NDPCI Membership
NDPCI News
- Feb 2, 2012
- Vulnerability Assessment Training
NDPCI Partners' Training Announcement
|
NOTICE We still have a few seats available for our IED - Package Inspection and Mailroom Procedures Course being presented in Orlando, Florida on March 20-21, 2012.
|
|
02/22/2012
US embassy in Afghanistan on lockdown as anti-American protests continue over Koran burning incident KABUL – The Afghan Interior Ministry says seven people have been killed in clashes between Afghan security forces and protesters demonstrating against the burning of Muslim holy books at a NATO military base. The ministry says in a statement the deaths occurred Wednesday in the Afghan capital of Kabul, in the eastern city of Jalalabad, and in the provinces of Logar and Parwan. Source: http://www.foxnews.com/world/2012/02/22/anti-american-protests-continue-in-afghan-cities-over-koran-burning-incident/#ixzz1n7KqPIeL |
|
02/21/2012
Slingshots, guns fired at Afghan protest over Quran burning Updated at 7:05 a.m. ET: KABUL -- Afghan demonstrators used slingshots and fired guns in the air while U.S. helicopters responded with flares, after thousands of angry people gathered Tuesday to protest the alleged burning of copies of the Quran at the main U.S. military base in Afghanistan. Source: http://worldnews.msnbc.msn.com/_news/2012/02/21/10463860-slingshots-guns-fired-at-afghan-protest-over-quran-burning |
Responder Zone
Subject Matter Expert Highlight
Paul D. Fulone serves as a Captain with the Londonderry Police Department in New Hampshire. In this capacity, he commands the department’s officers and supervisors assigned to the Manchester-Boston Regional Airport, as well as serves as the law enforcement liaison to the airport’s administration and the Transportation Security Administration (TSA). Captain Fulone developed the department’s Homeland Security Bureau and currently serves as a member of the New Hampshire Terrorism Task Force and as the Terrorism Liaison Officer for the state’s fusion center. In addition, he is currently the department representative to the US Attorneys’ Anti-Terrorism Advisory Council (ATAC).
Captain Fulone holds a diverse array of certifications including; Emergency Response, Hostage Barricade, CBRNE, Aviation and Terrorism, Tactical Command, Law Enforcement Leadership, Explosives / Bombings / Devises, International and Domestic Terrorism, Federal Air Marshal Service Tactical Information Sharing System, Homeland Security Comprehensive Assessment Model, Prevention & Response to Suicide Bombing Incidents, Law Enforcement Command School, Surveillance Detection for Law Enforcement, Intelligence Analysis, Developing and Operating a Terrorism Interdiction Unit, and Terrorism Instruction.
Captain Fulone has an extensive intelligence background and because of this background has performed and coordinated Threat, Risk and Vulnerability Assessments on critical infrastructure and coordinated Londonderry’s Homeland Security Assessment and Strategy Plan in compliance with the state of New Hampshire. He has used his training and experience when appointed by the Chief of Police to the TSA ‘MANPADS Mitigation Plan’ development team in 2002 and as a member of the ‘design team” to conduct full scale exercises at the Manchester-Boston Regional Airport. Captain Fulone was assigned to analyze and disseminate intelligence, related policy development and procurements regarding homeland security issues as a liaison with other state, local, private and federal agencies.
Captain Fulone has received numerous awards and letters of commendation from his department during his law enforcement career including a 2002 Honorable Service Award for homeland security emergency preparedness, threat assessments and intelligence/investigative measures in 2004. In addition, he has been recognized by the US Attorney’s Office for his work on the state’s first commercial bus security program and his work on the 2004 Democratic National Convention. He has been recognized by the Secret Service for his command and coordination during presidential campaign details and was asked to attend the National Threat Assessment Center in Washington D.C.
Captain Fulone has served as a Subject Matter Expert for the National Domestic Preparedness Coalition since 2005 and his input was vital during the development of the Coalition’s Operational Value of Threat, Rick and Vulnerability Assessment course (Department of Homeland Security Course MGT-336). During his time serving with the Coalition, he has served on multiple assessment teams, consulted on our exercise and evaluation programs, and acts as a member of the Coalition’s course review and evaluation team which maintains the standards for our training programs.
NDPCI Tip
How do I use an open WiFi hotspot safely?
