Category Archives: Terror

Democrat Officials’ Cell Phones Hacked

Posted on by

Report: Dem officials cell phones hacked.

TheHill: The FBI is investigating the hacked cell phones of several Democratic Party officials with the belief the attacks are connected to a spate of breaches at party networks and under the assumption that the Russia is behind the hacking, Reuters reports.

The phones, says the report, were hacked within “the past month or so”.

That would put the timing of the breach soon after hackers, widely suspected to be Russian intelligence, were booted from the Democratic Congressional Campaign Committee.  The DCCC breach, in turn, took place shortly after the same hackers were kicked out of the Democratic National Committee.

Many members of Congress have grown frustrated with the administration not formally accusing Russia of the hacking spree, including House Homeland Chair Michael McCaul (R-Texas) and Rep. Nancy Pelosi (D-Cali.), who have both asked Obama to acknowledge Russia is behind the attacks.

In part from Reuters:

The revelation underscores the widening scope of the U.S. criminal inquiry into cyber attacks on Democratic Party organizations, including the presidential campaign of its candidate, former U.S. secretary of state Hillary Clinton.

U.S. officials have said they believe those attacks were orchestrated by hackers backed by the Russian government, possibly to disrupt the Nov. 8 election in which Clinton faces Republican Party candidate Donald Trump. Russia has dismissed allegations it was involved in cyber attacks on the organizations.

The more recent attempted phone hacking also appears to have been conducted by Russian-backed hackers, two people with knowledge of the situation said.

Federal Bureau of Investigation representatives had no immediate comment, and a Clinton campaign spokesman said they were unaware of the suspected phone hacking. The Democratic National Committee (DNC) did not respond to a request for comment, and the Democratic Congressional Campaign Committee (DCCC) had no immediate response.

FBI agents had approached a small number of Democratic Party officials to discuss concerns their mobile phones may have been compromised by hackers, people involved said. It was not clear how many people were targeted by the hack or whether they included members of Congress, a possibility that could raise additional security concerns for U.S. officials.

If they were successful, hackers could have been able to acquire a wide range of data from targeted cell phones, including call data, text messages, emails, photos and contact lists, one person with knowledge of the situation said.

“In a sense, your phone is your office brain,” said Bruce Schneier, a cyber security expert with Resilient, an IBM company, which is not involved in the investigation. “It’s incredibly intimate.”

“Anything that’s on your phone, if your phone is hacked, the hacker can get it.”

The FBI has asked some of those whose phones were believed to have hacked to turn over their phones so that investigators could “image” them, creating a copy of the device and related data.

U.S. investigators are looking into whether hackers used data stolen from servers run by Democratic organizations or the private emails of their employees to get access to cell phones, one person said.

Hackers previously targeted servers used by the DNC, the body that sets strategy for the party, and the DCCC, which raises money for Democrats running for seats in the House of Representatives, officials have said.

Clinton said during Monday’s presidential debate there was “no doubt” Russia has sponsored hacks against “all kinds of organizations in our country” and mentioned Russian President Vladimir Putin by name.

“Putin is playing a really tough, long game here. And one of the things he’s done is to let loose cyber attackers to hack into government files, to hack into personal files, hack into the Democratic National Committee,” Clinton said.

Trump countered that there was no definitive proof that Russia had sponsored the hacks of Democratic organizations.

“I don’t think anybody knows it was Russia that broke into the DNC,” he said. “It could be Russia, but it could also be China. It could also be lots of other people.”

APT 28: Russian Cyber Attacks Britain and Germany as Well as U.S.

Posted on by

APT 28:

TechTimes: FireEye said in a white paper they released in 2014 that APT 28 had launched attacks against military and political organizations beginning in 2007. Other targets that the Kremlin have special interest in include the NATO alliance offices and government officials in Georgia. In these attacks, the group had reportedly gathered “malware samples with Russian language settings during working hours consistent with the time zone of Russia’s major cities, including Moscow and St. Petersburg.”

