex lives, their history of drug and alcohol use, and their financial problems. The OPM hack has also raised questions about whether the personnel records of intelligence agency employees, including covert operatives, were compromised.

 

Snapshot of the Threats Against America

Posted on by

Today on CBS: “Thousands of law enforcement officers in New York will spend July 4 trying to prevent a terror attack that could come from supporters of the Islamic State of Iraq and Syria (ISIS). NYPD Deputy Commissioner of Intelligence and Counterterrorism John Miller called it one of their biggest operations ever.

“I think if you look at history, they’re looking at big events, they’re looking at symbolic dates. They’re looking at military, police, intelligence,” Miller said Thursday on “CBS This Morning.”

CBS News senior security contributor Mike Morell said Monday the FBI and Department of Homeland Security’s warning of a potential July 4 attack is “nothing routine.” ”

This document is produced by the Majority Staff of the House Homeland Security Committee.

TOP TAKEAWAYS

ISIS is dead set on attacking America and its allies. With the recent attacks in France and against tourists in Tunisia, ISIS has now been linked to 47 terrorist plots or attacks against the West, including 11 inside the United States. The rate of ISIS terror plots against the West has more than doubled in 2015 (19 plots in all of 2014; 28 already this year).

The number of post-9/11 jihadi terror plots in the United States has surged. There have been more U.S.-based terror plots or attacks in the first half of 2015 (a total of 24) than in any full year since 9/11. Overall, homegrown jihadi plots have tripled in just the past five years (from 36 plots/attacks in June 2010 to 118 today).

Islamist terrorists are getting better at recruiting Americans. Ten U.S.-based ISIS supporters have been arrested in the last month, bringing the total to 55 ISIS-inspired individuals arrested and charged in America (not including two who have been charged in absentia). ISIS followers have now been arrested in at least 19 states.

Foreign fighters continue to pour into terrorist safe havens overseas—and represent a threat to the United States and its allies. More than 4,000 Westerners and 200+ Americans have traveled or attempted to travel to join Islamist terrorists in Syria, figures which have nearly doubled in the past year. Around 40 have already returned to the United States, according to authorities, one of which was arrested plotting a terrorist attack in Ohio.

Islamist terror safe havens and franchises are proliferating rapidly, giving groups like ISIS and al Qaeda a base for operation and further expansion. Libya in particular has deteriorated quickly becoming a training ground for terror recruits. ISIS now has a direct presence, affiliates, or groups pledging support in at least 18 countries or territories, including Afghanistan, Algeria, Egypt, India, Indonesia, Iraq, Jordan, Libya, Lebanon, Nigeria, the Palestinian territories (Gaza), Pakistan, Philippines, Russia (North Caucasus region), Sudan, Syria, Tunisia, and Yemen.

TERROR PLOTS AGAINST THE WEST

ISIS is not a regional phenomenon but a global menace whose targeting against the West has surged in 2015.

By the numbers

Since early 2014, there have been 47 planned or executed ISIS-linked terror plots against Western targets, including 11 inside in the United States.1

There have been more ISIS-linked plots against Western targets in the first half of this year (28) than in all of 2014 (19).2

Recent Developments

June 27: ISIS recruiter and computer hacker Junaid Hussain attempted to enlist a trainee to target the Armed Forces Day parade in London, England, in a bombing attack. Hussain is suspected to have been in social media contact with at least one of the perpetrators of the May 2015 attack on a Muhammad cartoon contest in Garland, Texas.

June 26: Yassine Salhi, 35, decapitated his employer and attempted to blow up an American chemical company’s factory near Lyon, France, before being subdued. He had previously been under French authorities’ scrutiny over his jihadist ties. Salhi maintained regular contact with and sent pictures of the decapitated body to a Syria-based French citizen reportedly fighting for and in contact with ISIS leaders.

June 26: Seifeddine Rezgui, 23, attacked a public beach and luxury resort complex frequented by Western tourists in Sousse, Tunisia, killing 39 individuals. He was eventually shot by security 1 forces. ISIS claimed responsibility for the attack. Tunisian officials believe Rezgui attended the same terror training camp in Libya as the attackers who targeted the National Bardo Museum in Tunis in March. This figure is based on open-source data compiled by the Majority Staff of the Homeland Security Committee.

2 This figure is based on open-source data compiled by the Majority Staff of the Homeland Security Committee.

June 23: ISIS spokesman Abu Muhammad al Adnani issued an aggressive call urging followers around the world to launch terror attacks and turn the month of Ramadan (June 17 – July 17) into a “calamity for the infidels…Shi’ites and apostate Muslims.” Adnani proclaimed that martyrdom during Ramadan would bring “tenfold” rewards to jihadists.