I've returned to the same coffee shop where I was a few months ago when I noticed that my email had been hijacked/hacked. This time, I'm using my phone, but the last time when I noticed the hack, I was using my computer and doing email over an open-internet, free WiFi network. Do you think that could be the source of the problem or just a coincidence? I'm still afraid to do email from here. It definitely could have been. Unfortunately, it's hard to say for sure and it could have been something else unrelated. As we can't really diagnose the past, let's look ahead instead. It absolutely can be safe to do email from a coffee shop or any other location that provides unsecured or "open" WiFi. In fact, I do it all the time. But you do have to make sure to follow some very important practices to ensure your safety. This is easily and frequently overlooked. When you're at home, you may use your router as your firewall and keep the Windows or other software firewall on your machine disabled as redundant. That works well, as the router stops network-based attacks before they ever reach your computer. When you're on an open WiFi hotspot or connected directly to the internet via other means, that software firewall isn't redundant. In fact, it's required. Make sure that the firewall is enabled before connecting to an open WiFi hotspot. Various network-based threats could be present on an untrusted connection, and it's the firewall's job to protect you from exactly that. As I said, it can be safe to use open WiFi, but it's also very easy for it to be unsafe. The solution that you used while you were at that same coffee shop (and asked me about in this question) is a very common and solid one: use your phone instead. While it is technically possible, a mobile/cellular network connection issignificantly less likely to be hacked. I use this solution when I travel. Most mobile carriers offer one or more of the following options: Use your phone. Many phones or other mobile devices, such as iPhones, iPads, Droids, Blackberrys and others, are quite capable email and web-surfing devices, and typically do so via the mobile network. (Some can also use WiFi, so be certain that you're using the mobile broadband connection for this option to avoid the security issues that we're discussing.) Tether your phone. Tethering means you connect your phone to your computer - usually by a USB cable, but in some cases, via a Bluetooth connection - and the phone acts as a modem, providing a mobile broadband internet connection. Use a dedicated mobile modem. Occasionally referred to as "air cards", these are USB devices or PCMCIA cards that attach to your computer and act as a modem, providing a mobile broadband internet connection, much like tethering your phone. Use a mobile hotspot. In lieu of tethering, many phones now have the ability to act as a WiFi hotspot themselves. There are also dedicated devices, such as the MiFi, that when turned on, are simple dedicated hotspots. Either way, the device connects to the mobile broadband network and provides a WiFi hotspot accessible to one or more devices within range. When used in this manner, these devices are acting as routers and must be configured securely, including applying a WPA/WPA2 password so as not to be simply another open WiFi hotspot susceptible to hacking. I travel with a MiFi, and also have a phone capable of acting as a hotspot as a backup. I find this to be the most flexible option for the way I travel and use my computer. If you use a desktop email program such as Outlook, Outlook Express, Windows Mail, Windows Live Mail, Thunderbird or others, make certain that it's configured to use SSL/secure connections for sending and downloading email. Typically, that means that when you configure the email account in your email program, you need to: Configure your POP3 server for downloading your email selecting "SSL", "TLS", or "SSL/TLS" security option, and usually a different port number, such as 995 instead of the default 110. Configure your SMTP server for sending email selecting "SSL", "TLS", or "SSL/TLS" security option, and usually a different port number such as 26, 465, or 587 instead of the default 25. The exact settings and whether or not this is even possible dependsentirely on your email service provider; you'll need to check with them to determine the correct settings to use. How you configure these settings, of course, depends on the email program that you use. With these settings, you can feel secure downloading and sending mail using an open WiFi hotspot. It's what I often do when I don't have my MiFi with me. If you use a web-based email service like Gmail, Hotmail, Yahoo or others via your browser, you must MUST MUST make sure that it uses an httpS connection and that it keeps on usingthat httpS connection throughout your email session. I believe that this might well be the source of many open WiFi-related hacks. I expect that people simply login to their web-based email service without thinking about security and as a result, the username and password are visible to any hackers in range who care to look. Some email services have "require https", which is an option you should definitely enable. The problem is that of the major services, I trust only Gmail to remain in https throughout the entire session (and even then, you need to take care if you then use other Google services using your Gmail account credentials). Some services will use https for only your login, which is insufficient as your email conversations thereafter could be viewed by others. Other services may "fall out" of https, reverting to unsecure http without warning. Facebook also falls into this category. Facebook has a "require https" option, but apparently can fall out of https, particularly when various Facebook apps are used. Any and all web-based services that require you to login with a username and password should either be used only with https from start to finish, or should be avoided completely while you're using an open WiFi hotspot. This one's for the road warriors. You know them - the folks who are always traveling and online the entire time they do so - often hopping from coffee shop to coffee shop in search of an internet connection as they go. A VPN, or Virtual Private Network, is a service that sets up a securely encrypted 'tunnel' to the internet and routes all of your internet traffic through it. Regardless of https or not, SSL/secure email configuration or not, as all of your traffic is securely tunneled, no one sharing that open WiFi hotspot can see a thing. This service typically involves a recurring fee. As I said, they're great for road-warriors but probably overkill for the rest of us as long as we abide by the other security steps described above. Finally, it's a good idea to keep the passwords of the accounts that you access different from each other and, of course, secure. That way, should one account be compromised by some stroke of misfortune, the hackers won't automatically gain access to your other accounts that they may then learn of. • As you can see, it's unfortunately easy to get this stuff wrong. When that happens, that guy in the corner with his laptop open could be watching all your internet traffic on the WiFi connection, including your account credentials as they fly by. And when that happens, you can get hacked. Fortunately, with a little knowledge, forethought, and preparation, it's also relatively easy to be safe.
