[INFOCON]

[INFOCON] CTC: Letters from Abbottabad: Bin Ladin Sidelined? and 17 de-classified documents captured during the Abbottabad raid

2012-05-03T15:36:00Z

Letters from Abbottabad: Bin Ladin Sidelined? May 03, 2012
Combating Terrorism Center at West Point Authors: Don Rassler, Gabriel Koehler-Derrick, Liam Collins, Muhammad al-Obaidi, Nelly Lahoud

This report is a study of 17 de-classified documents captured during the Abbottabad raid and released to the Combating Terrorism Center (CTC). They consist of electronic letters or draft letters, totaling 175 pages in the original Arabic and 197 pages in the English translation. The earliest is dated September 2006 and the latest April 2011. These internal al-Qa`ida communications were authored by several leaders, most prominently Usama bin Ladin. In contrast to his public statements that focused on the injustice of those he believed to be the 'enemies' of Muslims, namely corrupt 'apostate' Muslim rulers and their Western 'overseers,' the focus of Bin LadinÃ¢Â€Â™s private letters is Muslims' suffering at the hands of his jihadi 'brothers'.

He is at pain advising them to abort domestic attacks that cause Muslim civilian casualties and focus on the United States, 'our desired goal.' Bin LadinÃ¢Â€Â™s frustration with regional jihadi groups and his seeming inability to exercise control over their actions and public statements is the most compelling story to be told on the basis of the 17 de-classified documents. 'Letters from Abbottabad' is an initial exploration and contextualization of 17 documents that will be the grist for future academic debate and discussion.

Report
http://www.ctc.usma.edu/wp-content/uploads/2012/05/CTC_LtrsFromAbottabad_WEB_v2.pdf

Original Documents (Arabic)
http://s3.amazonaws.com/CTCReports/Arabic.zip

Translated Documents (English)
http://s3.amazonaws.com/CTCReports/English.zip

[INFOCON] Al Qaeda Operative Convicted by Jury in One of the Most Serious Terrorist Threats to the United States Since 9/11

2012-05-02T08:27:05Z

Al Qaeda Operative Convicted by Jury in One of the Most Serious Terrorist Threats to the United States Since 9/11 Defendant and Co-Plotters Came Within Days of Suicide Bombing of New York City Subways; Defendant Attempted Suicide Attack on Whitestone Expressway in Queens, New York U.S. Attorney's Office
May 01, 2012

Eastern District of New York

BROOKLYN, NY - Earlier today, following a four-week trial, Adis Medunjanin, age 34, a Queens resident who joined al Qaeda and plotted to commit a suicide terrorist attack, was found guilty of multiple federal terrorism offenses. The defendant and his accomplices came within days of executing a plot to conduct coordinated suicide bombings in the New York City subway system in September 2009, as directed by senior al Qaeda leaders in Pakistan. When the plot was foiled, the defendant attempted to commit a terrorist attack by crashing his car on the Whitestone Expressway in an effort to kill himself and others.

The guilty verdict was announced by Loretta E. Lynch, United States Attorney for the Eastern District of New York, and Lisa Monaco, Assistant Attorney General for National Security.

The government's evidence in this and related cases established that in 2008, Medunjanin and his co-plotters, Najibullah Zazi and Zarein Ahmedzay, agreed to travel to Afghanistan to join the Taliban and kill United States military personnel abroad. They arrived in Peshawar, Pakistan, in late August 2008, but Medunjanin and Ahmedzay were turned back at the Afghanistan border. Within days, Medunjanin, Zazi, and Ahmedzay met with an al Qaeda facilitator in Peshawar and agreed to travel to Waziristan for terrorist training. There, they met with al Qaeda leaders Saleh al-Somali, then the head of al Qaeda external operations, and Rashid Rauf, a high-ranking al Qaeda operative, who explained that the three would be more useful to al Qaeda and the jihad by returning to New York and conducting terrorist attacks.

In Waziristan, Medunjanin, Zazi, and Ahmedzay received al Qaeda training on how to use various types of high-powered weapons, including the AK-47, PK machine gun, and rocket-propelled grenade launcher. During the training, al Qaeda leaders continued to encourage Medunjanin and his fellow plotters to return to the United States to conduct 'ï¿½martyrdom'ï¿½ operations and emphasized the need to hit well-known targets and maximize the number of casualties. Medunjanin, Zazi, and Ahmedzay agreed and discussed the timing of the attacks and possible target locations in Manhattan, including the subway system, Grand Central Station, the New York Stock Exchange, Times Square, and movie theaters.

Upon their return to the United States, Medunjanin, Zazi, and Ahmedzay met and agreed to carry out suicide bombings during the Muslim holiday of Ramadan, which fell in late August and September 2009. Zazi would prepare the explosives, and all three would conduct coordinated suicide bombings. In July and August 2009, Zazi purchased large quantities of component chemicals necessary to produce the explosive TATP [triacetone triperoxide] and twice checked into a hotel room near Denver, Colorado, to mix the chemicals. Federal investigators later found bomb-making residue in the hotel room.

On September 8, 2009, Zazi drove from Denver to New York, carrying operational detonator explosives and other materials necessary to build bombs. However, shortly after arriving in New York, he learned that law enforcement was investigating the plotters' activities. The men discarded the explosives and other bomb-making materials, and Zazi traveled back to Denver, where he was arrested on September 19, 2009.

On January 7, 2010, law enforcement agents executed a search warrant at Medunjanin's residence. Shortly thereafter, Medunjanin left his apartment and attempted to turn his car into a weapon of terror by crashing it into another car at high speed on the Whitestone Expressway. Moments before impact, Medunjanin called 911, identified himself, and left his message of martyrdom, shouting an al Qaeda slogan: 'We love death more than you love your life.'

Today, Medunjanin was convicted of conspiring to use weapons of mass destruction, conspiring to commit murder of U.S. military personnel abroad, providing and conspiring to provide material support to al Qaeda, receiving military training from al Qaeda, conspiring and attempting to commit an act of terrorism transcending national boundaries, and using firearms and a destructive devices in relation to these offenses. When sentenced by United States District Judge John Gleeson on September 7, 2012, Medunjanin faces a mandatory sentence of life in prison. To date, seven defendants, including Medunjanin, Zazi, and Ahmedzay, have been convicted in connection with the al Qaeda New York City bombing plot and related charges.

'Justice was served today in Brooklyn, as a jury of New Yorkers convicted an al Qaeda operative bent on terrorism, mass murder, and destruction in the New York City subways,' stated United States Attorney Lynch. 'ï¿½Adis Medunjanin's journey of radicalization led him from Flushing, Queens, to Peshawar, Pakistan, to the brink of a terrorist attack in New York City - and soon to a lifetime in federal prison. As this case has proved, working against sophisticated terrorist organizations and against the clock, our law enforcement and intelligence agencies can detect, disrupt and destroy terrorist cells before they strike, saving countless innocent lives.'ï¿½ Ms. Lynch expressed her gratitude and appreciation to the FBI Joint Terrorism Task Force in New York and each of the federal, state, and local law enforcement personnel who took part in the investigation, as well as to the law enforcement authorities in the United Kingdom and Norway who assisted with the case.

'Adis Medunjanin was an active and willing participant in one of the most serious terrorist plots against the homeland since 9/11. Were it not for the combined efforts of the law enforcement and intelligence communities, the suicide bomb attacks that he and others planned would have been devastating,' said Assistant Attorney General for National Security Monaco. 'I thank the many agents, analysts, and prosecutors who helped bring about today's result. I also thank our counterparts in the United Kingdom for their assistance in this investigation and prosecution.'

The government's case was prosecuted by Assistant United States Attorneys David Bitkower, James P. Loonam and Berit W. Berger of the U.S. Attorney's Office for the Eastern District of New York, with assistance provided by the Counterterrorism Section of the Justice Department's National Security Division.

[INFOCON] RAND: U.S. Military Information Operations in Afghanistan Effectiveness of Psychological Operations 2001-2010

2012-05-01T19:04:00Z

U.S. Military Information Operations in Afghanistan Effectiveness of Psychological Operations 2001-2010 RAND

Abstract

The U.S. Marine Corps, which has long recognized the importance of influencing the civilian population in a counterinsurgency environment, requested an evaluation of the effectiveness of the psychological operations (PSYOP) element of U.S. military information operations in Afghanistan from 2001 to 2010 based on how well messages and themes were tailored to target audiences.

This monograph responds to that request. It summarizes the diverse PSYOP initiatives undertaken, evaluates their effectiveness, identifies strengths and weaknesses, and describes the way forward, including making certain specific recommendations for improvements. Special attention is paid to how well PSYOP initiatives were tailored to target audiences, primarily the Pashtuns who are the dominant population in the conflictive areas and the main support of the Taliban insurgency.

It contains reports of specific operations that were successful in achieving objectives, as well as examples of operations that did not resonate with target audiences and even some that had counterproductive effects.

The biggest PSYOP successes were in face-to-face communication and the emphasis on meetings with jirgas (local councils of elders), key-leader engagements, and establishing individual relationships with members of the Afghan media. In addition, the concept of every infantryman as a PSYOP officer proved very effective.

The most notable shortcoming was the inability to sufficiently counter the Taliban propaganda campaign against U.S. and coalition forces on the theme of civilian casualties, both domestically and internationally.

Research Questions

What can prior efforts reveal about areas for improvement in U.S. Marine Corps information operations being conducted in Helmand Province, Afghanistan?
How well were these initiatives tailored to their target audiences, and what were the reasons for their success or failure?
What unique role do psychological operations (now military information support operations) play within the larger field of U.S. military information operations?

Key Findings

External Factors Could Ultimately Determine the Acceptance of Messages by Target Audiences:

An assessment of the effectiveness of various themes in prior U.S. military psychological operations revealed that certain messages were never effective, and other messages were effective for only a limited amount of time.
Likewise, the methods used to disseminate these messages, as well as an understanding of the diversity and culture of target audiences, played a significant role in the reach and outcome of messaging campaigns.

There Have Been Both Notable Successes and Notable Weaknesses in the U.S. Military's Messaging Campaigns in Afghanistan

The most-notable shortcoming has been in countering the Taliban's propaganda campaign against U.S. and coalition activity, which has focused on civilian casualties and has found a broad national and international audience.
While the success of Taliban propaganda efforts has not translated into widespread support for the movement, it may have weakened support for the U.S. and coalition presence and activities in the region.
The biggest successes have been in the area of face-to-face communication and meetings with key communicators, such as local councils of elders, local leaders, and members of the Afghan media.

Recommendations

Drawing on the experiences of personnel who have participated in information operations and psychological operations campaigns in Afghanistan would be a good starting point for operational, organizational, and doctrinal reforms.
Local focus groups and public-opinion surveys would provide guidance on effective themes and strategies and would offer an opportunity to gauge the receptiveness and attitudes of target audiences.
Forming partnerships with and expanding the role of key local communicators can help encourage local populations to volunteer information about, for example, Taliban activity and the presence of improvised explosive devices.
There is a disconnect between the doctrine and practice of information operations in the field. A cohesive strategy that integrates these elements, and that encourages the integration of psychological operations and public affairs, would offer benefits in terms of the potential effectiveness, reach, and efficiency of messaging campaigns.

http://www.rand.org/pubs/monographs/MG1060.html

[INFOCON] Lies, damned lies, and Cybercrime statistics

2012-04-18T07:52:25Z

... How do we reconcile this view with stories that cybercrime rivals the global drug trade in size? One recent estimate placed annual direct consumer losses at $114 billion worldwide. It turns out, however, that such widely circulated cybercrime estimates are generated using absurdly bad statistical methods, making them wholly unreliable. ...

Sex, Lies and Cyber-crime Surveys
Dinei Florencio and Cormac Herley
Microsoft Research
One Microsoft Way
Redmond, WA, USA
June 2011

Sex, Lies and Cyber-crime Surveys Paper https://research.microsoft.com/pubs/149886/SexLiesandCybercrimeSurveys.pdf

Sex, Lies and Cyber-crime Surveys Presentation http://research.microsoft.com/pubs/149886/SexLiesAndCyberCrimeSurveys_ITTC.pdf

New York Times: The Cybercrime Wave That Wasn't http://www.nytimes.com/2012/04/15/opinion/sunday/the-cybercrime-wave-that-wasnt.html?_r=2

[INFOCON] U.S. v. KSM, et al.: Motions Hearing: DOD Refers 9/11 Charges to Military Commission

2012-04-04T19:24:16Z

DOD Refers 9/11 Charges to Military Commission

American Forces Press Service

WASHINGTON, April 4, 2012 Ã¢Â€Â“ The Defense Department has referred charges against five suspected 9/11 co-conspirators to a military commission, Pentagon officials announced today.

The charges allege that Khalid Sheikh Mohammed, Walid Muhammad Salih Mubarak Bin Attash, Ramzi Binalshibh, Ali Abdul Aziz Ali, and Mustafa Ahmed Adam al Hawsawi were responsible for the planning and execution of the Sept. 11, 2001, terrorist attacks on the United States.

The convening authority -- DODÃ¢Â€Â™s Office of Military Commissions -- referred the case to a capital military commission, meaning the five accused could be sentenced to death if convicted.

In keeping with reforms in the Military Commissions Act of 2009, officials said, each has been provided, in addition to their detailed defense counsel, learned counsel with specialized knowledge and experience in death penalty cases to assist in their defense. The five are charged with terrorism, hijacking aircraft, conspiracy, murder in violation of the law of war, attacking civilians, attacking civilian objects, intentionally causing serious bodily injury, and destruction of property in violation of the law of war. The convening authority has referred all charges to a joint trial.