June 19: Justin Nolan, a 19-year-old from Morganton, North Carolina, was arrested for plotting assassinations and a large terror attack on behalf of ISIS using a semi-automatic AR-15 rifle. Nolan expressed his support for ISIS, acquired a gun silencer, desired to kill “as many as 1,000 people,” and planned to send footage of an attack to ISIS.

June 17: Fareed Mumuni was arrested after attempting to stab FBI agents searching his home in connection with an investigation stemming from the arrest of Munther Saleh. Authorities believe Mumuni conspired with Saleh to construct a pressure-cooker bomb, similar to those used in the Boston Marathon bombing in 2013. Mumuni told federal investigators that he pledged allegiance to ISIS, planned to travel to ISIS-controlled territories to join the group, and intended to attack law enforcement officers if his efforts to join ISIS failed.

June 16: Abdul Malik Abdul Kareem was indicted for providing weapons to Elton Simpson and Nadir Soofi for use in May 2015 Garland, Texas attack. Kareem also traveled with Simpson and Soofi to a remote desert area near Phoenix to practice shooting. He was charged with conspiracy, making false statements and interstate transportation of firearms with intent to commit a felony. The indictment noted that the three men “and others known and unknown to the grand jury” plotted the attack.

June 13: Munther Omar Saleh, a 20-year-old college student, was arrested after he and an unidentified co-conspirator ran towards an undercover law enforcement car near the Whitestone Bridge in New York. Saleh came under scrutiny after a Port Authority police officer saw him walking near the George Washington Bridge in New Jersey this past March. Saleh conducted online research on preparing explosive devices— including research on pressure cooker bombs and other weaponry— in the New York metropolitan area on behalf of ISIS. Saleh was active on Twitter and tweeted his concern that al Qaeda was becoming “too moderate” in 2014. He also espoused pro-ISIS sympathies online and endorsed the Charlie Hebdo massacre in France and the Garland, Texas shooting attack.

June 2: Ussamah Abdullah Rahim of Roslindale, Massachusetts, was initially planning to behead an individual at some point in the future but advanced the timing of his plot and changed the target to law enforcement personnel. Rahim attacked Boston police officers and FBI agents who were attempting to question him before being neutralized. He was radicalized by ISIS and had been on authorities’ radar for several years. His nephew, David Wright, conspired with Rahim and was initially arrested for obstructing the investigation. A third associate, Nicholas Rovinski from Warwick, Rhode Island, also in contact with ISIS recruiters overseas, was arrested June 11th and charged as a co-conspirator.

HOMEGROWN ISLAMIST EXTREMISM

Homegrown terror has reached unprecedented levels as extremist groups work to infiltrate the United States and remotely recruit and radicalize Americans.

By the numbers

Since September 11, 2001, there have been 118 U.S. terrorist cases involving homegrown violent jihadists. Over 80 percent of these cases, which include plotted attacks and attempts to join foreign terrorist organizations, have occurred or been discovered since 2009.3

Authorities have arrested or charged at least 44 individuals in the United States this year – 57 since

2014 – in ISIS-related cases. The cases involve individuals: plotting attacks; attempting to travel to Syria; sending money, equipment and weapons to terrorists; falsifying statements to federal authorities; and failing to report a felony.4

FBI Director James Comey has said authorities have hundreds of open investigations of potential ISIS-inspired extremists that cover all 56 of the bureau’s field offices in all 50 states. He stated there may be hundreds or thousands of Americans who are taking in recruitment propaganda over social media applications: “It’s like the devil sitting on their shoulders, saying ‘kill, kill, kill.’”

Recent Developments

Ten ISIS supporters were arrested in the United States in June, including individuals listed in the previous section tied to ISIS-linked plots or attacks against the West, including David Wright (MA),

Nicholas Rovinski (RI), Abdul Malik Abdul Kareem (AZ), Akmal Zakirov (NY), Munther Omar Saleh (NY), and Fareed Mumuni (NY). Other arrestees include:

June 29: Alaa Saadeh, a 23-year-old from West New York, New Jersey, was arrested in connection with his involvement with an ISIS-supporting cell in New York and New Jersey. Saadeh intended to travel to join ISIS and previously assisted his brother in going overseas for the same purpose.