The APT 28 used the same tools and hit the same targets performed by the Pawn Storm hackers that were described by security firm Trend Micro in a separate report. According to the company, the Pawn Storm hacking group recently increased their activity and targeted bloggers who conducted interviews with President Barack Obama. There is also speculation that the group had stolen online credentials of a military correspondent of an unnamed major publication in the U.S. More here.

 

RUSSIA’S HACKERS HIT BRITAIN

Putin’s cyber warriors the Fancy Bears targeted government websites and the BBC in the run-in to last year’s election

Defensive measures deployed to thwart the attack by Fancy Bears after it was discovered by spy agency GCHQ

TheSun: A RUSSIAN cyber attack on British government departments and TV broadcasters in the run-up to last year’s general election was thwarted by intelligence agencies, it emerged today.

GCHQ boffins halted the “imminent threat” by Kremlin-backed hackers Fancy Bears – the group behind the leak of Olympic athletes’ doping files.

Dimbleby on the BBC election show

Russian hackers targeted government departments and broadcasters including the BBC in the run-up to the 2015 general election.
***
The revelation of the attack on the British election comes amid concerns Russian hackers are attempting to disrupt the US presidential race.Last week another Russian group, DC Leaks, hacked White House servers to obtain what appeared to be Michelle Obama’s passport.

Fancy Bears planned to attack every Whitehall server including the Home Office, Foreign Office and Ministry of Defence, security officials told the Sunday Times.

They were also targeting all the main UK broadcasters including the BBC, ITV, Channel 4 and Sky.

cyber-caliphate

Getty Image: An attack on France’s TV5Monde network claimed on behalf od ISIS by the ‘Cyber-Caliphate’ was traced to the Fancy Bears in Moscow
***

The GCHQ eavesdropping agency uncovered the threat after probing the group’s successful attack against TV5Monde, one of France’s biggest TV networks, in April last year.

It was feared ISIS had reached new levels in its ability to wage cyber war after all 11 of the French broadcasters channels were take off air and its website was flooded with jihadist propaganda.

Related reading: Russia ‘was behind German parliament hack’

But GCHQ traced the hack – claimed by a group calling themselves the “Cyber-Caliphate” – back to Moscow and then uncovered they were planning to hit Britain next.

Analysts feared that the Putin-sponsored group could “embarrass” pillars of the British state and took defensive measures to protect government departments.

Senior security officials are also understood to have warned the TV networks so they could defend themselves.

One security official said: “We had information, and it could have been activated, which is why it was an imminent threat.

“They certainly could have defaced a website for propaganda reasons and they could have possibly taken it down.”

It is the first known threat by the Kremlin-backed hackers to interfere in the British political process.

News of the attack comes after Fancy Bears published details of athletes including Mo Farah and Sir Bradley Wiggins hacked from the global anti-doping watchdog Wada.

Papers revealed they were given medical exemption certificates to use banned drugs.

Fancy Bears website

AP:Associated Press: The Fancy Bears leaked confidential medical filed on dozens of Olympic athletes after hacking the anti-doping body Wada
***

In July the hackers were blamed for the leak of 20,000 damaging emails from the US Democratic National Committee – just as it was about to confirm Hillary Clinton as presidential candidate.

The intervention was seen a Moscow’s attempt to boost Donald Trump’s chances in the election.

The group is thought to be behind a shutdown of the national grid in Ukraine and attacks on the governments of Syria, Uzbekistan, Pakistan and the United Arab Emirates.

Fancy Bears also targeted the BBC, The Guardian, Al Jazeera, Reuters, CNN, Farnborough arms fair, defence contractor Northrop Grumman, one cyber security report says.

Separately a list published by security experts at the PwC consultancy shows 245 apparent Fancy Bears attacks on targets including Nato, the Chilean military, Apple, Google, the German ministry of defence and the Polish and Hungarian governments.

There is no suggestion any of these has been successful although one firm on the list, Yahoo, last week admitted the personal information of 500million users had been stolen by what it called “state-sponsored” hackers in late 2014.

****

BroadbandTVNews: The BBC, ITV, Channel 4 and Sky were involved in what David Anderson QC, the independent reviewer of terrorism legislation, described the incident as a “possible imminent threat” to the UK. The Sunday Times reports that Anderson said the government’s monitoring agency GCHQ “deployed a capability to protect government networks from this cyber-attacker”.