Officials emphasized that the charges are only allegations that the five accused have committed offenses punishable under the Military Commissions Act of 2009, and that they are presumed innocent unless proven guilty beyond a reasonable doubt.

In accordance with military commissions rules and procedures, the chief judge of the Military Commissions Trial Judiciary will assign a military judge to the case, and the five accused will be arraigned at Naval Station Guantanamo Bay, Cuba, within 30 days after theyÃ¢Â€Â™re served with the referred charges.

Related Sites:
Office of Military Commissions
http://www.mc.mil/

Military Commission Ã¢Â€Â“ KSM, et al. As of 04/04/2012

U.S. v. KSM, et al.: On April 4, 2012, the Convening Authority, Office of Military Commissions, referred to trial by Military Commission joint charges against Khalid Sheikh Mohammed, Walid Muhammad Salih Mubarak Bin 'Attash, Ramzi Binalshibh, Ali Abdul Aziz Ali, and Mustafa Ahmed Adam al Hawsawi.

On May 31, 2011, five individuals (Khalid Sheikh Mohammed; Walid Muhammad Salih Mubarek Bin 'Attash; Ramzi Binalshibh; Ali Abdul Aziz Ali; and Mustafa Ahmed Adam al Hawsawi) were charged jointly, in connection with their alleged roles in the September 11, 2001 attacks against the United States. They are charged with committing the following eight offenses: conspiracy; attacking civilians; attacking civilian objects; intentionally causing serious bodily injury; murder in violation of the law of war; destruction of property in violation of the law of war; hijacking or hazarding a vessel or aircraft; and terrorism. The sworn charges are currently being considered by the Convening Authority, who will determine whether or not to refer the cases to a military commission, and, if so, whether to refer the cases as capital.

Cases
Military Commissions Cases
http://www.mc.mil/CASES/MilitaryCommissions.aspx

Fact Sheets
Commission Panel Members Info Sheet
http://www.mc.mil/Portals/0/Info%20Sheet%20Commission%20Panel%20Members%20August%202010.pdf Military Commissions Fact Sheet
http://www.mc.mil/Portals/0/Military%20Commissions%20Fact%20Sheet%20%28April%202010%29.pdf

History
Military Commissions History
http://www.mc.mil/ABOUTUS/MilitaryCommissionsHistory.aspx

Case Name Status

Abd al-Rahim Hussein Muhammed Abdu Al-Nashiri Withdrawn/Dismissed

Abd al-Rahim Hussein Muhammed Abdu Al-Nashiri (2)       Charges Pending/Active
Abdul Ghani     Withdrawn/Dismissed

Abdul Zahir (MCO No. 1) Archives
Ahmed Khalfan Ghailani Withdrawn/Dismissed Al Qahtani Charges Pending/Inactive Al Qahtani (MCO No. 1) Archives
Ali Hamza Ahmad Suliman al Bahlul Appeal Ali Hamza Ahmad Suliman al Bahlul (MCO No. 1) Archives Almed Mohammed Ahmed Haza al Darbi Withdrawn/Dismissed Binyam Ahmed Muhammad Withdrawn/Dismissed Binyam Ahmed Muhammad (MCO No. 1) Archives David M. Hicks Completed
David M. Hicks (MCO No. 1) Archives Faiz Mohammed Ahmed Al Kandari Charges Pending/Inactive Fouad Mahmoud Hasan Al Rabia Withdrawn/Dismissed Ghassan Abdullah al Sharbi Charges Pending/Inactive Ghassan Abdullah al Sharbi (MCO No. 1) Archives Ibrahim Ahmed Mahmoud al Qosi Completed Ibrahim Ahmed Mahmoud al Qosi (MCO No. 1) Archives Khalid Sheikh Mohammed et al Withdrawn/Dismissed

Khalid Sheikh Mohammed et al (2)        Charges Pending/Active
Majid Shoukat Khan      Charges Pending/Active

Mohammed Hashim Withdrawn/Dismissed
Mohammed Jawad Withdrawn/Dismissed
Mohammed Kamin Withdrawn/Dismissed
Noor Uthman Muhammed Completed

Obaidullah      Withdrawn/Dismissed
Omar Ahmed Khadr        Completed
Omar Ahmed Khadr (MCO No. 1)    Archives
Salim Ahmed Hamdan      Appeal
Salim Ahmed Hamdan (MCO No. 1)  Archives
Sufyian Barhoumi        Charges Pending/Inactive

Sufyian Barhoumi (MCO No. 1) Archives Tarek Mahmoud El Sawah Charges Pending/Inactive

[INFOCON] GCHQ: UK Universities awarded Academic Centre of Excellence status in Cyber Security Research

2012-04-03T19:16:52Z

UK Universities awarded Academic Centre of Excellence status in Cyber Security Research

GCHQ Press Release

The first eight UK universities conducting world class research in the field of cyber security have been awarded â€œAcademic Centre of Excellence in Cyber Security Researchâ€ status by GCHQ in partnership with the Research Councilsâ€™ Global Uncertainties Programme (RCUK) and the Department for Business Innovation and Skills (BIS). We hope other universities will also become Centres in the near future as part of an ongoing process.

The Centres of Excellence will benefit the UK by:

Enhancing the UKâ€™s cyber knowledge base through original research
Providing top quality graduates in the field of cyber security
Supporting GCHQâ€™s cyber defence mission
Driving up the level of innovation
The Centres of Excellence will help make the UK government, business and consumers more resilient to cyber attack by extending knowledge and enhancing skills in cyber security.

The eight Universities chosen as Centres of Excellence in Cyber Security Research are:

University of Bristol
Imperial College London
Lancaster University
University of Oxford
Queenâ€™s University Belfast Royal Holloway, University of London
University of Southampton
University College London

These Centres will be the first to attain Academic Centre of Excellence in Cyber Security Research status and will benefit from:

Closer collaboration with GCHQ, the UK Cyber Community and industry
Partnership endorsement in associated publications and prospectuses
Better understanding of Government and industrial cyber issues
Helping to formulate the future Cyber Security research agenda
Extra funding opportunities and Â£50,000 capital investment

Minister for Cyber Security Francis Maude said:

"We want to make the UK one of the most secure places in the world to do business, by investing in the best expertise to keep pace with technological change. That is why promoting academic excellence is at the heart of the Government's Cyber Security Strategy. These first eight Centres will play a vital role in boosting research, expanding our cyber skills base and fostering innovation in the field."

Universities and Science Minister David Willetts said:

â€œBritain has one of the largest online economies in the world and a growing cyber security sector. Supporting universities to carry out more research and training skilled graduates to work in the cyber-security industry will help build further confidence in doing business online.

There was strong competition among universities to be selected as a Centre of Excellence in cyber security research and I congratulate those who have been successful.â€

A GCHQ spokesman said:

"GCHQ's recognition of eight Universities as Academic Centres of Excellence in Cyber Security Research underlines our conviction in the vital role that academia has to play in nurturing future cyber security talent to support the UK's prosperity in our cyber age.â€

The Academic Centres of Excellence will open for business on 1st July 2012 for a period of five years. During this time GCHQ will encourage further universities to develop their capabilities in order to meet the stringent criteria for recognition. This will position the UK cyber research community as the pre-eminent environment in which to conduct leading edge research and in turn attract the best academics and research students in the UK and from overseas. The research conducted will support the drive for better cyber protection for the UK Government and enable businesses and consumers to safely benefit from the huge opportunities offered in cyberspace.

Notes for the Editor

The scheme to recognise Academic Centres of Excellence in Cyber Security Research is the first in a number of initiatives outlined in Protecting and Promoting the UK in a Digital World, the Governmentâ€™s National Cyber Security Strategy. The Strategy describes how Government is working with academia and industry to make the UK more resilient to cyber attacks.
In other areas, GCHQ, BIS and RCUK are working together to advance the level of cyber education at all levels from GCSE through to post graduate research. Leading edge research initiatives are also being set up and funded by GCHQ and RCUK to strengthen capability in key areas.
Further developments within this area will see:

The establishment of a new Research Institute in the â€œScience of Cyber Securityâ€ The establishment of Academic Centres of Excellence in Cyber Security Education The professionalisation of occupations in the Cyber Security industry The sponsorship of PhD student research projects 4. The award to a university of â€œAcademic Centre of Excellence in Cyber Security Researchâ€ status and a Â£50K grant is subject to the university agreeing to the GCHQ and RCUK terms and conditions of scheme membership.

5. Available to download:

UK Cyber Security Strategy
http://www.cabinetoffice.gov.uk/resource-library/cyber-security-strategy

The role of BIS in the delivering the Cyber Security Strategy http://www.bis.gov.uk/news/topstories/2011/Nov/protecting-and-promoting-uk-digital-world

6. Objectives of the Strategy are to:

Tackle cyber crime and make the UK one of the most secure places in the world to do business in cyberspace
Make the UK more resilient to cyber attack and better able to protect our interests in cyberspace
Help to shape an open, vibrant and stable cyberspace which the UK public can use safely and that supports open societies
Build the UKâ€™s cross-cutting knowledge, skills and capability to underpin all cyber security objectives.
GCHQ is one of the three UK intelligence agencies. Further information can be found at: http://www.gchq.gov.uk
The Engineering and Physical Sciences Research Council takes the lead in cyber security within the RCUK Global Uncertainties Programme.

For more information please contact the GCHQ Press Office

Similar US program:
NSA: National Centers of Academic Excellence - Cyber Operations http://www.nsa.gov/academia/nat_cae_cyber_ops/index.shtml

[INFOCON] RAND Europe: Feasibility Study for a European Cybercrime Centre

2012-04-01T21:13:19Z

Feasibility Study for a European Cybercrime Centre

by Neil Robinson, Emma Disley, Dimitris Potoglou, Anais Reding, Deirdre May Culley, Maryse Penny, Maarten Botterman, Gwendolyn Carpenter, Colin Blackman, Jeremy Millard

To advise the EC on the development of a European Cybercrime Centre, RAND Europe reviewed scholarly literature on the nature, extent, and impacts of cybercrime and collected empirical evidence on the capabilities of 15 EU member states' computer crime units in face to face visits. Findings from the literature and document review suggested a great deal of uncertainty between industry reported figures on the state of cybercrime and official recorded crimes. Nonetheless, the online criminal underground is evolving toward a service based economy. Aspects of forensic capability, investigations, intelligence sharing, training and information exchange were discussed. In addition, RAND Europe consulted Europol, Eurojust, Cepol, Interpol, and the European Network and Information Security Agency on their contribution to tackling cybercrime at the European level. A scenario based workshop was held in Brussels in November 2011 where a range of possible futures were described and considered by participants. The research team's report considers a number of options for the establishment of the ECC and evaluates their strengths and weaknesses according to a range of factors. These include its scope, activities, resources, risks, impacts and interoperability. The study considered a range of options including an ECC hosted by Europol, Eurojust, ENISA and a virtual ECC. The study considered that an ECC hosted by Europol would constitute the most appropriate way forward. The study laid out an implementation plan including expected activities for the first year of the ECC between Januaryï¿½December 2013.

Contents

Chapter One
Introduction: policy background and objectives of this study

Part One

Chapter Two
The understanding and measurement of cybercrime

Chapter Three
The relationship between cyber(in)security and cybercrime

Part Two

Chapter Four
Findings from the Member State interviews

Chapter Five
The role of European-level stakeholders

Part Three

Chapter Six
Developing options for a European Cybercrime Centre

Chapter Seven
Analysis of the four candidate options

Chapter Eight
Implementing the ECC

Appendix A
Participating organisations

Appendix B
Methodology

Appendix C
Country reports

Appendix D
Analysis of data on recorded cybercrime offences across several European countries

Appendix E
Cost estimates for a European Cybercrime Centre

Appendix F
Cost estimate breakdown "pathfinder phase" Janï¿½Dec 2013

Summary
http://www.rand.org/content/dam/rand/pubs/technical_reports/2012/RAND_TR1218.sum.pdf

Full Study
http://www.rand.org/content/dam/rand/pubs/technical_reports/2012/RAND_TR1218.pdf

[INFOCON] Senate Armed Services Committee Hearing: To receive testimony on U.S. Strategic Command and U.S. Cyber Command in review of the Defense Authorization Request for Fiscal Year 2013 and the Future Years Defense Program

2012-03-27T21:43:28Z

...

I am proud of this record of success but aware that more needs to be done by Cyber Command as part of the larger cyber enterprise that includes the National Security Agency/Central Security Service (NSA/CSS), the Service cyber components, and the Defense Information Systems Agency (DISA). I foresee five challenges over the coming year that Cyber Command will face and continue to address. Those areas are the following:

Concept for Operating in Cyberspace: Every domain, by definition, has unique features that compel military operations in it to conform to its physical 12 or relational demands. ...
Cybersecurity Responsibilities: Defending the nation in cyberspace requires a coordinated response among several key players from throughout the government. ...
Trained and Ready Force: At present we are critically short of the skills and the skilled people we as a Command and a nation require to manage our networks and protect U.S. interests in cyberspace.
Defensible Architecture: Our current information systems architecture in the Department of Defense was not built with security uppermost in mind, let alone with the idea of operationalizing it to enable military missions. Instead, we have seven million networked devices in 15,000 DoD network enclaves. Our vision is to fashion that architecture into an operational platform, not just a channel for communications and a place for data storage. To do so, our DoD cyber enterprise, with the Departmentï¿½s Chief Information Officers, DISA, and Cyber Command helping to lead the way, will build a common cloud infrastructure across the Department and the Services that will not only be more secure but more efficientï¿½and ultimately less costly in this time of diminishing resourcesï¿½than what we have today. ...
Global Visibility Enabling Action: We cannot wait for the implementation of that vision of a defensible architecture, however, to improve our situational awareness. Our commanders and our Services need to know whatï¿½s happening inside and outside our networks, but at present we cannot even develop a definitive picture of the 15,000 DoD network enclaves and lack the capability to easily understand what is happening as it occurs. Furthermore, we must know in real time when and how the internet and the overall cyber environment inside and outside the United States are threatened in order to counter those threats.