June 19: Amir Said Abdul Rahman al Ghazi (previously Robert McCollum), a 38-year-old from Sheffield Lake, Ohio, was arrested after pledging support to ISIS, attempting to persuade individuals to join ISIS, expressing a desire to launch terror attacks, attempting to purchase an AK-47, and selling marijuana. Ghazi expressed his radical views through social media tools, including Facebook,

Twitter, and Google+.

June 18: Samuel Rahamin Topaz, a resident of Fort Lee, New Jersey was arrested for his intent to travel abroad to join ISIS in Syria and for providing material support to the terror group. Topaz was a friend and coconspirator of Munther Saleh, arrested June 13. The two watched ISIS propaganda 3 This figure is based on open-source data compiled by the Congressional Research Service and the Majority Staff of the Homeland Security Committee. 4 This figure is based on open-source data compiled by the Majority Staff of the Homeland Security Committee. videos online depicting beheadings and discussed their plans to fight with ISIS by transiting different countries to ISIS-controlled territory in Syria.

June 11: Ali Shukri Amin, 17, of Manassas, Virginia, pleaded guilty to charges of conspiring to provide material support to ISIS after facilitating the travel of Reza Niknejad to Syria to join the group in January. Amin’s Twitter account, which at one time counted more than 4,000 followers, provided advice and encouragement to ISIS and its supporters, including instructions on how to use virtual currency Bitcoin to raise funds for the terror group.

FOREIGN FIGHTERS

Jihadists are flocking to overseas battlefields unabated, acquiring terror connections and capabilities and representing a near-term threat to their home countries, including the United States.

By the numbers

More than 22,000 fighters from 100 countries have traveled to Syria and Iraq to join extremists—the largest convergence of Islamist terrorists in world history. The number of foreign fighters who have traveled to battlefields globally exceeds 25,000.

Approximately 4,000 Western fighters have traveled to Syria and Iraq.5

An estimated 550 Western women have traveled to the conflict zone.

More than 200 Americans are estimated to have traveled – or attempted to travel – to Syria to fight.

This figure is up 33 percent from the beginning of 2015.

Around 40 American fighters who traveled to Syria have returned to the United States as of March 2015.

In addition to fighters joining Sunni extremist groups like ISIS and Jabhat al Nusrah in Syria, an estimated 5,000-7,000 Lebanese Hezbollah members and other Shi’a militants are fighting alongside the Bashar al Assad regime.

A senior State Department official said almost all foreign fighters are still entering Syria through Turkey.

France continues to be the top European source for fighters joining extremists in Syria (~1,200).

French authorities estimate that nearly 500 French fighters are currently in Syria and Iraq. The top overall source for foreign fighters is Tunisia (~ 3,000).

FOREIGN JIHADIST NETWORKS & SAFE HAVENS

5

National Counterterrorism Center Deputy Director John Mulligan, testimony before the House Homeland Security

Committee, June 3, 2015.

Islamist terror groups are carving our greater sanctuary across the Middle East. ISIS is accelerating its global expansion while al Qaeda deepens its roots in the region.

By the numbers

ISIS now has a direct presence, affiliates, or groups pledging support in at least 18 countries or territories, including Afghanistan, Algeria, Egypt, India, Indonesia, Iraq, Jordan, Libya, Lebanon, Nigeria, the Palestinian territories (Gaza), Pakistan, Philippines, Russia (North Caucasus region), Sudan, Syria, Tunisia, and Yemen.6

ISIS controls 11 cities in Iraq and 10 cities in Syria as of late June.7

Recent Developments

ISIS lost control of Tel Abyad, Syria, to Syrian Kurdish and Free Syrian Army-linked forces. The border town had served as a key ISIS line of communication from Turkey to its northern Syrian stronghold of Raqqa. ISIS has been launching counter-attacks against the border town.

ISIS has maintained control of Ramadi, the capital of Iraq’s largely Sunni-populated Anbar province along the Syrian border, after seizing it in May. It is preparing to defend the area by digging trenches and emplacing improvised explosive devices, among other tactics.

ISIS-affiliated militants have been consolidating control in and around Sirte, Libya. ISIS was recently pushed out of the coastal city of Darnah, which was at one point the top source of foreign fighters for al Qaeda in Iraq (AQI), ISIS’s predecessor. An estimated 3,000 fighters in Libya are aligned with ISIS. ISIS has reportedly sent fighters in Libya funding and military trainers over the last several months. The terrorists who separately attacked the National Bardo Museum and a coastal resort in Tunisia this year reportedly attended training camps in Libya.