The information was revealed in a previously unnoticed report released in July. Broadcasters were warned of the potential threat and advised to take action.

British security officials have told the paper the group plotting the attack was Fancy Bears, also known as APT28 and Sofacy, the same group that last April brought down the French international broadcaster TV5 Monde.

Within a few seconds of the April 8th attack, all of TV5’s channels stopped broadcasting, and it also lost control of its sites and social profiles. On screen messages declared allegiance to ISIS.

7700 Terrorists at the Southern Border

Posted on by

Oh….another leak and no word from the Department of Homeland Security….

Leaked FBI Data Reveal 7,700 Terrorist Encounters in USA in One Year; Border States Most Targeted

Breitbart: Leaked documents with sensitive FBI data exclusively obtained by Breitbart Texas reveal that 7,712 terrorist encounters occurred within the United States in one year and that many of those encounters occurred near the U.S.-Mexico border. The incidents are characterized as “Known or Suspected Terrorist Encounters.” Some of the encounters occurred near the U.S.-Mexico border at ports-of-entry and some occurred in between, indicating that persons known or reasonably suspected of being terrorists attempted to sneak into the U.S. across the border. In all, the encounters occurred in higher numbers in border states.

Some of the documents pertain to the entire U.S., while others focus specifically on the state of Arizona. The documents are labeled, “UNCLASSIFIED/LAW ENFORCEMENT SENSITIVE” and contain data from the FBI-administered Terrorist Screening Center, the organization maintaining the Terrorist Screening Database, also known as the “Terror Watch List.”

 CNN

The leaked FBI data are contained in a fusion center’s educational materials, specifically the Arizona Counter Terrorism Information Center’s (ACTIC) “Known or Suspected Terrorist (KST) Encounters Briefing” covering from July 20 2015 through July 20 2016. The leaked documents are composed of 10 individual pages, but Breitbart Texas chose to release only nine of them due to page 10 containing contact information for ACTIC.

Page Two of the documents contains a map of the entire U.S. with the numbers of encounters per state. The states with the highest encounters are all border states. Texas, California, and Arizona–all states with a shared border with Mexico–rank high in encounters.

Page Three shows a map of where the encounters occurred in the state of Arizona. The majority from this map occurred in Phoenix, a major destination point for people who illegally cross the U.S.-Mexico border. The map also shows that encounters occurred at ports-of-entry, likely from persons either walking up and asking for asylum or from Sinaloa cartel attempts to smuggle them into the U.S. in vehicles. Most significantly, the map shows that many of the encounters occurred near the border outside of ports-of-entry, indicating that persons were attempting to sneak into the U.S.

Page Six shows a pie chart indicating that the majority of encounters in Arizona were with Islamic known or suspected terrorists, both Sunni and Shi’a. Eighty-nine encounters were Sunni, 56 were Shi’a, 70 were “Other International Terrorist Groups or Affiliates,” and only 52 were with “Domestic Terrorism.”

Page 7 contains definitions to help understand the maps.

Breitbart Texas provides the leaked documents and data below: (Go here to see all pages)

Page 1 of 9 by Brandon Darby on Scribd

Related reading:

2012: Inside a secret U.S. Terrorist Screening Center

(CBS News) The Terrorist Screening Center is one of the U.S. government’s most secure buildings. It is home to the nation’s top secret terrorist databases.

For CBS to gain access, no sound could be recorded and only one agent could be identified, Tim Healy.

He is the FBI veteran who currently runs the center.

“We are the only country in the world that has a terrorist watch list.”

The center was founded in 2003 in response to the 9/11 attacks. Their job is to gather intelligence about possible terrorists both in the United States and abroad.

The watch list contains about 520,000 people world wide suspected of having ties to terrorism. Names on the list are added and subtracted daily, but who in on the list remains a secret.

“We don’t confirm anyone’s existence on the watch list,” said Healy.

In addition to the watch list, Healy oversees a second more critical list, the “No Fly List”.