...

General Keith B. Alexander, USA, Commander, U.S. Cyber Command and Director, National Security Agency/Chief, Central Security Service

********************************************

CYBERCOM continues to play an essential role operating and defending DOD's information networks. Moving forward, we must continue to improve situational awareness and clarify the global roles, responsibilities, expectations, and authorities that contribute to stable and effective deterrence and assurance. Effective defensive and offensive preparation begins with situational awareness. Threats in cyberspace are anything but static, and a useful defensive strategy or capability existing one moment may be ineffective mere seconds later, and improved relationships and technical capabilities allow us to better understand the dynamic cyber environment. Gaining this awareness and then acting quickly and effectively requires improving the complex interagency and international relationships. Cyber security requires the entire governmentï¿½s effort. No single agency or department can effectively address the threats we face in cyberspace; we must constantly evaluate relationships an d operational constructs to address constantly evolving threats. The recent Defense Industrial Base (DIB) Pilot program is a great example of the benefits of partnership and the type of activity we look forward to furthering in the future.

...

General C. Robert Kehler, USAF, Commander, U.S. Strategic Command

UNITED STATES SENATE COMMITTEE ON ARMED SERVICES

There will be a meeting of the Committee on ARMED SERVICES

Tuesday, March 27, 2012
9:30 AM
Room SD-106
Dirksen Senate Office Building
OPEN*

To receive testimony on U.S. Strategic Command and U.S. Cyber Command in review of the Defense Authorization Request for Fiscal Year 2013 and the Future Years Defense Program.

Archived Webcast

General C. Robert Kehler, USAF
Commander, U.S. Strategic Command

General Keith B. Alexander, USA
Commander, U.S. Cyber Command
and
Director, National Security Agency/Chief, Central Security Service

http://armed-services.senate.gov/e_witnesslist.cfm?id=5283

DOD Needs Industryï¿½s Help to Catch Cyber Attacks, Commander Says

By Lisa Daniel

American Forces Press Service

WASHINGTON, March 27, 2012 ï¿½ The Defense Department needs private-sector cooperation in reporting computer network attacks in real time to stop what has been the ï¿½greatest transfer of wealth in historyï¿½ that U.S. companies lose to foreign hackers, the head of U.S. Cyber Command told a Senate committee today.

Army Gen. Keith B. Alexander, who also is the National Security Agency director, told the Senate Armed Services Committee that he supports legislation that would require private companies to report attacks, and added that such reporting needs to happen before an attack is complete.

ï¿½We need to see the attack,ï¿½ he said. ï¿½If we canï¿½t see the attack, we canï¿½t stop it. We have to have the ability to work with industry -- our partners -- so that when they are attacked, they can share that with us immediately.ï¿½ Many cyber defense bills have stalled in Congress over concerns about privacy, overregulation and the militaryï¿½s role in cyber protection, Alexander and the senators noted.

The general compared the current situation, where DOD computers receive some 6 million threatening probes each day, to a missile being fired into U.S. airspace with no radars to see it. ï¿½Today, weï¿½re in the forensics mode,ï¿½ he said. ï¿½When an attack occurs, weï¿½re told about it after the fact.ï¿½

Alexander added, though, that industry should be monitoring their own systems with help from Cyber Command and the Department of Homeland Security. ï¿½I do not believe we want the NSA or Cyber Command or the military in our networks, watching it,ï¿½ he said.

Alexander explained the federal partnership of U.S. cyber security as one in which Homeland Security leads in creating the infrastructure to protect U.S. interests, Cyber Command defends against attacks, FBI conducts criminal investigations, and the intelligence community gathers overseas information that could indicate attacks.

ï¿½Cyber is a team sport,ï¿½ he said. ï¿½It is increasingly critical to our national and economic security. ï¿½ The theft of intellectual property is astounding.ï¿½

The Defense Departmentï¿½s request of $3.4 billion for Cyber Command in fiscal 2013 is one of the few areas of growth in the DOD budget, senators noted. The command has made progress toward its goals of making cyber space safer, maintaining freedom of movement there, and defending the vital interests of the United States and its allies, Alexander said. The command also is working toward paring down the departmentï¿½s 15,000 separate networks, he said.

Cyber threats from nations -- with the most originating in China -- and non-state actors is growing, Alexander said.

ï¿½It is increasingly likely, as we move forward, that any attack on the U.S. will include a cyber attack,ï¿½ he said. ï¿½These are threats the nation cannot ignore. What we see ï¿½ underscores the imperative to act now.ï¿½

http://www.defense.gov/news/newsarticle.aspx?id=67713

[INFOCON] A Fine Balance: Location and cyber privacy in the digital age

2012-03-19T18:38:08Z

A Fine Balance: Location and cyber privacy in the digital age ICT Knowledge Transfer Network

Revenues from the UK location-services sector are predicted to reach US$10.3bn (ï¿½6.7bn) in 2015, up from $2.8bn (ï¿½1.8bn) in 2010. Developers have ploughed ahead, focused on customer experience rather than information security. As a result more than half of UK consumers are not comfortable with the commercial use of their location data.

The ICT Knowledge Transfer Network is pleased to publish a report summarising the outcomes of their conference A Fine Balance: Location and cyber privacy in the digital age that brought together around 100 of the UKï¿½s leading thinkers on how location data is collected, secured, bought and sold. Speakers included The Information Commissionerï¿½s Office, Microsoft, the GSM Association and The Open University, who discussed how to meet these challenges.

Delegates and speakers were surveyed for their opinions on a variety of key issues and based on their votes a series of recommendations were made to policy makers and industry. These included calls for industry codes to increase transparent practises in the use of location data, increased support for UK technologists to find solutions, and proposals for new standard practise guidelines around data anonymisation to reduce the risk of data aggregation.

The report:
https://connect.innovateuk.org/c/document_library/get_file?plid=3001521&folderId=861750&name=DLFE-67126.pdf

Executive summary of outcomes

This report summarises the outcomes of the ICT Knowledge Transfer Networkï¿½s 2011 conference A Fine Balance: Location and cyber privacy in the digital age that brought together around 100 of the UKï¿½s leading thinkers on how location data is collected, secured, bought and sold. Speakers included The Information Commissionerï¿½s Office, Microsoft, the GSM Association and The Open University, who discussed how to meet these challenges. Delegates and speakers were surveyed on their opinion on a variety of key issues using an e-voting system.

The recommendations to policy makers and industry include:

ï¿½ Ensure a better balance in the regulation of how location information is collected and handled. The practise is a rising concern amongst the public but also the source of a blossoming locationservices high-tech industry in the UK. Any future data privacy regulation or legislation must find a way to address public fears without killing off a new, innovative part of the commercial sector.

ï¿½ Develop best practise for anonymising data and hold companies accountable if they donï¿½t comply. Location data is increasingly valuable to criminals and yet there is reluctance to destroy it and a lack of consistency over how it is anonymised. Delegates agreed that a standard for how data is anonymised would reduce the risk of data aggregation but this could only be done safely with government intervention.

ï¿½ Fund UK technologists to find solutions to concerns about location data privacy. New technologies presented at the conference could hand privacy controls back to the user and even give them a share of the money from the sale of their location data. Increased backing for this type of research and support for spin-outs that result from it could help the UK pioneer a new more ethical internet services industry

ï¿½ Encourage the development of industry codes to increase transparent practises in the use of location data and provide better choice to consumers over what location information they share. Delegates agreed that government was often not in a position to respond to the fast paced nature of the sector and much more could be achieved through improved cross industry collaboration.

ï¿½ Look in detail at revisions to The Children's Online Privacy Protection Act (COPPA) that sets out the rules that the major social media operators follow to protect children. It is increasingly seen by child support experts as out of date. Address public concerns around the safety of children and families and take a more active role in the revisions to these laws or how they are implemented in the UK.

ï¿½ Raise public awareness of the risks associated with location services. This will empower consumers to make more informed choices and drive a more ethical approach throughout the market in response. Consumer education is still a potent tool for government looking to address improper conduct in the commercial sector.

[INFOCON] Geotagging poses security risks / Net Threats: Knowing the dos and don'ts of posting on social media / Mapping your life: Embedded data in photos could tip off criminals

2012-03-10T08:35:40Z

... Warren cited a real-world example from 2007. When a new fleet of helicopters arrived with an aviation unit at a base in Iraq, some Soldiers took pictures on the flightline, he said. From the photos that were uploaded to the Internet, the enemy was able to determine the exact location of the helicopters inside the compound and conduct a mortar attack, destroying four of the AH-64 Apaches. ...

... The first step in protecting yourself begins with educating yourself about geotagging, Heinbaugh said. Know which social networking websites use geotag features and those that let you opt out of posting that information. "Knowledge is power," she said. "Knowing risk, you might think twice about posting something." Once you understand what you're posting, you need to learn how to stop that information from being embedded in the media file, Sweetnam said. Soldiers, especially those conducting classified missions, should not use location-based social networking services, he said. "These services will bring the enemy right to the Army's doorstep," Sweetnam said. One of the simplest ways to avoid displaying too much information is to disable the geotagging function on smart phones. Disabling the geotag function can be a complicated process at times, said Heinbaugh. "You have to physically disable the function," she said. "It's easy to geotag, but not so easy to remove the geotag feature." ...

Geotagging poses security risks
March 7, 2012
By Cheryl Rodewig
US Army

FORT BENNING, Ga. (March 7, 2012) -- "Is a badge on Foursquare worth your life?"

The question was posed by Brittany Brown, social media manager of the Online and Social Media Division at the Office of the Chief of Public Affairs. It may sound outlandish, but in the age of social geotagging, it can be a reality.

There are a number of location-based social media applications and platforms, including Foursquare, Gowalla, SCVNGR, Shopkick, Loopt and Whrrl, currently on the market. They use GPS features, typically in the user's phone, to publish the person's location and offer rewards in the form of discounts, badges or points to encourage frequent check-ins.

Security risks for the military:

A deployed service member's situational awareness includes the world of social media. If a Soldier uploads a photo taken on his or her smartphone to Facebook, they could broadcast the exact location of their unit, said Steve Warren, deputy G2 for the Maneuver Center of Excellence, or MCoE.

"Today, in pretty much every single smartphone, there is built-in GPS," Warren said. "For every picture you take with that phone, it will automatically embed the latitude and longitude within the photograph."

Someone with the right software and the wrong motivation could download the photo and extract the coordinates from the metadata.

Warren cited a real-world example from 2007. When a new fleet of helicopters arrived with an aviation unit at a base in Iraq, some Soldiers took pictures on the flightline, he said. From the photos that were uploaded to the Internet, the enemy was able to determine the exact location of the helicopters inside the compound and conduct a mortar attack, destroying four of the AH-64 Apaches.

Staff Sgt. Dale Sweetnam, of the Online and Social Media Division, said geotagging is of particular concern for deployed Soldiers and those in transit to a mission.

"Ideally, Soldiers should always be aware of the dangers associated with geotagging regardless of where they are," he explained.

General hazards for family members:

While especially relevant for those in the military, cautions about geotagging extend to anyone who uses that feature.

Facebook is in the process of rolling out Timeline, a new layout that includes a map tab of all the locations a user has tagged.

"Timeline presents some unique security challenges for users who tag location to posts," Sweetnam said.

"Some of those individuals have hundreds of 'friends' they may never have actually met in person, he explained. "By looking at someone's map tab on Facebook, you can see everywhere they've tagged a location. You can see the restaurants they frequent, the gym they go to everyday, even the street they live on if they're tagging photos of their home. Honestly, it's pretty scary how much an acquaintance that becomes a Facebook 'friend' can find out about your routines and habits if you're always tagging location to your posts."

Most of the applications let people limit who can see their check-ins to friends or friends of friends.

"A good rule of thumb when using location-based social networking applications is do not become friends with someone if you haven't met them in person," Sweetnam said. "Make sure you're careful about who you let into your social media circle."

Even if there is nothing classified about an individual's location, a series of locations posted online over the course of a month can create a pattern that criminals can use.

"We live in a different world now," Warren said.

"If someone were going to get a hold of your phone, they could figure out a lot about who you are. It's like a beacon that's always out there communicating with towers and plotting your moves on a computer somewhere. Literally, if you don't turn off that feature on your phone people are going to be able to recreate your whole day."

Ways to stay safe:

"In operations security, we talk about the adversary," said Kent Grosshans, MCoE OPSEC officer. "The adversary could be a hacker, could be terrorists, could be criminals; someone who has an intent to cause harm. The adversary picks up on pieces of information to put the whole puzzle together."

Grosshans suggests disabling the geotagging feature on your phone and checking your security settings to see who you're sharing check-ins with.

"If your husband's deployed and you go ahead and start posting all these pictures that are geotagged, now not only does an individual know your husband's deployed and he's not at home, but they know where your house is," he said.

Ultimately, it's about weighing the risks.

"Do you really want everyone to know the exact location of your home or your children's school?" Sweetnam said. "Before adding a location to a photo, Soldiers really need to step back and ask themselves, 'Who really needs to know this location information?'"

Grosshans said it's as important to Soldiers as to family members.