ISIS formally accepted a pledge of allegiance from followers in Russia’s North Caucasus region. As many as 2,500 fighters from this region have joined extremists in Syria and Iraq.

Al Qaeda in the Arabian Peninsula (AQAP) has been forging alliances with and co-opting local Sunni tribes in southern Yemen since it defeated Yemeni security forces there in April. A recent prison break in Taiz, Yemen, reportedly freed more than 1,200 prisoners, including suspected AQAP militants.

AQAP leader Nasir al Wuhayshi was killed in a targeted strike in Yemen. Wuhayshi served as deputy to al Qaeda leader Ayman al Zawahiri and helped build AQAP following a 2006 prison break. AQAP military commander Qasim al Raymi has been named his successor.

6 Data compiled by the Majority Staff of the Homeland Security Committee.

7

These figures are derived from assessments of territorial control conducted by the Institute for the Study of War.

Al Qaeda’s affiliate in Syria, Jabhat al Nusra, is a prominent force in the anti-Assad regime coalition supported by Qatar, Turkey, and Saudi Arabia – that has captured Idlib and other areas in northern Syria since March.

A cell of veteran al Qaeda operatives in Syria plotting external attacks (Khorasan Group) has maintained a presence in northwest Syria, where U.S. and coalition forces targeted buildings and training camps associated with it in May.

OTHER DEVELOPMENTS

ISIS aggressively exploits social media in order to recruit fighters, disseminate propaganda, and trigger attacks in the West.

Since the beginning of this year, ISIS has pushed out more than 1,700 “products,” including videos, photographic reports, and magazines over social media.8

There are an estimated 200,000 pro-ISIS messages posted on Twitter every day.

ISIS released the 9th issue of its English-language magazine “Dabiq” in May. The articles praises the attackers who targeted the Garland, Texas, cartoon contest, exhorts followers to commit terrorist acts in the United States and other Western countries, and touts the “benefits” it offers people living in its territory.

The risk of Islamist terrorists exploiting refugee and migrant flows to travel freely remains high as underscored in a recent arrest.

Italian authorities arrested Abdel Majid Touil, a 22-year-old Moroccan terror suspect who arrived in Italy on a migrant boat and spent several months there. Touil is suspected of being part of the terror network behind the March National Bardo Museum attack in Tunisia.

ISIS-aligned militants have been taxing migrant boat smugglers and using them to transport militants, according to a Libyan government adviser citing conversations with smugglers. Reports in 2014 indicated that ISIS operatives had discussed using refugee flows into Europe as a “Trojan Horse” for its operatives. Italian officials have reportedly expressed concerns over terrorists’ potential exploitation of these flows.

The Obama Administration released additional detainees from Guantanamo Bay in June and is formulating a broader plan to shutter the facility.

Defense Secretary Ashton Carter said he is working with the White House on a closure plan for Guantanamo to be submitted to Congress.

8

National Counterterrorism Center Deputy Director John Mulligan, testimony before the House Homeland Security

Committee, June 3, 2015.

The Defense Department announced it transferred six al Qaeda detainees – several who reportedly served as bodyguards for Osama bin Laden – from Guantanamo to Oman. Almost 30 percent of released detainees from Guantanamo are known or suspected to have returned to the battlefield.

The travel ban on the “Taliban Five” – freed in exchange for now-charged Sgt. Bowe Bergdahl – will remain in place temporarily. Restrictions enforced by the Qatari government were set to expire on June 1, 2015, but will now be extended until negotiations involving the U.S., Qatar, and Afghanistan are concluded.

Many more details in context here.

Cyber Security on the Skids, Blinking RED

Posted on by

Recorded Future is a real time open source intelligence collection company that determines trends and predictions of emerging threats.

Recorded Future identified the possible exposures of login credentials for 47 United States government agencies across 89 unique domains.

As of early 2015, 12 of these agencies, including the Departments of State and Energy, allowed some of their users access to computer networks with no form of two-factor authentication. The presence of these credentials on the open Web leaves these agencies vulnerable to espionage, socially engineered attacks, and tailored spear-phishing attacks against their workforce.

The damage has yet to be fully realized and cannot be overstated. Where is the White House? Where are the protections? Where is a policy? Major alarm bells as you read on.

From Associated Press:

Tech company finds stolen government log-ins all over Web

WASHINGTON (AP) — A CIA-backed technology company has found logins and passwords for 47 government agencies strewn across the Web – available for hackers, spies and thieves.

Recorded Future, a social media data mining firm backed by the CIA’s venture capital arm, says in a report that login credentials for nearly every federal agency have been posted on open Internet sites for those who know where to look.