“If you have information that the guy wants to blow up a plane, I can keep him off a plane,” said Healy. “If I’ve [got] information he wants to conduct a terrorist attack, I can keep him off a plane.”

There are about 20,000 people on the “No Fly List”. Seven-hundred of them are Americans and they are considered too much of a risk to allow onto an airplane.

Names on the various watch lists surface each day in calls to the center. For example, each time a police officer run someone’s ID through a computer, that person is checked against the lists.

“So if you are speeding, you get pulled over, they’ll query that name. And if they are encountering a known or suspected terrorist, it will pop up and say call the Terror Screening Center,” said Healy. “So now the officer on the street knows he may be dealing with a known or suspected terrorist.”

The center averages about 55 encounters a day from people who are known or suspected terrorists.

In most cases, according to Healy, the encounters do not produce arrests, but they do provide additional intelligence.

“[The] location of where the guy’s going. What he’s doing [and] additional associates that the subject is hanging around.”

Throughout the Terrorist Screening Center are placed artifacts from various terrorist attacks including Oklahoma City federal building, the USS Cole bombing, and the World Trade Centers. All sober reminders of how important their work is.

For Tim Healy and the workers of the Terrorist Screening Center, failure is not an option. They measure their success by what doesn’t happen.

*****

On September 16, 2003, the President signed Homeland Security Presidential Directive-6 (HSPD-6), requiring the establishment of an organization to “consolidate the Government’s approach to terrorism screening and provide for the appropriate and lawful use of Terrorist Information in screening processes.” Specifically, the Attorney General was directed to create a new organization to consolidate terrorist watch lists and provide 24-hour, 7-day a week operational support for federal, state, local, territorial, tribal, and foreign government as well as private sector screening across the country and around the world. As a result of this presidential directive, the Terrorist Screening Center (TSC) was created. As of the end of fiscal year (FY) 2004, the TSC was a $27 million organization with approximately 175 staff.

San Bernardino to New York: Deobandi Courtesy of Barack and Hillary

Posted on by

Ahmad Rahami Posted Radical Videos in 2010, Went to Syria: Sources

   

Ahmad Khan Rahami spent time at Pakistan seminary tied to Taliban

Guardian: Exclusive: Suspect in New York and New Jersey bombings spent three weeks in 2011 at Kaan Kuwa Naqshbandi madrassa, source says, amid questions of terrorism links

Ahmad Khan Rahami, the man suspected of placing bombs in New York and New Jersey last weekend, spent time in a religious seminary in Pakistan closely associated with the Afghan Taliban, according to a government official.

The 28-year-old, who was born in Afghanistan but became a US citizen, spent time at the Kaan Kuwa Naqshbandi madrasa on his two visits to Pakistan, a security official working for the government of Balochistan province told the Guardian.

Rahami spent three weeks in 2011 receiving “lectures and Islamic education” at the school in Kuchlak, a dusty cluster of villages 20km north of Quetta, the provincial capital of Balochistan, he said.

Kuchlak is a well-known hub for the Taliban, the Islamist movement that has waged a 15-year insurgency against local and Nato forces in nearby Afghanistan. It is home to many madrasas, the seminaries intimately linked with the Taliban, originally a movement of religious students.

US officials have revealed basic details about Rahami’s two visits to Pakistan, the first in 2011 when he spent a couple of months in Quetta and got married and almost a year in 2013 when he also made a car journey to Afghanistan.

But very little information has emerged from inside Pakistan about what Rahami did during his visits.

Related reading: U.S. State Dept/Pakistan Bureau of Democracy, Human Rights, and Labor

The government official, who did not wish to be named because he was speaking about a highly sensitive subject, said Pakistani security agencies have tried to “hide all the details of his visits to Quetta” and keep as much information as possible out of the media.

Rahami, he said, also visited other sensitive areas in the province, including Surkhab and Nushki, where former Taliban leader Mullah Akhtar Mansoor was killed by a US drone in May.

Pakistan has long been accused of playing a “double game” with the US, both supporting the Nato counterinsurgency in Afghanistan and allowing the Taliban to use its territory a vital rear base.

A western expert on the Taliban said Abdul Samad, the Afghan owner of the Kuchlack madrasa, was an important local figure.