"Be conscious of what information you're putting out there," he said. "Don't share information with strangers. Once it's out there, it's out there. There's no pulling it back."

http://www.army.mil/article/75165/Geotagging_poses_security_risks/

Net Threats: Knowing the dos and don'ts of posting on social media April 22, 2011

By Mrs. Mindy Campbell (USAREUR) US Army

BAMBERG, Germany -- During World War II, the U.S. government adopted the slogan "loose lips might sink ships" to warn people to be careful when talking in public. Started in 1942 by the U.S. Office of War Information, the "loose lips" slogan was coined to help the public understand that casual conversations about sensitive information could tip off enemies.

Almost 70 years later, the same slogan could be used in relation to today's tweets, posts and published photos in the online world of social media. With the proliferation of social media sites such as Facebook, Twitter, YouTube and Flickr, the world has turned into a global network of connections and open source information.

Seemingly, innocent comments or posts could be used by terrorists and media organizations to negatively affect the military. Whether you are a Soldier, spouse or relative, community members need to be aware that what they post, however innocent, can have ramifications.

THE DANGER

Social media sites are great, especially for military families. They allow Soldiers and their families, who may move many times throughout a career, to stay connected with friends and family worldwide by allowing us to share our thoughts, photos and events throughout deployments. Even people's daily life and military experience is shared for all the world to see. But that doesn't mean that anything goes.

"Social media provides the opportunity for Soldiers to speak freely about what they're up to or what their interests are," according to the U.S. Army Social Media Handbook. "However, Soldiers are subject to (Uniform Code of Military Justice) even when off duty, so talking negatively about supervisors, or releasing sensitive information is punishable under the UCMJ."

Spouses and family members, while not subject to UCMJ, also need to be careful what they post.

"Sharing what seems to be even trivial information online can be dangerous to loved ones and the fellow Soldiers in the unit - and may even get them killed," the handbook said. "America's enemies scour blogs, forums, chat rooms and personal websites to piece together information that can be used to harm the United States and its Soldiers."

Many people think that if it's unclassified information, it's safe to post, said Tonya Heinbaugh, U.S. Army Garrison Bamberg security officer. However, it's those small pieces of information that could be the most harmful.

"I don't think spouses and sometimes, even Soldiers, realize how great a threat it is," Heinbaugh said. "They only need bits and pieces of information."

In fact, it's unclassified information that can be the most harmful. According to the "Manchester Papers," an Al-Qaeda terrorist training manual found in England in 2000, more than 80 percent of all the information the terrorist group received was through unclassified material, Heinbaugh said.

That was even before social media sites took off, she said. So that number has probably dramatically increased.

"Think what they are collecting now," she said. "We give them all the information they need."

Those small bits of information can be added to other items you have already posted or will post in the future. For example, you generalize and say that your husband has deployed to Afghanistan. While looking through your photos on Facebook, someone might be able to see the unit patch on your husband's Army Combat Uniform or notice you are a "fan" of a specific unit's Family Readiness Group.

Those little pieces of information can be put together to give the enemy a larger picture.

"Even small pieces of information can do harm when they pair it with other information," Heinbaugh said.

For instance, when a group of 173rd Airborne Brigade Combat Team was redeploying back to Bamberg this fall, one careless post from a spouse on Facebook naming the time of the return, caused the entire flight to be delayed due to operational security concerns, said Heinbaugh.

"Our adversaries are trolling social networks, blogs and forums, trying to find sensitive information they can use about our military goals and objectives," wrote former Sgt. Maj. of the Army Kenneth O. Preston in the social media handbook. "Therefore, it is imperative that all Soldiers and family members understand the importance of practicing good operations security measures."

According to "Killing with Keyboards," an operational security training slideshow, anyone can be a target.

However, some community members may think that enemies wouldn't read their profile or comments because they aren't anyone special or important.

"That may be true for now, but you never know when one online posting will bring you to their attention," the training states.

Others might say that they don't have any enemies.

The information can be used by not just terrorists but by former girlfriends, boyfriends of divorced spouses, the report states. Angry neighbors, disgruntled co-workers and even identity thieves could use the information you posted.

How to avoid revealing too much

If information on social media sites is being used by the enemy, is the answer to stay off the internet highway' Realistically, the answer is no. Social media sites are here to stay and are becoming an even more important tool in communication in modern technology. However, you can take some precautions to help keep both you and your loved ones safe.

"The adversary -- Al Qaeda and domestic terrorists and criminals for instance - have made it clear they are looking. When using social media, avoid mentioning rank, unit locations, deployment dates, names, or equipment specifications and capabilities," the social media handbook said.

Don't talk about unit morale, said Heinbaugh, who said that things such as bad equipment or not enough equipment, bad leadership and other complaints can be used by the enemy.

And, in fact, it's not just social media sites. Commenting on newspaper articles, blogs or other public forums can also give away more information than you intend.

For example, Heinbaugh said that a recent article about a local commander in the "Stars and Stripes" caused many people within the unit to comment on the newspaper's website. These comments exposed a low morale and even possibly leadership problems within the unit. All this information can be used by the enemy.

"If they know you are upset, they could target you," she said. "If a person is upset, they may vent or get emotional and could reveal more things than they should."

Take a close look at all privacy settings, especially on Facebook. Heinbaugh recommends checking out your setting at least once a month. Often, the website administrators will change or add security features without letting the customers know. She also recommends changing your privacy settings to be "friends only."

Talk to members of your extended family and friends about what they can post. How well do you know your "friends" on Facebook' If you have several hundred "friends" chances are you don't know all of them that well. In addition, it's easy to fake an account, Heinbaugh said.

"What you post to friends is not the same thing you would post to someone who is just an acquaintance," Heinbaugh said.

Do not reveal sensitive information about yourself such as schedules and event locations, the social media handbook states. Ask, "What could the wrong person do with this information'" and "Could it compromise my safety or that of my family or my unit'"

Look at photos, as well as what you post. Geotagging is a feature that reveals your location to other people within your network, the social media handbook states. Consider turning off the GPS function of your smart phone. In the same way, videos can be damaging as well. Make sure the videos don't give away sensitive information.

If damaging information has already been posted, that's not an excuse to post sensitive information. Some spouses, Heinbaugh said, have the attitude that since Soldiers post things that it's fine for spouses to post information.

"That's not an excuse to keep doing it," she said. "Two wrongs don't make a right. You can't control anyone but yourself."

If you see information posted you think is inappropriate, contact the site administrator, she said. The administrator can delete the comment and send the person a personal message explaining the reason for the deletion. If you reply in the comment section that the information is a violation of operation security that just waves a red flag to others about the information. The more you are aware, the better protected you are, Heinbaugh said.

"These are not personal forums," Heinbaugh said. "They are public forums. In a technology world, not much is private anymore."

http://www.army.mil/article/55381/

Mapping your life: Embedded data in photos could tip off criminals February 3, 2011

By Mrs. Mindy Campbell (USAREUR)
US Army

BAMBERG, Germany -- When a Schweinfurt field artillery officer deployed to Iraq a year ago, he uploaded some photos and videos to several different social media sites.

In one instance, the videos and photos showed the officer preparing for a mission where his unit was transporting thousands of Iraqi dinar, which is the country's currency.

For many people, posting a photo of one's daily activities may seem like a pretty common thing to do in the world of Facebook, Flickr and with the use of smart phones.

However, not everyone sees it that way, said Tonya Heinbaugh, U.S. Army Garrison Bamberg security officer.

GEOTAGGING

Geotagging is the process of adding geographical identification to photographs, video, websites and instant messages, said Staff Sgt. Dale Sweetnam, noncommissioned officer in charge of the U.S. Army's Online and Social Media Division, in a recent interview.

"It is the equivalent of adding a 10-digit grid coordinate to everything you post on the Internet," said Sweetnam, who wrote the report "Geotags and Location-based Social Networking."

Little did the Schweinfurt officer know that posting the photos could have given the exact grid coordinates of his mission, easily identifying to terrorists where his Soldiers and a large amount of money were located, Heinbaugh said.

"If we know this information, then our enemies know this information," she said.

The information such as the exact latitude and longitude of where the photo was taken are embedded in different types of media as part of the meta-data that accompanies each file. This information can't be seen by the casual observer.

However, this information can be seen with browser plug-ins or software programs to anyone who searches for it, Sweetnam said in his report.

Most digital cameras don't automatically geotag photos, but smart phones, cell phones that have a Global Positioning System, will automatically geotag photos or videos. The only way to not broadcast this information is to manually change the settings.

In addition to geotagging, photos and videos can also be tagged with a location manually in several social media sites such as Facebook, Twitter and Flickr. This can pinpoint a photo's exact location even if it wasn't taken with a smart phone. A recent quick search of "Afghanistan" on Flickr turned up thousands of photos taken by Soldiers.

"Geotagging has been around for a while, so have smart phones and location-based social networking platforms. So the threat has always been there," Sweetnam said. "The Army's Online and Social Media Division started becoming more proactive with its education campaign once the use of smart phones became so prolific."

This information could potentially be damaging to a mission if it got into the wrong hands, said Heinbaugh.

"You think you are anonymous when you post," she said. "When you geotag, you are letting everyone know exactly where you are."

Soldiers who tag their uploaded photos with a location are giving away vital information and they are putting their comrades at risk, Sweetnam said.

"They wouldn't post a sign with sensitive information on their front lawn, so they need to look at the Internet in the same way," he explained.

In addition, there are serious implications for not just Soldiers, but family members as well, Heinbaugh said.

If you snap a photo of an expensive item in your home with your smart phone in hopes of selling that item on a site such as Ebay or Craigslist, you are broadcasting the exact location of your home and that item to within one meter for any criminal to see.

CHECKING IN

Another potentially harmful thing to do is to "check in" on location-based social networking applications. This is where an application allows you to "check in" at various businesses and locations, allowing friends and followers to chart where you are throughout the day.

Facebook's "Places," SCVNGR, Gowalla or Foursquare are some common social media sites to do this. Foursquare alone has more than four million users, the Army report states.

This could potentially be dangerous because it establishes patterns and could identify where someone lives or works, Sweetnam said.

"Social networking applications can allow strangers to track your movements every day," he said. "If you watch someone long enough, they will know exactly when and where to find that person on any given day."

IMPLICATIONS OF GEOTAGGING

There are national security, operational security and even personal safety concerns with geotagging, Heinbaugh said.

If Soldiers are posting photos of their location or their environment, even if it looks innocent, enemies can find the exact location of those pictures and piece that information together with information they already have, she said.

"If that gets out, you could compromise your mission. Lives could be lost," Hainbaugh said.

"Something as simple as loading a photo of a bunk in Afghanistan, then geotagging it, can bring a mortar into your area of operation," the Army report stated.

The Federal Bureau of Investigation's Internet Crime Complaint Center, or IC3, has seen a spike in social media complaints during the last 10 years, said Bill Hinerman, IC3 unit chief.

When a person posts information such as a physical location that information can be hacked and lead to identity thefts or financial gains by a criminal, he said.

"When a user puts this type of information on a social media site, especially if the user is not careful with his or her security habits, it can have the same effect as posting it on an unsecured page of a public website, or in public media such as a telephone directory," Hinerman said. "It other words, they could be publicizing it without anticipating the negative consequences."

PROTECTING YOURSELF

So what can you do to protect yourself'

The first step in protecting yourself begins with educating yourself about geotagging, Heinbaugh said. Know which social networking websites use geotag features and those that let you opt out of posting that information.

"Knowledge is power," she said. "Knowing risk, you might think twice about posting something."

Once you understand what you're posting, you need to learn how to stop that information from being embedded in the media file, Sweetnam said.

Soldiers, especially those conducting classified missions, should not use location-based social networking services, he said.

"These services will bring the enemy right to the Army's doorstep," Sweetnam said.

One of the simplest ways to avoid displaying too much information is to disable the geotagging function on smart phones.

Disabling the geotag function can be a complicated process at times, said Heinbaugh.

"You have to physically disable the function," she said. "It's easy to geotag, but not so easy to remove the geotag feature."

If you can't figure out how to disable the function, contact your smart phone provider, she said. The website www.icanstalku.com also has instructions for removing the geotag function on several different smart phones models.

For more on the potential dangers of geotagging and location-based social networking, as well as information on a variety of force protection, information assurance and operational security topics, visit the U.S. Army Europe "vigilance" web page at www.hqusareur.army.mil/vigilance.

More information is available about social media at http://www.slideshare.net/usarmysocialmedia. For more case studies and step-by-step ways to disable geotagging functions from many popular devices, go to www.icanstalku.com.

http://www.army.mil/article/51268/

[INFOCON] Six Hackers in the United States and Abroad Charged for Crimes Affecting Over One Million Victims

2012-03-06T21:25:26Z

Six Hackers in the United States and Abroad Charged for Crimes Affecting Over One Million Victims

Four Principal Members of ï¿½Anonymousï¿½ and ï¿½LulzSecï¿½ Charged with Computer Hacking and Fifth Member Pleads Guilty; ï¿½AntiSecï¿½ Member also Charged with Stealing Confidential Information from Approximately 860,000 Clients and Subscribers of Stratfor

U.S. Attorneyï¿½s Office March 06, 2012
Southern District of New York

Five computer hackers in the United States and abroad were charged today, and a sixth pled guilty, for computer hacking and other crimes. The six hackers identified themselves as aligned with the group Anonymous, which is a loose confederation of computer hackers and others, and/or offshoot groups related to Anonymous, including ï¿½Internet Feds,ï¿½ ï¿½LulzSec,ï¿½ and ï¿½AntiSec.ï¿½

RYAN ACKROYD, a/k/a ï¿½kayla,ï¿½ a/k/a ï¿½lol,ï¿½ a/k/a ï¿½lolspoonï¿½; JAKE DAVIS, a/k/a ï¿½topiary,ï¿½ a/k/a ï¿½atopiaryï¿½; DARREN MARTYN, a/k/a ï¿½pwnsauce,ï¿½ a/k/a ï¿½raepsauce,ï¿½ a/k/a ï¿½networkkittenï¿½; and DONNCHA Oï¿½CEARRBHAIL, a/k/a ï¿½palladium,ï¿½ who identified themselves as members of Anonymous, Internet Feds, and/or LulzSec, were charged in an indictment unsealed today in Manhattan federal court with computer hacking conspiracy involving the hacks of Fox Broadcasting Company, Sony Pictures Entertainment, and the Public Broadcasting Service (ï¿½PBSï¿½). Oï¿½CEARRBHAIL is also charged in a separate criminal complaint with intentionally disclosing an unlawfully intercepted wire communication.