According to the company, at least 12 agencies don’t require authentication beyond passwords to access their networks, so those agencies are vulnerable to espionage and cyberattacks.

The company says logins and passwords were found connected with the departments of Defense, Justice, Treasury and Energy, as well as the CIA and the Director of National Intelligence.

From the WSJ: Obama’s Cyber Meltdown

“While Russia and Islamic State are advancing abroad, the Obama Administration may have allowed a cyber 9/11 at home.”

If you thought Edward Snowden damaged U.S. security, evidence is building that the hack of federal Office of Personnel Management (OPM) files may be even worse.

When the Administration disclosed the OPM hack in early June, they said Chinese hackers had stolen the personal information of up to four million current and former federal employees. The suspicion was that this was another case of hackers (presumably sanctioned by China’s government) stealing data to use in identity theft and financial fraud. Which is bad enough.

Yet in recent days Obama officials have quietly acknowledged to Congress that the hack was far bigger, and far more devastating. It appears OPM was subject to two breaches of its system in mid-to-late 2014, and the hackers appear to have made off with millions of security-clearance background check files.

These include reports on Americans who work for, did work for, or attempted to work for the Administration, the military and intelligence agencies. They even include Congressional staffers who left government—since their files are also sent to OPM.

This means the Chinese now possess sensitive information on everyone from current cabinet officials to U.S. spies. Background checks are specifically done to report personal histories that might put federal employees at risk for blackmail. The Chinese now hold a blackmail instruction manual for millions of targets.

These background checks are also a treasure trove of names, containing sensitive information on an applicant’s spouse, children, extended family, friends, neighbors, employers, landlords. Each of those people is also now a target, and in ways they may not contemplate. In many instances the files contain reports on applicants compiled by federal investigators, and thus may contain information that the applicant isn’t aware of.

Of particular concern are federal contractors and subcontractors, who rarely get the same security training as federal employees, and in some scenarios don’t even know for what agency they are working. These employees are particularly ripe targets for highly sophisticated phishing emails that attempt to elicit sensitive corporate or government information.

The volume of data also allows the Chinese to do what the intell pros call “exclusionary analysis.” We’re told, for instance, that some highly sensitive agencies don’t send their background checks to OPM. So imagine a scenario in which the Chinese look through the names of 30 State Department employees in a U.S. embassy. Thanks to their hack, they’ve got information on 27 of them. The other three they can now assume are working, undercover, for a sensitive agency. Say, the CIA.

Or imagine a scenario in which the Chinese cross-match databases, running the names of hacked U.S. officials against, say, hotel logs. They discover that four Americans on whom they have background data all met at a hotel on a certain day in Cairo, along with a fifth American for whom they don’t have data. The point here is that China now has more than enough information to harass U.S. agents around the world.

And not only Americans. Background checks require Americans to list their contacts with foreign nationals. So the Chinese may now have the names of thousands of dissidents and foreigners who have interacted with the U.S. government. China’s rogue allies would no doubt also like this list.

This is a failure of extraordinary proportions, yet even Congress doesn’t know its extent. The Administration is still refusing to say, even in classified briefings, which systems were compromised, which files were taken, or how much data was at risk.

***
While little noticed, the IRS admitted this spring it was also the subject of a Russian hack, in which thieves grabbed 100,000 tax returns and requested 15,000 fraudulent refunds. Officials have figured out that the hackers used names and Social Security data to pretend to be the taxpayers and break through weak IRS cyber-barriers. As Wisconsin Senator Ron Johnson has noted, the Health and Human Services Department and Social Security Administration use the same weak security wall to guard ObamaCare files and retirement information. Yet the Administration is hardly rushing to fix the problem.

Way back in March 2014, OPM knew that Chinese hackers had accessed its system without having downloaded files. So the agency was on notice as a target. It nonetheless failed to stop the two subsequent successful breaches. If this were a private federal contractor that had lost sensitive data, the Justice Department might be contemplating indictments.

Yet OPM director Katherine Archuleta and chief information officer Donna Seymour are still on the job. Mr. Obama has defended Ms. Archuleta, and the Administration is trying to change the subject by faulting Congress for not passing a cybersecurity bill. But that legislation concerns information sharing between business and government. It has nothing to do with OPM and the Administration’s failure to protect itself from cyber attack.

Ms. Archuleta appears before Congress this week, and she ought to remain seated until she explains the extent of this breach. While Russia and Islamic State are advancing abroad, the Obama Administration may have allowed a cyber 9/11 at home.