“The madrasa is a place where you have multiple Afghan Taliban going there and hanging out in [Samad’s] court, as well as active ISI officers,” he said, referring to the Inter-Services Intelligence (ISI) directorate, an army-run spy agency.

“Samad is the kind of person who should have been shut down long ago but enjoys a high degree of protection,” he said.

Despite being part of the mystical, Sufi strain of Islam, which many hardliners abhor, Samad is highly respected by the movement, he said.

A Karachi-based cleric told the Guardian the school was a sizeable operation, with more than 200 students.

Despite several attempts to reach Samad for comment, the Guardian was unable to make contact with the madrasa.

Although the Taliban’s leadership is often described as the “Quetta Shura” many analysts consider Kuchlak to be the actual command centre for many senior members of the movement.

The Taliban’s white flags have been reportedly seen flying in the town’s graveyards and Shahbaz Taseer, a Pakistani kidnapped by militants in Lahore in 2011 and held for more than four years, was released in Kuchlak in March by the Taliban.

Rahami’s father Mohammad Rahami has said his son had grown increasingly interested in Islamist movements, watching Taliban and al-Qaida videos, and listening to their poetry. Rahami had also shown sympathy towards the Taliban, a former employer said.

Related reading: San Bernardino/ The Islamic Center of Riverside or Brooklyn

Given the Taliban has long avoided entanglement in international jihad, insisting it is interested only in forcing foreign troops out of Afghanistan, it is unlikely Rahami was operating under instruction when he planted his bombs. A notebook found on Rahami when he was captured after a shootout on Monday suggests he may have been inspired by the Islamic State group.

But the claim Rahami attended an important Taliban-sympathising madrasa could be embarrassing for Pakistan at a time the country is under intense international criticism, not least from India, which accused Pakistan this week of hosting “the Ivy League of terrorism”.

Anwar-ul-Haq Kakar, a spokesman for the Balochistan government, said that because more than 1 million Afghan refugees lived in the province it was “difficult to know what sort of activity is being conducted by some individuals”.

“Filtering out the terrorist influences in such a huge community is a very difficult task,” he said.

Nor could the government be expected to be aware of a US traveller such as Rahami, who has “deep links in the host community”.

“If he was not spotted by the CIA and FBI or Homeland Security, then this shows that it is really global problem,” he said.

*** The basis for the swap of the Taliban 5 out of Guantanamo for Bowe Bergdahl? It all seems Qatar was the core and interlocutor for the Taliban. Clinton and Obama managed the failed process.

Negotiations with the Taliban initiated by the United States were for getting all factions to talk to each other.  Why bother talking to the Taliban? The answer is that, as both President Barack Obama and former Secretary of State Hillary Clinton made clear while I served as special representative, the war in Afghanistan is going to end politically and we would either shape that end or be shaped by it. If there is ever to be peace in Afghanistan, Afghans will need to talk to other Afghans about the future of Afghanistan. Since the Taliban today officially refuses to talk to Kabul’s representatives, getting to these talks might require a US effort to help open the door.

Those US-Taliban talks, which lasted from mid-2011 to March 2012, ultimately failed. While many details rightly remain classified, here are three of the lessons I learned sitting across the negotiating table from the Taliban that may be helpful to those who may seek to reopen the dialogue with them or others who need to talk to an insurgent group in some present or future conflict:

Set clear conditions and moral guidelines and stick to them. These need not be preconditions. Indeed, before talks with the Taliban began, Secretary Clinton made clear that while the US had no preconditions for talking to them, Washington would support reconciliation with only those insurgents who met three important end conditions: Break with al Qaeda, end violence, and live inside an Afghan Constitution that guarantees the rights of all individuals, especially women. Force must be backed by diplomacy, and diplomacy must be backed by force. Talking with the Taliban was part of the larger “diplomatic campaign” Secretary Clinton launched in 2011 to complement the military surge President Obama had ordered in 2009. This diplomatic campaign tried to harness all of the instruments of non-military power to support Afghanistan, such as development assistance, private-sector investment and support for civil society. As part of this effort, we organized international meetings in Istanbul, Bonn, Chicago and Tokyo, at which nations and international organizations pledged future political and material support for Afghanistan. These conferences were also designed to send the Taliban clear messages that the international community was committed to supporting Afghanistan beyond 2014. More here.