HECTOR XAVIER MONSEGUR, a/k/a ï¿½Sabu,ï¿½ a/k/a ï¿½Xavier DeLeon,ï¿½ a/k/a ï¿½Leon,ï¿½ who also identified himself as a member of Anonymous, Internet Feds, and LulzSec, pled guilty on August 15, 2011 in U.S. District Court to a 12-count information charging him with computer hacking conspiracies and other crimes. MONSEGURï¿½S information and guilty plea were unsealed today. The crimes to which MONSEGUR pled guilty include computer hacking conspiracy charges initially filed in the Southern District of New York. He also pled guilty to the following charges: a substantive hacking charge initially filed by the U.S. Attorneyï¿½s Office in the Eastern District of California related to the hacks of HBGary, Inc. and HBGary Federal LLC; a substantive hacking charge initially filed by the U.S. Attorneyï¿½s Office in the Central District of California related to the hack of Sony Pictures Entertainment and Fox Broadcasting Company; a substantive hacking charge initially filed by the U.S. Attorneyï¿½s Office in the Northern District of Georgia related to the hack of Infragard Members Alliance; and a substantive hacking charge initially filed by the U.S. Attorneyï¿½s Office in the Eastern District of Virginia related to the hack of PBS, all of which were transferred to the Southern District of New York, pursuant to Rule 20 of the Federal Rules of Criminal Procedure, in coordination with the Computer Crime and Intellectual Property Section (ï¿½CCIPSï¿½) in the Justice Departmentï¿½s Criminal Division.

Late yesterday, JEREMY HAMMOND, a/k/a ï¿½Anarchaos,ï¿½ a/k/a ï¿½sup_g,ï¿½ a/k/a ï¿½burn,ï¿½ a/k/a ï¿½yohoho,ï¿½ a/k/a ï¿½POW,ï¿½ a/k/a ï¿½tylerknowsthis,ï¿½ a/k/a ï¿½crediblethreat,ï¿½ who identified himself as a member of AntiSec, was arrested in Chicago, Illinois and charged in a criminal complaint with crimes relating to the December 2011 hack of Strategic Forecasting, Inc. (ï¿½Stratforï¿½), a global intelligence firm in Austin, Texas, which may have affected approximately 860,000 victims. In publicizing the Stratfor hack, members of AntiSec reaffirmed their connection to Anonymous and other related groups, including LulzSec. For example, AntiSec members published a document with links to the stolen Stratfor data titled, ï¿½Anonymous Lulzxmas rooting you proudï¿½ on a file sharing website.

The following allegations are based on the indictment, the information, the complaints, and statements made at MONSEGURï¿½s guilty plea:

Hacks by Anonymous, Internet Feds, and LulzSec

Since at least 2008, Anonymous has been a loose confederation of computer hackers and others. MONSEGUR and other members of Anonymous took responsibility for a number of cyber attacks between December 2010 and June 2011, including denial of service (ï¿½DoSï¿½) attacks against the websites of Visa, MasterCard, and PayPal, as retaliation for the refusal of these companies to process donations to Wikileaks, as well as hacks or DoS attacks on foreign government computer systems.

Between December 2010 and May 2011, members of Internet Feds similarly waged a deliberate campaign of online destruction, intimidation, and criminality. Members of Internet Feds engaged in a series of cyber attacks that included breaking into computer systems, stealing confidential information, publicly disclosing stolen confidential information, hijacking victimsï¿½ e-mail and Twitter accounts, and defacing victimsï¿½ Internet websites. Specifically, ACKROYD, DAVIS, MARTYN, Oï¿½CEARRBHAIL, and MONSEGUR, as members of InternetFeds, conspired to commit computer hacks including: the hack of the website of Fine Gael, a political party in Ireland; the hack of computer systems used by security firms HBGary, Inc. and its affiliate HBGary Federal, LLC, from which Internet Feds stole confidential data pertaining to 80,000 user accounts; and the hack of computer systems used by Fox Broadcasting Company, from which Internet Feds stole confidential data relating to more than 70,000 potential contestants on ï¿½X-Factor,ï¿½ a Fox television show.

In May 2011, following the publicity that they had generated as a result of their hacks, including those of Fine Gael and HBGary, ACKROYD, DAVIS, MARTYN, and MONSEGUR formed and became the principal members of a new hacking group called ï¿½Lulz Securityï¿½ or ï¿½LulzSec.ï¿½ Like Internet Feds, LulzSec undertook a campaign of malicious cyber assaults on the websites and computer systems of various business and governmental entities in the United States and throughout the world. Specifically, ACKROYD, DAVIS, MARTYN, and MONSEGUR, as members of LulzSec, conspired to commit computer hacks including the hacks of computer systems used by the PBS, in retaliation for what LulzSec perceived to be unfavorable news coverage in an episode of the news program ï¿½Frontlineï¿½; Sony Pictures Entertainment, in which LulzSec stole confidential data concerning approximately 100,000 users of Sonyï¿½s website; and Bethesda Softworks, a video game company based in Maryland, in which LulzSec stole confidential information for approximately 200,000 users of Bethesdaï¿½s website.

The Stratfor Hack

In December 2011, HAMMOND conspired to hack into computer systems used by Stratfor, a private firm that provides governments and others with independent geopolitical analysis. HAMMOND and his co-conspirators, as members of AntiSec, stole confidential information from those computer systems, including Stratfor employeesï¿½ e-mails as well as account information for approximately 860,000 Stratfor subscribers or clients. HAMMOND and his co-conspirators stole credit card information for approximately 60,000 credit card users and used some of the stolen data to make unauthorized charges exceeding $700,000. HAMMOND and his co-conspirators also publicly disclosed some of the confidential information they had stolen.

The Hack of International Law Enforcement

In January 2012, Oï¿½CEARRBHAIL hacked into the personal e-mail account of an officer with Irelandï¿½s national police service, the An Garda Siochana (the ï¿½Gardaï¿½). Because the Garda officer had forwarded work e-mails to a personal account, Oï¿½CEARRBHAIL learned information about how to access a conference call that the Garda, the FBI, and other law enforcement agencies were planning to hold on January 17, 2012 regarding international investigations of Anonymous and other hacking groups. Oï¿½CEARRBHAIL then accessed and secretly recorded the January 17 international law enforcement conference call, and then disseminated the illegally-obtained recording to others.

***

MONSEGUR, 28, of New York, New York, pled guilty to three counts of computer hacking conspiracy, five counts of computer hacking, one count of computer hacking in furtherance of fraud, one count of conspiracy to commit access device fraud, one count of conspiracy to commit bank fraud, and one count of aggravated identity theft. He faces a maximum sentence of 124 years and six months in prison.

ACKROYD, 23, of Doncaster, United Kingdom; DAVIS, 29, of Lerwick, Shetland Islands, United Kingdom; and MARTYN, 25, of Galway, Ireland, each are charged with two counts of computer hacking conspiracy. Each conspiracy count carries a maximum sentence of 10 years in prison.

Oï¿½CEARRBHAIL, 19, of Birr, Ireland, is charged in the indictment with one count of computer hacking conspiracy, for which he faces 10 years in prison. He is also charged in the complaint with one count of intentionally disclosing an unlawfully intercepted wire communication, for which he faces a maximum sentence of five years in prison.

HAMMOND, 27, of Chicago, Illinois, is charged with one count of computer hacking conspiracy, one count of computer hacking, and one count of conspiracy to commit access device fraud. Each count carries a maximum sentence of 10 years in prison.

DAVIS is separately facing criminal charges in the United Kingdom, which remain pending, and ACKROYD is being interviewed today by the Police Central e-crime Unit in the United Kingdom. Oï¿½CEARRBHAIL was arrested today by the Garda.

The case is being prosecuted by the U.S. Attorneyï¿½s Office for the Southern District of New York. The investigation was initiated and led by the FBI, and its New York Cyber Crime Task Force, which is a federal, state, and local law enforcement task force combating cybercrime, with assistance from the PCeU; a unit of New Scotland Yardï¿½s Specialist Crime Directorate, SCD6; the Garda; the Criminal Divisionï¿½s CCIPS; and the U.S. Attorneysï¿½ Offices for the Eastern District of California, the Central District of California, the Northern District of Georgia, and the Eastern District of Virginia; as well as the Criminal Divisionï¿½s Office of International Affairs.

The charges contained in the indictment and complaints are merely accusations, and the defendants are presumed innocent unless and until proven guilty.

Criminal Complaint: http://dc406.com/Monsegur-Hector-Xavier-Information.pdf

[INFOCON] The NTI Nuclear Materials Security Index - baseline assessment of the status of nuclear materials security conditions in 176 countries

2012-03-03T12:15:19Z

The NTI Nuclear Materials Security Index

Security Index

The Nuclear Threat Initiative (NTI) Nuclear Materials Security Index is a first-of-its-kind public benchmarking project of nuclear materials security conditions on a country-bycountry basis. The NTI Index, prepared with the Economist Intelligence Unit (EIU), was created to spark an international discussion about priorities required to strengthen security and, most important, to encourage governments to provide assurances and to take actions to reduce risks.

The project draws on NTIï¿½s nuclear expertise, the EIUï¿½s experience in constructing indices, and the reach of the EIUï¿½s global network of 900 analysts and contributors. NTIï¿½ working with an international panel of nuclear security experts and a number of technical advisorsï¿½focused on the framework and priorities that define effective nuclear materials security conditions. The EIU was responsible for developing the Excel-based model and gathering the data.

The NTI Index assesses the contribution of 32 states with one kilogram or more of weapons-usable nuclear materials toward improved global nuclear materials security conditions, using five categories: (a) Quantities and Sites, (b) Security and Control Measures, (c) Global Norms, (d) Domestic Commitments and Capacity, and (e) Societal Factors. An additional 144 states, with less than one kilogram of weapons-usable nuclear materials or none at all, are assessed on the last three of these categories. The Index includes three elements:

The print report, with NTI findings and recommendations, a complete discussion of the EIU methodology, and selected data
The website, www.ntiindex.org, with high-level results in an easily accessible format, including all country summaries and interactive tools that allow visitors to determine their own priorities and weighting of categories and indicators
A downloadable version of the NTI Index, available through the website, with complete results and data and extended interactive features in an Excel format

This project is co-led by Page Stoutland, NTI Vice President, Nuclear Materials Security Program, and Deepti Choubey, NTI Senior Director for Nuclear and Bio-Security.

Web site:
http://www.ntiindex.org/

Report: http://www.ntiindex.org/static/pdfs/nti_index_final.pdf

Global Priorities for Security Needed
All Governments Can Do More

WASHINGTON, D.C. ï¿½ The Nuclear Threat Initiative (NTI) today released a first-of-its-kind, public baseline assessment of the status of nuclear materials security conditions in 176 countries. The NTI Nuclear Materials Security Index underscores that there is no global consensus about what steps matter most to secure some of the worldï¿½s most dangerous materials against theft and recommends actions to hold countries accountable, increase transparency and benchmark progress. Watch a replay of the NTI Index launch press conference.

Released ahead of the March 2012 Nuclear Security Summit in Seoul, the NTI Index examines nuclear materials security conditions in 32 countries with one kilogram or more of weapons-usable nuclear materials, as well as in 144 additional states that have less than one kilogram of this material, or none, but could be used as safe havens, staging grounds or transit points for illicit nuclear activities.

ï¿½There is evidence today that the elements of a perfect storm are in place: an ample supply of weapons-usable nuclear materialsï¿½some of it poorly securedï¿½and the determination of terrorist organizations that have publicly stated their desire to acquire and use nuclear weapons,ï¿½ said NTI Co-Chairman and former U.S. Senator Sam Nunn. ï¿½We know that to get the materials they need, terrorists will go where the material is most vulnerable. Global nuclear security is only as strong as the weakest link in the chain.ï¿½

The report, NTI Nuclear Materials Security Index: Building a Framework for Assurance, Accountability and Action, was developed with the Economist Intelligence Unit (EIU), and assesses countries with weapons-usable nuclear materials across five categories: Quantities and Sites, Security and Control Measures, Global Norms, Domestic Commitments and Capacity, and Societal Factors. The 144 states without weapons-usable materials are assessed across a subset of these categories.

Country Rankings

Australia ranks number one out of the 32 states with weapons-usable nuclear materials, with Hungary, the Czech Republic, Switzerland, and Austria rounding out the top five. The United Kingdom ranks highest among nuclear-armed states at 10; the United States ranks 13th. Among countries without weapons-usable nuclear materials, Denmark earns the top spot. Full rankings are available on the website, www.ntiindex.org.

International Engagement

NTI and EIU drew on the expertise of technical advisors and an international panel of nuclear security experts from a dozen countries. The panel members assisted in developing the framework and determining the factors most important to a robust nuclear materials security program.