by Leo A. Notenboom, ©
Turn On The Firewall
Consider Not Using Free WiFi
Secure Your Desktop Email Program
Secure Your Web-based Email
Use a VPN
Use Different Passwords
New Technology
Warning Decision Support System–Integrated Information (WDSS-II)
When the American Red Cross responded the morning after the 24 May tornado outbreak in central Oklahoma, they had a new tool in their pocket. The Warning Decision Support System—Integrated Information (WDSS-II), developed by NOAA’s National Severe Storm Lab, cut disaster assessment time from 72 hours down to 24, a major improvement that could save many lives when it comes to rescue in the wake of a disaster.
The WDSS-II works by narrowing when and where the severe weather most likely occurred. Using radars, satellites, and other observation systems, the On Demand feature of the tool records tracks of rotation and hail swath images that can be opened in Google Earth. When street maps are overlaid with these images, disaster teams can assess which areas likely need assistance first, as well as the most accessible routes to take.
“They no longer have to put boots on the ground to visually assess the situation before planning how they will deploy response teams,” comments Kurt Hondl, NSSL research meteorologist. “It makes the coordination and planning of the American Red Cross’s response so much more efficient.”
The WDSS-II On Demand software is available to American Red Cross officers and other assessment organizations. More than 250 volunteers in Oklahoma and Texas have been trained so far by the Red Cross to utilize the NSSL On Demand software. Other organizations, like FEMA and the Department of Homeland Security, have begun to take advantage of the technology as well.
The WDSS-II is a multi-radar/sensor real-time data ingest and processing system that can be used to evaluate experimental applications in an operational setting. It is also a powerful application development tool. It is easy to add new products and concepts, and it provides a seamless path from data ingest, data processing, and output using standard formats. This improves the pace of science and technology infusion into operational warning decision systems.
The WDSS-II system is primarily used for research, prototype application development, and application evaluation, but the system is run 24/7 to evaluate the performance and scalability of the system for operational uses. SWAT partners with the Real-time Applications and Display Development team in NSSL's radar division to develop this technology. The WDSS-II is the result of over 10 years of research, application development, and operational testing at NSSL and NWS forecast offices.
History
The Warning Decision Support System – Integrated Information (WDSS-II) is the second generation of a system of tools for the analysis, diagnosis and visualization of remotely sensed weather data. The first version of the Warning Decision Support System (WDSS), now known as the legacy WDSS was developed in the early 1990s and was based on data from individual radars. The NSSL tornado vortex signature and mesocyclone detection algorithms currently used in operations by the NWS were first implemented, tested, and validated within the WDSS framework. To support university and other researchers, workstation versions (called WATADS) of these operational algorithms were distributed freely.
Since the WDSS was developed, there have been two major advancements. Computer networking and compression methods have improved significantly through a project called CRAFT. CRAFT allows data from individual radars to be transmitted, in real-time, over the Internet to interested users, and has made the development of new weather applications possible. The second advancement is a data access application programming interface (API) that enables access to data from various sensors – enabling rapid development of new meteorological applications.
The current NSSL Warning Decision Support System – Integrated Information (WDSS-II) uses these advancements and now contains over 100 multi-radar/sensor applications of all kinds.
WDSS-II 2D Multi-Radar CONUS Composite Reflectivity (multi-sensor QC, smoothed/thresholded)
(click image for loop)
|
February Is National Heart Month! - Cardiovascular disease is the leading cause of death in the United States; one in every three deaths is from heart disease and stroke, equal to 2,200 deaths per day.
|
NDPCI Support The National Domestic Preparedness Coalition is a 501C (3) non-profit organization, established to help our Nation’s Emergency Responders prevent, prepare for and protect their communities. |
Did You Know?
|  |
CDC
Caffeine is on the International Olympic Committee list of prohibited substances. Athletes who test positive for more than 12 micrograms of caffeine per milliliter of urine may be banned from the Olympic Games. This level may be reached after drinking about 5 cups of coffee. Ouch! Any coffee athletics out there?