Last item of note: In part from Newsweek: The groups targeting the state follow the Deobandi interpretative tradition of Islam. This is important because this means that they share a significant common organizational infrastructure. For example, they rely on mosques and madrassas that adhere to the Deobandi tradition of Islam. When 9/11 happened and Pakistan was forced to work with the Americans, these Deobandi groups were furious. Many of these groups came to know Al-Qaeda through their association with the Taliban in Afghanistan. [The Afghan Taliban emerged from Deobandi madrassas in Pakistan.] And these Deobandi groups were furious that the Pakistani state was aiding the overthrow, not only of the Taliban government, but the only government in the world that was exercising a Deobandi version of Sharia [Islamic law]. After 9/11…[some] of these Deobandi groups began fracturing and disobeying the [Pakistani] state. That’s when the insurgency began. Over time these Deobandi organizations began calling themselves the Pakistani Taliban.

9/11: POTUS Vetoed JASTA, Ability to Sue Saudi Arabia

Posted on by

House intel chairman threatens to subpoena bin Laden files

FNC: The Republican chairman of the House intelligence committee says he’s prepared to take what may be unprecedented action to get the remaining Usama bin Laden documents from the nation’s top military and intelligence agencies – and subpoena the files.

“If they don’t provide these documents to the committee by October 11th, then we’re going to have to subpoena them — which I don’t want to have to do but it appears like we’ve run out of all options,” Republican Rep. Devin Nunes, R-Calif., told Fox News. “For the administration to basically mislead the American people for this many years is flat-out wrong.”

Nunes is seeking documents and relevant analysis, which is thought to comprise at least 50 reports. In a Sept. 22 letter to Director of National Intelligence James Clapper, CIA Director John Brennan, and Defense Department Undersecretary for Intelligence Marcel Lettre, Nunes says the law required them to comply nearly two years ago based on Section 313 of the Intelligence Authorization ACT (IAA) for fiscal 2014. This section mandated a “complete declassification of the Abbottabad documents within 120 days.”  More here.

Meanwhile there appears to be enough votes to over-ride Obama’s veto on the ability to for the 9/11 families to sue Saudi Arabia.

FNC: With lawmakers eager to return home to campaign ahead of the November election, a vote could come as early as Tuesday. Even House Democratic Leader Nancy Pelosi, an Obama ally, indicated support this week for an override, saying members believe the families “should have their day in court.”

Democratic New York Sen. Chuck Schumer called the veto a “disappointing decision that will be swiftly and soundly overturned in Congress.”

Senate Majority Leader Mitch McConnell’s office said the Senate would take up the override “as soon as practicable in this work period.”

The Justice Against Sponsors of Terrorism Act sailed through both chambers of Congress by voice vote, with final House passage coming just two days before Obama led the nation in marking the 15th anniversary of the attacks that killed nearly 3,000 people in New York, Washington and Pennsylvania on Sept. 11, 2001. More here.

The passed legislation is known as JASTA, S.2040 – Justice Against Sponsors of Terrorism Act was introduced by Senator Cornyn of Texas. It was presented to Barack Obama and was due for final record by 9/23/2016 if Obama did not take his veto action which he did at the last moment during the week of the United Nations General Assembly.

Related reading: House Intel Cmte has Declassified/Released the 28 Pages

Additionally:

Deleted official report says Saudi key funder of Hillary Clinton campaign

#USA2016

MEE: Deputy Crown Prince Mohammed bin Salman reportedly said Saudi has enthusiastically funded Hillary Clinton’s presidential campaign

Saudi Arabia is a major funder of Hillary Clinton’s campaign to become the next president of the United States, according to a report published by Jordan’s official news agency.

The Petra News Agency published on Sunday what it described as exclusive comments from Saudi Deputy Crown Prince Mohammed bin Salman which included a claim that Riyadh has provided 20 percent of the total funding to the prospective Democratic candidate’s campaign.