Over the course of the past year, NTI also offered briefings on the development of the Index to all 32 countries with weapons-usable nuclear materials, as well as South Korea, host of the 2012 Nuclear Security Summit. More than half of those countries reviewed and validated the data, which was drawn primarily from public and open-source information gathered by the EIU.

ï¿½The Index highlights how countries can take steps to improve the security of nuclear materials,ï¿½ said NTI President Joan Rohlfing. ï¿½By offering recommendations for all states, it can be a valuable tool in helping set priorities. All states can and should do more.ï¿½

Recommendations

NTI recommends actions for the global community to take, in parallel with steps to improve state stewardship.

Build the Foundation for a Global Nuclear Materials Security System

Establish an international dialogue on priorities for materials security through the Nuclear Security Summit or a subsequent process

Benchmark progress and hold states accountable for security

Build appropriate transparency to increase international confidence by: publishing and providing access to nuclear materials security regulations; declaring nuclear materials inventories; and inviting regular peer reviews

Stop increasing stocks of weapons-usable materials

Improve State Stewardship of Nuclear Materials

Eliminate weapons-usable nuclear materials completely in as many states as possible

Strengthen security and control measures, including physical protection, control and accounting, and personnel measures at facilities and during transport of nuclear materials

Bring all civil uranium enrichment and reprocessing facilities under IAEA safeguards

Better target assistance to states with urgent needs

Ratify and implement existing materials security-related treaties.

ï¿½The NTI Index underscores that all countries with weapons-usable nuclear materials have a responsibility to account for them, to take steps to secure them, and to provide continued assurances to the rest of the world that those materials are not at risk for theft or diversion,ï¿½ said Deepti Choubey, NTI senior director for nuclear and bio-security and co-leader of the Index.

2012 Nuclear Security Summit

The March summit provides an opportunity for much-needed international dialogue on priorities for materials security. ï¿½Countries participating in the Nuclear Security Summit in Seoul can use the Index to stimulate discussion and define future commitments,ï¿½ said Page Stoutland, NTI vice president, nuclear materials security program and Index co-leader.

ï¿½This is not about congratulating some countries and chastising others. We are highlighting the universal responsibility of states to secure the worldï¿½s most dangerous materials,ï¿½ said Nunn. ï¿½As citizens and as leaders, we need to ask ourselves this question: If we had a catastrophic nuclear terrorist attack on Moscow or New York, on Tokyo or Tel Aviv, or on any other city in the world, what steps would we wish we had taken to prevent it?ï¿½

The Index website (www.ntiindex.org) includes the NTI report with the full results, findings and recommendations in an easily accessible format, including all country summaries as well as interactive tools for visitors to select their own priorities and weighting of categories and indicators.

The project was funded by NTI with support from the Peter G. Peterson Foundation, the John D. and Catherine T. MacArthur Foundation and the Carnegie Corporation of New York.

About the Nuclear Threat Initiative

The Nuclear Threat Initiative is a nonprofit, nonpartisan organization working to reduce the global threats from nuclear, biological and chemical weapons. NTI is co-chaired by Sam Nunn and Ted Turner and governed by a board of directors with members from nine countries.

[INFOCON] Loving the Cyber Bomb? The Dangers of Threat Inflation in Cybersecurity Policy

2012-02-10T23:00:54Z

Loving the Cyber Bomb? The Dangers of Threat Inflation in Cybersecurity Policy

Jerry Brito and Tate Watkins
Harvard Law School
National Security Journal Volume 3

Abstract

There has been no shortage of attention devoted to cybersecurity, with a wide range of experts warning of potential doomsday scenarios should the government not act to better secure the Internet. But this is not the first time we have been warned of impending dangers; indeed, there are many parallels between present portrayals of cyberthreats and the portrayal of Iraq prior to 2003, or the perceived bomber gap in the late 1950s.This Article asks for a better justification for the increased resources devoted to cyber threats. It examines the claims made by those calling for increased attention to cybersecurity, and notes the interests of a military-industrial complex in playing up fears of a ï¿½cyber Katrina.ï¿½ Cybersecurity is undoubtedly an important policy issue. But with a dearth of information regarding the true nature of the threat, it is quite difficult to determine whether certain government policies are warrantedï¿½or if this merely represents the latest iteration of threat inflation benefitting private and parochial political interests.

...

Conclusion

Cybersecurity is an important policy issue, but the alarmist rhetoric coming out of Washington that focuses on worst-case scenarios is unhelpful and dangerous. Aspects of current cyber policy discourse parallel the run-up to the Iraq War and pose the same dangers. Pre-war threat inflation and conflation of threats led us into war on shaky evidence. By focusing on doomsday scenarios and conflating cyber threats, government officials threaten to legislate, regulate, or spend in the name of cybersecurity based largely on fear, misplaced rhetoric, conflated threats, and credulous reporting. The public should have access to classified evidence of cyber threats, and further examination of the risks posed by those threats, before sound policies can be proposed, let alone enacted.

Furthermore, we cannot ignore parallels between the militaryindustrial complex and the burgeoning cybersecurity industry. As President Eisenhower noted, we must have checks and balances on the close relationships between parties in government, defense, and industry. Relationships between these parties and their potential conflicts of interest must be considered when weighing cybersecurity policy recommendations and proposals.

Before enacting policy in response to cyber threats, policymakers should consider a few things. First, they should end the cyber rhetoric. The alarmist rhetoric currently dominating the policy discourse is unhelpful and potentially dangerous. Next, they should declassify evidence relating to cyber threats. Overclassification is a widely acknowledged problem, and declassification would allow the public to verify before trusting blindly. They must also disentangle the disparate cyber threats so that they can determine who is best suited to address which threats. In cases of cyber crime and cyber espionage, for instance, private network owners may be best suited and may have the best incentive to protect their own valuable data, information, and reputations. After disentangling threats, policymakers can then assess whether a market failure or systemic problem exists when it comes to addressing each threat. Finally, they can estimate the costs and benefits of regulation and its a lternatives and determine the most effective and efficient way to address disparate cyber threats.

No one wants a ï¿½cyber Katrinaï¿½ or a ï¿½digital Pearl Harbor.ï¿½ But honestly assessing cyber threats and appropriate responses does not mean that we have to learn to stop worrying and love the cyber bomb.

Full article:
http://harvardnsj.org/wp-content/uploads/2012/01/Vol.-3_Brito_Watkins.pdf

[INFOCON] Building Resilience Against Terrorism: Canada�s Counter-terrorism Strategy

2012-02-09T20:48:24Z

Harper Government confronts terrorist threats through new strategy

OTTAWA, February 9, 2012 ï¿½ Today, the Honourable Vic Toews, Canadaï¿½s Minister of Public Safety, released Building Resilience Against Terrorism: Canadaï¿½s Counter-terrorism Strategy. The announcement was made at a Colloquium on Identifying Effective Programming to Prevent Terrorism, a meeting of international counter-terrorism experts and practitioners.

ï¿½Our government is committed to keeping our streets and communities safe. Canadaï¿½s Counter-terrorism Strategy sets out a clear approach for addressing terrorism, with a focus on building community resilience. Iï¿½m pleased to launch it today at an event where experts from around the world are exploring the matter of effective terrorism prevention,ï¿½ said Minister Toews. ï¿½Our Government will take all reasonable measures to address real and persistent threats.ï¿½

The Counter-terrorism Strategy will help to prioritize the Governmentï¿½s counter-terrorism efforts and promote an open discussion with Canadians on the threats we face. It also highlights the importance of cooperation with Canadaï¿½s international partners, all levels of government, security intelligence and law enforcement agencies, industry stakeholders and civil society.

The Strategy frames Canadaï¿½s counter-terrorism activities under four pillars: Prevent, Detect, Deny and Respond. The Government protects Canadians by preventing individuals from engaging in terrorism, detecting the activities of individuals who may pose a terrorist threat, denying terrorists the means and opportunity to carry out their activities, and responding proportionately, rapidly and in an organized manner to terrorist activities to mitigate their effects.

Countering the complex problem of terrorism demands innovative approaches and a global effort. The Government of Canada launched the Kanishka Project (http://www.publicsafety.gc.ca/prg/ns/ai182/kpcp/knsh-eng.aspx), named after the Air India Flight 182 aircraft, to fund research to better understand, prevent and counter terrorism. These research projects will help produce more effective policies and tools for people on the front lines, including community leaders, police, lawyers, and judges.

ï¿½Preventing another act of terrorism is the most fitting memorial to the victims of the bombing of Air India Flight 182,ï¿½ said Minister Toews. ï¿½The Counter-terrorism Strategy and the Kanishka Project will help us to address the threat of terrorism in all its forms, and build stronger, more resilient communities.ï¿½

Follow Public Safety Canada (@Safety_Canada) on Twitter.

Building Resilience Against Terrorism: Canadaï¿½s Counter-terrorism Strategy

The first priority of the Government of Canada is to protect Canada and the safety and security of Canadians at home and abroad. Building Resilience Against Terrorism, Canada's first Counter-terrorism Strategy, assesses the nature and scale of the threat, and sets out basic principles and elements that underpin the Government's counter-terrorism activities. Together, these principles and elements serve as a means of prioritizing and evaluating the Government's efforts against terrorism.

The overarching goal of the Strategy is to counter domestic and international terrorism in order to protect Canada, Canadians and Canadian interests. The first priority of the Government of Canada is to protect Canada and the safety and security of Canadians at home and abroad. Building Resilience Against Terrorism, Canada's first Counter-terrorism Strategy, assesses the nature and scale of the threat, and sets out basic principles and elements that underpin the Government's counter-terrorism activities. Together, these principles and elements serve as a means of prioritizing and evaluating the Government's efforts against terrorism.

The overarching goal of the Strategy is to counter domestic and international terrorism in order to protect Canada, Canadians and Canadian interests.

Foreword

The events of September 11, 2001 changed the way the world viewed terrorism. Canada played a leading role in the international communityï¿½s efforts to assist Afghanistan to counter the terrorist threat, to promote global peace and security, and to ensure terrorism does not threaten Canadian interests. But even before that, Canada witnessed the devastating tragedy of the Air India bombing that killed 329 people, most of them Canadians. Canadaï¿½s capacity to counter terrorist threats on all fronts has increased significantly. The threat persists, however, and recent events in Norway remind us that threats can come from different directions, and that we cannot afford complacency in the face of a complex and evolving threat.

I am pleased to present this Strategy, Building Resilience Against Terrorism, which sets out Canadaï¿½s approach to tackling this global and domestic threat. The Strategy reflects the ongoing and multifaceted activities of government departments and agencies that are involved in counter-terrorism. For the first time it sets out, in a coherent and unified format, how these activities contribute to the Governmentï¿½s Strategy for countering terrorism.

The Strategy enshrines the Government of Canadaï¿½s existing approach to countering terrorism. In conjunction with commitments made in the December 2010 Government of Canada Response to the Commission of Inquiry into the Investigation of the Bombing of Air India Flight 182, it will help to organize and prioritize counter-terrorism initiatives and investments and ensure that Government activities address the risks we face.

Ensuring the safety and security of its citizens is a key priority for this Government. This objective cannot be met by the federal government alone. Partnership is key to ensuring this security. Only through working with our international allies, and through effective cooperation with all levels of government and civil society, can we achieve these goals. I firmly believe that it is therefore in our shared interest to understand the terrorist threatï¿½and to understand the Strategy for confronting it. Building Resilience Against Terrorism is an important contribution to this partnership between citizens and Government.

Table of Contents

Executive Summary
Introduction
The Terrorist Threat
Aim and Fundamental Principles
The Strategy: Prevent, Detect, Deny and Respond Prevent
Detect
Deny
Respond
Way Forward
Annex A: Roles and Responsibilities Relating to Counter-terrorism Annex B: Counter-terrorism Legal Framework Annex C: Implementation Approach
Annex D: List of Acronyms and Glossary

...

Building Resilience Against Terrorism: Canadaï¿½s Counter-terrorism Strategy http://www.publicsafety.gc.ca/prg/ns/2012-cts-eng.aspx

Building Resilience Against Terrorism: Canadaï¿½s Counter-terrorism Strategy (Adobe Acrobat version (PDF 602Kb)) http://www.publicsafety.gc.ca/prg/ns/_fl/2012-cts-eng.pdf

[INFOCON] Worldwide Threat Assessment of the US Intelligence Community for the Senate Select Committee on Intelligence

2012-01-31T19:13:41Z

Open Hearing: Current and Projected National Security Threats to the United States

Tuesday, January 31, 2012

Honorable James R. Clapper
Director of National Intelligence

Full
http://www.dni.gov/testimonies/20120131_testimony_ata.pdf

Terrorism

The next two to three years will be a critical transition phase for the terrorist threat facing the United States, particularly from al-Qa‟ida and like-minded groups, which we often refer to as the ï¿½global jihadist movement.ï¿½ During this transition, we expect leadership of the movement to become more decentralized, with ï¿½coreï¿½ al-Qa‟idaï¿½the Pakistan-based group formerly led by Usama bin Ladinï¿½diminishing in operational importance; regional al-Qa‟ida affiliates planning and attempting terrorist attacks; multiple voices providing inspiration for the movement; and more vigorous debate about local versus global agendas. We assess that with continued robust counterterrorism (CT) efforts and extensive cooperation with our allies and partners, there is a better-than-even chance that decentralization will lead to fragmentation of the movement within a few years. With fragmentation, core al-Qa‟ida will likely be of largely symbolic importance to the movement ; regional groups, and to a lesser extent small cells and individuals, will drive the global jihad agenda both within the United States and abroad.

