LACP.org

Home

Letters to Editor

Join email list

Join e-group

Help us

Who are we ?

.........
Emergency Management and Response
Information Sharing and Analysis Center
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Emergency Management and Response

Information Sharing and Analysis Center

INFOGRAM 46-11 ----- Nov 17, 2011

This INFOGRAM is distributed weekly to provide members of the Emergency Services Sector with information concerning the protection of their critical infrastructures.

Thanksgiving Holiday Security Awareness

(Source: Federal Bureau of Investigation)

The Emergency Management and Response—Information Sharing and Analysis Center (EMR-ISAC) confirmed that the Federal Bureau of Investigation and Department of Homeland Security have no specific or credible information indicating terrorist threats against retail establishments (e.g., department stores, supermarkets, and restaurants) when patronage increases on the days surrounding Thanksgiving Day and Black Friday.

While retailers and shoppers are cautioned to be observant for a variety of scams, fraud, and counterfeit currency, Emergency Services Sector personnel are encouraged to remain alert to and report potential indicators of pre-operational surveillance and planning at commercial entities. According to multiple law enforcement sources, these indicators—summarized by the EMR-ISAC—include but are not limited to the following:

Unusual or prolonged interest in or attempts to gain sensitive information about security measures.
Efforts to gain sensitive information about employees.
Odd behavior such as staring at or quickly looking away from arriving and departing employees.
Increase in anonymous telephone or email threats in conjunction with other suspected indicators.
Foot surveillance involving two or three individuals working together.
Discreet use of cameras, video recorders, or note taking.
Attempts to penetrate or test physical security and response procedures.

The U.S. Attorney's Office provides additional information to warn citizens, businesses, and responders to remain vigilant during Thanksgiving and Black Friday shopping.

SCADA Systems

(Source: FBI, Sandia National Laboratories)

Supervisory Control and Data Acquisition (SCADA) systems automatically and remotely collect data from sensors in devices used for industrial processes. They store information in databases for future management and processing. According to a November 2011 article in the FBI Law Enforcement Bulletin, SCADA systems are used in the national electric grid, oil and gas, water treatment, waste management, maritime, air, railroad, and automobile traffic control industries. Additionally, SCADA systems are embedded in the communications infrastructure, including 9-1-1 networks.

Recognizing the direct emergency communications relationship to SCADA systems, the Emergency Management and Response—Information Sharing and Analysis Center (EMR-ISAC) ascertained that virtually all SCADA systems are accessible via the Internet. This added to the fact that the systems have virtually no security, such as firewalls, routers, and antivirus software, make them and the industries that employ them vulnerable to cyber attack. A series of interviews with industry professionals from a PBS Frontline special titled “Cyberwar,” describes the vulnerabilities and mentions scenarios of concern to critical infrastructures and key resources, such as the emergency services.

The President's Critical Infrastructure Protection Board and the Department of Energy developed the manual “21 Steps to Improve Cyber Security of SCADA Networks” (PDF, 2.9 Mb). It addresses essential actions to be taken to improve the protection of SCADA networks. The steps contained within are not meant to be prescriptive or all-inclusive. However, they do address essential actions to be taken to improve the protection of SCADA networks. The steps are divided into two categories: specific actions to improve implementation, and actions to establish vital underlying management processes and policies.

Protecting Water Supplies

(Source: Security Management)

Although there is no specific information to substantiate an imminent terrorist threat, the Department of Homeland Security (DHS) recently advised local agencies to be aware of a terrorist tactic aimed at contaminating drinking water. DHS learned that violent extremists expressed interest in contaminating unspecified water supplies and specifically discussed backpressure as a means of contamination.

According to an article in Security Management, backpressure contamination comes from the reversal of the normal flow of water systems, with the water picking up contaminants as it flows backward. Using backpressure, “attackers could launch a relatively widespread attack using minimal tools and expertise.” DHS specialists suggest terrorists could use this methodology to intentionally distribute contaminants throughout the public water system, causing an instant public health emergency in addition to leaving a lasting economic and psychological impact.

The Emergency Management and Response—Information Sharing and Analysis Center (EMR-ISAC) verified that DHS cautioned police and firefighters to remain vigilant around water systems and utilities infrastructures and to be aware of indicators of a potential backpressure attack. These include vehicles other than fire trucks being hooked up to fire hydrants, signs of tampering with water pipes in commercial buildings, and discolored water, water odors, or decline in water quality.

Vehicle Fires: Assessment and Response Program

(Source: National Volunteer Fire Council)

The National Volunteer Fire Council recently announced that the Firefighters Support Foundation released its newest free training program titled, “ Vehicle Fires: Assessment and Response.” The program consists of a 45-minute video program and an accompanying 30-slide PowerPoint presentation.

The Emergency Management and Response—Information Sharing and Analysis Center (EMR-ISAC) corroborated that the program discusses the following subjects: scene size-up, apparatus placement, fire attack, approaching victims safely, large vehicles and containers, alternative fuel vehicles, etc. Personnel of the fire and emergency medical services can view the video material with the PowerPoint file acting as hard copy notes. The PowerPoint and video portions can be used by any agency or member either as they are, or as a basis from which to construct their own training modules or presentations.

The Federal Emergency Management Agency (FEMA) has two documents containing additional information about vehicle fires: Highway Vehicle Fires (PDF, 841 Kb) and also Vehicle Fires Statistical Reports.

Note: There will be no INFOGRAM published on Thanksgiving Day, November 24, 2011.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

DISCLAIMER of ENDORSEMENT

The U.S. Fire Administration/EMR-ISAC does not endorse the organizations sponsoring linked web sites, and does not endorse the views they express or the products/services they offer.

FAIR USE NOTICE

This INFOGRAM may contain copyrighted material that was not specifically authorized by the copyright owner. EMR-ISAC personnel believe this constitutes “fair use” of copyrighted material as provided for in section 107 of the U.S. Copyright Law. If you wish to use copyrighted material contained within this document for your own purposes that go beyond “fair use,” you must obtain permission from the copyright owner.

Reporting Notice

DHS and the FBI encourage recipients of this document to report information concerning suspicious or criminal activity to DHS and/or the FBI. The DHS National Operation Center (NOC) can be reached by telephone at 202-282-9685 or by e-mail at NOC.Fusion@dhs.gov

The FBI regional phone numbers can be found online at www.fbi.gov/contact/fo/fo.htm

For information affecting the private sector and critical infrastructure, contact the National Infrastructure Coordinating Center (NICC), a sub-element of the NOC. The NICC can be reached by telephone at 202-282-9201 or by e-mail at NICC@dhs.gov

When available, each report submitted should include the date, time, location, type of activity, number of people and type of equipment used for the activity, the name of the submitting company or organization, and a designated point of contact.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

For further information, contact the:
Emergency Management and Response- Information Sharing and Analysis Center
(EMR-ISAC) at (301) 447-1325 or by e-mail at emr-isac@dhs.gov

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~