...

Cyber Threats: An Evolving and Strategic Concern

Major Trends

Cyber threats pose a critical national and economic security concern due to the continued advances inï¿½and growing dependency onï¿½the information technology (IT) that underpins nearly all aspects of modern society. Data collection, processing, storage, and transmission capabilities are increasing exponentially; meanwhile, mobile, wireless, and cloud computing bring the full power of the globally-connected Internet to myriad personal devices and critical infrastructure. Owing to market incentives, innovation in functionality is outpacing innovation in security, and neither the public nor private sector has been successful at fully implementing existing best practices. The impact of this evolution is seen not only in the scope and nature of cyber security incidents, but also in the range of actors and targets. In the last year, we observed increased breadth and sophistication of computer network operations (CNO) by both state and nonstate actors. Our technical advancements in detection and attribution shed light on malicious activity, but cyber intruders continue to explore new means to circumvent defensive measures.

Among state actors, China and Russia are of particular concern. As indicated in the October 2011 biennial economic espionage report from the National Counterintelligence Executive, entities within these countries are responsible for extensive illicit intrusions into US computer networks and theft of US intellectual property.

Nonstate actors are also playing an increasing role in international and domestic politics through the use of social media technologies. We currently face a cyber environment where emerging technologies are developed and implemented faster than governments can keep pace, as illustrated by the failed efforts at censoring social media during the 2011 Arab Spring revolutions in Tunisia, Egypt, and Libya. Hacker groups, such as Anonymous and Lulz Security (LulzSec), have conducted distributed denial of service (DDoS) attacks and website defacements against government and corporate interests they oppose. The well publicized intrusions into NASDAQ and International Monetary Fund (IMF) networks underscore the vulnerability of key sectors of the US and global economy.

Hackers are also circumventing network security by targeting companies that produce security technologies, highlighting the challenges to securing online data in the face of adaptable intruders. The compromise of US and Dutch digital certificate issuers in 2011 represents a threat to one of the most fundamental technologies used to secure online communications and sensitive transactions, such as online banking. Hackers also accessed the corporate network of the computer security firm RSA in March 2011 and exfiltrated data on the algorithms used in its authentication system. Subsequently, a US defense contractor revealed that hackers used the information obtained from RSA to access its network.

Outlook

We assess that CNO is likely to increase in coming years. Two of our greatest strategic challenges regarding cyber threats are: (1) the difficulty of providing timely, actionable warning of cyber threats and incidents, such as identifying past or present security breaches, definitively attributing them, and accurately distinguishing between cyber espionage intrusions and potentially disruptive cyber attacks; and (2) the highly complex vulnerabilities associated with the IT supply chain for US networks. In both cases, US Government engagement with private sector owners and operators of critical infrastructures is essential for mitigating these threats.

...

Cyber-Enabled Espionage. FIS have launched numerous computer network operations targeting US Government agencies, businesses, and universities. We assess that many intrusions into US networks are not being detected. Although most activity detected to date has been targeted against unclassified networks connected to the Internet, foreign cyber actors have also begun targeting classified networks.

...

We judge that evolving business practices and information technology will provide even more opportunities for FIS, trusted insiders, hackers, and others to collect sensitive US economic data. Corporate supply chains and financial networks will increasingly rely on global links that can be exploited by foreign collectors, and the growing use of cloud data processing and storage may present new challenges to the security and integrity of sensitive information.

...

[INFOCON] Al-Qaeda's Centre of Gravity: A Discussion with NYPD Intel Chief

2012-01-30T17:30:16Z

[I attended the event last week and it was very interesting, especially the Q&A session. WEN]

Al-Qaeda's Centre of Gravity: A Discussion with NYPD Intel Chief

ICSR, King's College London
http://icsr.info/

On Thursday 26 January, the New York Police Departmentï¿½s Head of Intelligence Analysis, Mitch Silber, presented the findings of his latest book at an ICSR seminar. In The Al-Qaeda Factor: Plots Against the West, Silber analyses sixteen of the biggest jihadist plots against Western countries in order to determine the precise role, if any, played by the central al-Qaeda organisation.

His findings include the following:

Al-Qaeda Coreï¿½s actual role in plots against the West has been overstated, though their importance as an external inspiration endures
Much more of the ï¿½action of the conspiraciesï¿½ has taken place in the West, by Westerners, independent of Al-Qaeda.
Al-Qaeda has not actively recruited in the West; rather the plots are underpinned by a ï¿½bottom-upï¿½ process, driven by individuals in the West who radicalise and then take the initiative to go overseas for training or to get into the fight. #
Al-Qaeda has been opportunistic, taking advantage of the Westerners who have shown up on its doorstep to utilise them in plots against the West.
Post Bin-Laden, given the combination of Westerners who continue to radicalise/mobilise plus the rise of other important nodes in al Qaedaï¿½s worldwide network of allies and affiliates, the threat from al Qaeda type terrorism has not ended.

For a full audio of the presentation
http://dl.dropbox.com/u/13850824/silber%20-%20main.mp3

To download a copy Mr. Silberï¿½s Powerpoint presentation http://icsr.info/news/attachments/1327935997AQFactorslides.Jan.12.ppt

For more information on the book, please click here. http://www.amazon.co.uk/Al-Qaeda-Factor-Plots-Against/dp/0812244028/ref=sr_1_1?s=books&ie=UTF8&qid=1327935938&sr=1-1

Reference
http://icsr.info/news/al-qaedas-centre-of-gravity-a-discussion-with-nypd-intel-chief

[INFOCON] IWS Twitter

2012-01-30T16:50:12Z

The IWS twitter can be found at https://twitter.com/#!/wanjaericnaef

Recent Tweets:

Norway convicts two men over al-Qaeda plot on Danish newspaper - Telegraph 11 minutes ago

Facebook scammers leverage the Amazon Cloud: 1 hour ago

SEC Goes After Online Trading Firms That Unwittingly Helped Latvian Hacker | Threat Level 28 Jan

Middle East Cyber Hacking Timeline
26 Jan

A jury has been selected in the trial of nine terror suspects accused of plotting attacks on major London landmarks 26 Jan

Tension in Yemen: Al-Qaida Activity Puts Regime Change in Doubt - SPIEGEL ONLINE - News - International 26 Jan

Cairo Contagion: Military Tracks Uprising's 'Infectious' Ideas | Danger Room | Wired.com 25 Jan

O2 shares your mobile phone number with every website you visit 25 Jan

EC Commission proposes a comprehensive reform of the data protection rules #EU #dataprotection #privacy 25 Jan

Al Qaeda Affiliate Targets US Ships: Report - ABC News #alqaeda #terrorism 25 Jan

Brief Overview Of The Leaked EU Data Protection Regulation edri.org/edrigram/numbeï¿½ #EU #privacy Draft 25 Jan

President Mentions Cyber-Threats in State of the Union Address 25 Jan

USA v. Convicted Hacker Kim Schmitz Kim Dotcom - Indictment 4law.co.il/mega5112.pdf #MegaUpload #FBI 24 Jan

10K Reasons to Worry About Critical Infrastructure | Threat Level | Wired.com #CNI #CIP 24 Jan

New EU data laws to include 24hr breach notification #privacy #EU 24 Jan

UK ranks 21st in Europe for privacy protection #cyber #privacy #ICO 24 Jan

File sharing sites snapping shut like scared clams in MegaUpload backwash 24 Jan

Flaws in Videoconferencing Systems Make Boardrooms Vulnerable 24 Jan

Hackers-for-Hire Are Easy to Find
23 Jan

Anonymous dupes users into joining Megaupload attack 23 Jan

One Million Ways to Die - How likely are you, statistically speaking, to die from a terrorist attack 23 Jan

https://twitter.com/#!/wanjaericnaef

[INFOCON] EU Commission proposes a comprehensive reform of the data protection rules

2012-01-25T14:00:25Z

EU Commission proposes a comprehensive reform of the data protection rules

Brussels, 25 January 2012 ï¿½ The European Commission has today proposed a comprehensive reform of the EU's 1995 data protection rules to strengthen online privacy rights and boost Europe's digital economy. Technological progress and globalisation have profoundly changed the way our data is collected, accessed and used. In addition, the 27 EU Member States have implemented the 1995 rules differently, resulting in divergences in enforcement. A single law will do away with the current fragmentation and costly administrative burdens, leading to savings for businesses of around ï¿½2.3 billion a year. The initiative will help reinforce consumer confidence in online services, providing a much needed boost to growth, jobs and innovation in Europe.

"17 years ago less than 1% of Europeans used the internet. Today, vast amounts of personal data are transferred and exchanged, across continents and around the globe in fractions of seconds," said EU Justice Commissioner Viviane Reding, the Commissionï¿½s Vice-President. "The protection of personal data is a fundamental right for all Europeans, but citizens do not always feel in full control of their personal data. My proposals will help build trust in online services because people will be better informed about their rights and in more control of their information. The reform will accomplish this while making life easier and less costly for businesses. A strong, clear and uniform legal framework at EU level will help to unleash the potential of the Digital Single Market and foster economic growth, innovation and job creation."

The Commission's proposals update and modernise the principles enshrined in the 1995 Data Protection Directive to guarantee privacy rights in the future. They include a policy Communication setting out the Commission's objectives and two legislative proposals: a Regulation setting out a general EU framework for data protection and a Directive on protecting personal data processed for the purposes of prevention, detection, investigation or prosecution of criminal offences and related judicial activities.

Key changes in the reform include:

A single set of rules on data protection, valid across the EU. Unnecessary administrative requirements, such as notification requirements for companies, will be removed. This will save businesses around ï¿½2.3 billion a year.
Instead of the current obligation of all companies to notify all data protection activities to data protection supervisors ï¿½ a requirement that has led to unnecessary paperwork and costs businesses ï¿½130 million per year, the Regulation provides for increased responsibility and accountability for those processing personal data.
For example, companies and organisations must notify the national supervisory authority of serious data breaches as soon as possible (if feasible within 24 hours).
Organisations will only have to deal with a single national data protection authority in the EU country where they have their main establishment. Likewise, people can refer to the data protection authority in their country, even when their data is processed by a company based outside the EU. Wherever consent is required for data to be processed, it is clarified that it has to be given explicitly, rather than assumed.
People will have easier access to their own data and be able to transfer personal data from one service provider to another more easily (right to data portability). This will improve competition among services.
A ï¿½right to be forgottenï¿½ will help people better manage data protection risks online: people will be able to delete their data if there are no legitimate grounds for retaining it.
EU rules must apply if personal data is handled abroad by companies that are active in the EU market and offer their services to EU citizens.
Independent national data protection authorities will be strengthened so they can better enforce the EU rules at home. They will be empowered to fine companies that violate EU data protection rules. This can lead to penalties of up to ï¿½1 million or up to 2% of the global annual turnover of a company.
A new Directive will apply general data protection principles and rules for police and judicial cooperation in criminal matters. The rules will apply to both domestic and cross-border transfers of data.

The Commission's proposals will now be passed on to the European Parliament and EU Member States (meeting in the Council of Ministers) for discussion. They will take effect two years after they have been adopted.

Background

Personal data is any information relating to an individual, whether it relates to his or her private, professional or public life. It can be anything from a name, a photo, an email address, bank details, your posts on social networking websites, your medical information, or your computer's IP address. The EU Charter of Fundamental Rights says that everyone has the right to personal data protection in all aspects of life: at home, at work, whilst shopping, when receiving medical treatment, at a police station or on the Internet.

In the digital age, the collection and storage of personal information are essential. Data is used by all businesses ï¿½ from insurance firms and banks to social media sites and search engines. In a globalised world, the transfer of data to third countries has become an important factor in daily life. There are no borders online and cloud computing means data may be sent from Berlin to be processed in Boston and stored in Bangalore.

On 4 November 2010, the Commission set out a strategy to strengthen EU data protection rules (IP/10/1462 and MEMO/10/542). The goals were to protect individuals' data in all policy areas, including law enforcement, while reducing red tape for business and guaranteeing the free circulation of data within the EU. The Commission invited reactions to its ideas and also carried out a separate public consultation to revise the EUï¿½s 1995 Data Protection Directive (95/46/EC).

EU data protection rules aim to protect the fundamental rights and freedoms of natural persons, and in particular the right to data protection, as well as the free flow of data. This general Data Protection Directive has been complemented by other legal instruments, such as the e-Privacy Directive for the communications sector. There are also specific rules for the protection of personal data in police and judicial cooperation in criminal matters (Framework Decision 2008/977/JHA).

The right to the protection of personal data is explicitly recognised by Article 8 of the EU's Charter of Fundamental Rights and by the Lisbon Treaty. The Treaty provides a legal basis for rules on data protection for all activities within the scope of EU law under Article 16 of the Treaty on the Functioning of the European Union.

http://ec.europa.eu/justice/newsroom/data-protection/news/120125_en.htm

[INFOCON] Dark Market: Cyber thieves, cyber cops and you (full recording including audience Q&A)

2011-11-30T18:18:31Z

Dark Market: Cyber thieves, cyber cops and you Royal Society for the Encouragement of Arts, Manufactures and Commerce 15th Sep 2011; 13:00

RSA Thursday

The benefits of living in a digital, globalised society are enormous, but so too are the dangers. The world has become a law enforcerï¿½s nightmare and a criminalï¿½s dream.

Governments and the private sector are losing billions of dollars each year, fighting an increasingly invisible, super-smart breed of criminal: the hacker. The investigation into so-called 'hacktivists' like LulzSec, Topiary and Anonymous has led to the Met quadrupling its cybercrime unit, but are these units really effective, and how can they keep pace with the ever-morphing nature of cybercrime?

We bank online, shop online, date, learn, work and live online. But have the institutions that keep us safe on the streets learned to protect us in the burgeoning digital world? Have we become complacent about our personal security ï¿½ sharing our thoughts, beliefs and the details of our daily lives with anyone who cares to relieve us of them?

Misha Glenny, historian, journalist, and author of the international bestseller McMafia, explores the three fundamental threats facing us in the 21st century: cyber crime, cyber warfare and cyber industrial espionage.

Chair: John Kampfner, chief executive, Index on Censorship and author of Freedom for Sale (Simon and Schuster, 2010)

http://www.thersa.org/events/audio-and-past-events/2011/dark-market-cyber-thieves,-cyber-cops-and-you

Listen to the audio (full recording including audience Q&A) http://www.thersa.org/events/audio-and-past-events/2011/?a=431424

[INFOCON] UK Cyber Security Strategy

2011-11-25T11:27:04Z

... Because prevention is key, we will work to raise awareness and to educate and empower people and firms to protect themselves online. 80% or more of currently successful attacks exploit weakness that can be avoided by following simple best practice, such as updating antimalware software regularly. ...

UK Cyber Security Strategy

...

Our vision is for the UK in 2015 to derive huge economic and social value from a vibrant, resilient and secure cyberspace, where our actions, guided by our core values of liberty, fairness, transparency and the rule of law, enhance prosperity, national security and a strong society.

To achieve this vision by 2015 we want:

Objective 1: The UK to tackle cyber crime and be one of the most secure places in the world to do business in cyberspace

Objective 2: The UK to be more resilient to cyber attacks and better able to protect our interests in cyberspace

Objective 3: The UK to have helped shape an open, stable and vibrant cyberspace which the UK public can use safely and that supports open societies

Objective 4: The UK to have the cross-cutting knowledge, skills and capability it needs to underpin all our cyber security objectives

...

4. Action: Meeting threats, taking opportunities

Priorities for action
4.5 We will build on the UKï¿½s existing strengths as follows:

ï¿½ We will continue to improve our detection and analysis of sophisticated cyber threats, with a focus on the UKï¿½s critical national infrastructure, and other systems of national interest.

ï¿½ As part of this we will pool knowledge and situational awareness as appropriate with partners across business to build a genuinely national response.

ï¿½ We will enhance our capability to defend against and deter high-end, state-sponsored threats, and to prevent these techniques becoming available to non-state actors.

ï¿½ We will work internationally to develop international principles or ï¿½rules of the roadï¿½ for behaviour in cyberspace. We will work with other countries on practical confidence-building measures to reduce the risk of escalation and avoid misunderstandings.

ï¿½ The UK has ratified the Budapest Convention on cyber crime and will work to persuade other countries to develop compatible laws, so that cyber crimes can be prosecuted across borders and cyber criminals are denied safeï¿½havens.

ï¿½ At home we will maintain an effective legal framework and enforcement capabilities to disrupt and prosecute cyber crime. We will make it easier to report cyber crime and ensure that the intelligence from reporting is fed back into effective action and advice to the public. Where appropriate we will use cyber-relevant sanctions to tackle cyber crimes like online bullying or internet scams.

ï¿½ We will model best practice on cyber security in the Governmentï¿½s own systems, setting strong standards for suppliers to government to ensure we raise the bar.

ï¿½ We will promote the development of a cadre of skilled cyber security professionals so that the UK continues to retain an edge in this area, together with the underlying research and development to keep producing innovative solutions

ï¿½ Because prevention is key, we will work to raise awareness and to educate and empower people and firms to protect themselves online. 80% or more of currently successful attacks exploit weakness that can be avoided by following simple best practice, such as updating antimalware software regularly.

ï¿½ We will create a thriving market in cyber security products and services that can win the UK business abroad and contribute to growth. It will also enable us to promote the UK as a good place to do business in cyberspace.

Building capacity to deter and defend against high-end threats

4.6 The 2010 NATO Lisbon Summit highlighted the cyber domain as an area of significant new risk and opportunity for the Alliance. The new Strategic Concept committed the Alliance to:ï¿½develop further our ability to prevent, detect, defend against and recover from cyber-attacks, including by using the NATO planning process to enhance and coordinate national cyberdefence capabilities, bringing all NATO bodies under centralized cyber protection, and better integrating NATO cyber awareness, warning and response with member nationsï¿½.

4.7 In keeping with the NATO Strategic Concept, and with the agreement of the National Security Council, the NCSP is investing to ensure we take a more proactive approach to tackling cyber threats and exploiting the cyber environment for our own national security needs.

4.8 In the Ministry of Defence, investment in ensuring military networks and equipment are protected against cyber attack is already underway. The new Joint Forces Command will take the lead in the development and integration of defence cyber capabilities from April 2012.

4.9 As part of this we are creating a new Defence Cyber Operations Group to bring together cyber capabilities from across defence. The group will include a Joint Cyber Unit hosted by GCHQ at Cheltenham whose role will be to develop new tactics, techniques and plans to deliver military effects, including enhanced security, through operations in cyberspace. We will also consider the future contribution of reservists in bringing in specialist cyber knowledge and skills.

4.10 The Ministry of Defence has recently opened a new Global Operations and Security Control Centre, located at Corsham, to act as a focus for cyber defence for the armed forces. A second Joint Cyber Unit embedded within the centre at Corsham will develop and use a range of new techniques, including proactive measures, to disrupt threats to our information security.

4.11 The Ministry of Defence is also strengthening relations with key allies and with industry to improve our collective awareness of and response to cyber threats, vulnerabilities and incidents.

4.12 Around half of the ï¿½650 million funding will go towards enhancing the UKï¿½s core capability, based mainly at GCHQ at Cheltenham, to detect and counter cyber attacks. The details of this work are necessarily classified, but it will strengthen and upgrade the sovereign capability the UK needs to confront the high-end threat.

...

WRITTEN MINISTERIAL STATEMENT
CABINET OFFICE
25 November 2011
Minister for the Cabinet Office and Paymaster General: The UK Cyber Security Strategy: Protecting and Promoting the UK in a Digital World

Francis Maude
I have today published the new Cyber Security Strategy for the United Kingdom. I have placed a copy in the Library.

The growth of the internet has transformed our everyday lives.

But with greater openness, interconnection and dependency comes greater vulnerability.

The threat to our national security from cyber attacks is real and growing. Organised criminals, terrorists, hostile states, and ï¿½hacktivistsï¿½ are all seeking to exploit cyber space to their own ends.

This Government has moved swiftly to tackle the growing danger posed by cyber attacks. Our National Security Strategy published last year classed cyber security as one of our top priorities alongside international terrorism, international military crises and natural disasters. To support the implementation of our objectives we have committed new funding of ï¿½650m over four years for a transformative National Cyber Security Programme (NCSP) to strengthen the UKï¿½s cyber capabilities.

The new Cyber Security Strategy we have published today sets out how the UK will tackle cyber threats to promote economic growth and to protect our nationï¿½s security and our way of life.

One of our key aims is to make the UK one of the most secure places in the world to do business. Currently, around 6 per cent of the UKï¿½s GDP is enabled by the internet and this is set to grow. But with this opportunity comes greater threats. Online crime including intellectual property theft costs the UK economy billions each year. So we must take steps to preserve this growth, by tackling cyber crime and bolstering our defences, to ensure that confidence in the internet as a way of communicating and transacting remains.

The Government cannot tackle this challenge alone. The private sector - which owns, maintains and creates most of the very spaces we are seeking to defend ï¿½ has a crucial role to play too. This strategy outlines how we will cement a real and meaningful partnership between the Government and private sector in the fight against cyber attacks, to help improve security, build our reputation as a safe place to do business online, and turn threats into opportunities by fostering a strong UK market in cyber security solutions.

Together with the private sector, we are pioneering a new national cyber security ï¿½hubï¿½ that will allow the Government and businesses to exchange information on threats and responses. This promises to transform the way we manage cyber attacks and greatly strengthen our security capacity. We will work with the business services sector to raise industry awareness. We will also work with industry to develop private-sector led standards for cyber security that help consumers navigate the market in security products and give firms who are good at security the means to make it a selling point.

The UK is a world leader in cyber security research, development and innovation. GCHQ is the lead in this area and the new strategy aims to capitalise on this through an innovative approach which will explore options with UK industry to harness this expertise and know-how for the benefit of the UK economy.

This strategy also outlines our plans for a new Cyber Crime Unit with the National Crime Agency, to be up and running by 2013. This unit will build on the ground-breaking work of the Metropolitan Policeï¿½s eCrime Unit by expanding the deployment of ï¿½cyber-specialsï¿½ giving police forces across the country the necessary skills and experience to handle cyber crimes. We will also ensure that the police use existing powers to ensure that cyber criminals are appropriately sanctioned as well as introducing a new single reporting system to report financially motivated cyber crime through the existing Action Fraud reporting centre.

To defend against significant threats we need to continue the work we are doing to protect and prepare our Critical National Infrastructure. We also need to update our military defence capabilities for a new cyber world; this strategy outlines the creation of a new Joint Cyber Unit hosted by GCHQ which will develop our military capabilities to give the UK a comparative advantage in cyberspace.We will also strengthen the role of the Centre for Protection of the National Infrastructure to increase its reach to organisations that have not previously been considered as part of the critical infrastructure thereby augmenting our ability to protect critical systems and intellectual property.

Prevention and education are also crucial. Get Safe Online is a very good example of how government, industry and law enforcement can work together to address this issue and improve the website by early 2012. In addition, we will work with ISPs to seek a new voluntary code of conduct to help people identify if their computers have been compromised and what they can do about it.

Cyber risks are transnational in nature. We will work with other countries to tackle them. Through the London Cyber Conference, hosted by the Foreign Secretary earlier this month, the UK is taking a lead in addressing international discussions on how we can establish a more focused international dialogue to develop principles to guide the behaviour of Governments and others in cyberspace. We will continue to foster this level of international dialogue through various fora and through international cooperation on tackling cyber crime.

This strategy sets out the change that is needed; we now need to work together to deliver it. The Government will update the House in a yearï¿½s time on how we are doing.

Cyber Security Strategy

The new Cyber Security Strategy was published on 25 November 2011.

It sets out how the UK will support economic prosperity, protect national security and safeguard the publicï¿½s way of life by building a more trusted and resilient digital environment.

Downloads

The UK Cyber Security Strategy
The UK Cyber Security Strategy - Written Ministerial Statement

http://www.cabinetoffice.gov.uk/resource-library/cyber-security-strategy

[INFOCON] Lone wolf terror suspect arrested in New York City - Press Release and Complaint

2011-11-21T21:34:41Z

FOR IMMEDIATE RELEASE
PR- 416-11
November 20, 2011

MAYOR BLOOMBERG, POLICE COMMISSIONER KELLY AND DISTRICT ATTORNEY VANCE UPDATE NEW YORKERS ON ARREST OF SUSPECT IN TERROR CASE

The following are Mayor Michael R. Bloombergï¿½s remarks as delivered at City Hall tonight

ï¿½Good evening. Iï¿½m joined by Police Commissioner Ray Kelly and Manhattan District Attorney Cyrus Vance.

ï¿½Yesterday afternoon, New York City police officers arrested a 27-year-old Al Qaeda sympathizer who was plotting to bomb police patrol cars and also postal facilities, as well as target members of our Armed Forces returning from abroad.

ï¿½Jose Pimentel of Washington Heights, which is in the northern end of Manhattan, faces terrorism-related charges that District Attorney Vance will discuss in a moment.

ï¿½Earlier today, I also described this case to U.S. Congressman Pete King, the chair of the House Committee on Homeland Security, who has long been a champion of Federal support for the NYPDï¿½s counter-terrorism efforts.

ï¿½The NYPD Intelligence Division did outstanding work in tracking this individual and containing the threat he posed to the city. The police also constructed a duplicate of an explosive device that the suspect built, and then detonated it in a way that he intended to use his weapon. We wanted to show you a video about the resulting damage.

ï¿½I should point out that our staff briefed the Governorï¿½s staff on this earlier this evening, and Iï¿½ve asked Commissioner Kelly to discuss this case in greater detail. But first, let me make these observations.

ï¿½The suspect was a so-called lone wolf, motivated by his own resentment of the presence of American troops in Iraq and Afghanistan, as well as inspired by Al Qaeda propaganda. He was not part of a larger conspiracy emanating from abroad. He represents exactly the kind of threat FBI Director Robert Mueller and his experts have warned about, as American military and intelligence agencies have eroded Al Qaeda's ability to launch large-scale attacks.

ï¿½This case is also reminiscent of another lone wolf plot in 2004 in which two New Yorkers angry over the treatment of prisoners in Iraq plotted to bomb the Herald Square subway station. Like the current case, the Herald Square plot was uncovered by the NYPD Intelligence Division.

ï¿½And as with still another case earlier this year in which a lone wolf plotted to attack a large synagogue, the NYPD teamed-up with the Manhattan District Attorney's office to prosecute Pimentel under State terrorism-related statutes.

ï¿½Whether launched by lone wolves, Al Qaeda, or Al Qaeda affiliates, there have been at least 13 previous terrorist plots since 9/11 targeting New York City. This would be the fourteenth.

ï¿½Because of such repeated threats, the NYPD remains focused on preventing another terrorist attack. We assign a thousand officers to counter-terrorism duties every single day. This is just another case where our precautions paid off.

ï¿½Now let me ask Commissioner Kelly to provide details.ï¿½

Complaint:
http://www.nyc.gov/html/om/pdf/2011/jose_pimentel_complaint.pdf