- This topic has 7 replies, 5 voices, and was last updated 14 years, 5 months ago by
.
-
Posts
-
Its the obvious move & call to arms from an organization whose ability to conduct large operations is severely hampered..
Chances are we’ll see some incidents inspired by this..
The intro from an extensive bulletin (link above):
Counterterrorism: Shifting from ‘Who’ to ‘How’
By Scott Stewart and Fred Burton
In the 11th edition of the online magazine Sada al-Malahim (The Echo of Battle), which was released to jihadist Web sites last week, al Qaeda in the Arabian Peninsula (AQAP) leader Nasir al-Wahayshi wrote an article that called for jihadists to conduct simple attacks against a variety of targets. The targets included “any tyrant, intelligence den, prince” or “minister” (referring to the governments in the Muslim world like Egypt, Saudi Arabia and Yemen), and “any crusaders whenever you find one of them, like at the airports of the crusader Western countries that participate in the wars against Islam, or their living compounds, trains etc.,” (an obvious reference to the United States and Europe and Westerners living in Muslim countries).
Related Special Topic PagesAl-Wahayshi, an ethnic Yemeni who spent time in Afghanistan serving as a lieutenant under Osama bin Laden, noted these simple attacks could be conducted with readily available weapons such as knives, clubs or small improvised explosive devices (IEDs). According to al-Wahayshi, jihadists “don’t need to conduct a big effort or spend a lot of money to manufacture 10 grams of explosive material” and that they should not “waste a long time finding the materials, because you can find all these in your mother’s kitchen, or readily at hand or in any city you are in.”
That al-Wahayshi gave these instructions in an Internet magazine distributed via jihadist chat rooms, not in some secret meeting with his operational staff, demonstrates that they are clearly intended to reach grassroots jihadists — and are not intended as some sort of internal guidance for AQAP members. In fact, al-Wahayshi was encouraging grassroots jihadists to “do what Abu al-Khair did” referring to AQAP member Abdullah Hassan Taleh al-Asiri, the Saudi suicide bomber who attempted to kill Saudi Deputy Interior Minister Prince Mohammed bin Nayef with a small IED on Aug. 28.
The most concerning aspect of al-Wahayshi’s statement is that it is largely true. Improvised explosive mixtures are in fact relatively easy to make from readily available chemicals — if a person has the proper training — and attacks using small IEDs or other readily attainable weapons such as knives or clubs (or firearms in the United States) are indeed quite simple to conduct.
As STRATFOR has noted for several years now, with al Qaeda’s structure under continual attack and no regional al Qaeda franchise groups in the Western Hemisphere, the most pressing jihadist threat to the U.S. homeland at present stems from grassroots jihadists, not the al Qaeda core. This trend has been borne out by the large number of plots and arrests over the past several years, to include several so far in 2009. The grassroots have likewise proven to pose a critical threat to Europe (although it is important to note that the threat posed by grassroots operatives is more widespread, but normally involves smaller, less strategic attacks than those conducted by the al Qaeda core).
Re: Heads up on call for ‘low tech’ threats
Typical extremist psychobabble. Though Iíve begun to look at office supplies in ways I never imagined.
Re: Heads up on call for ‘low tech’ threats
Fwiw the analyst on this is Fred Burton, a counterterrorism expert who was previously deputy chief of the counterterrorism division of the U.S. Diplomatic Security Service. The bulletin itself comes from Stratfor which is seen as an authoritative source on issues of geopolitics, strategic, counterterror & tactical intelligence issues. This outfit, unlike some others, is not prone to scaremongering & ‘chicken little’ modes – so, while no one can predict how future events will unfold, if Stratfor chose to pay attention to this particular AQ communique, its worth taking heed.. vigilance is the key.
A call to low tech tactics from sympathizers in the West makes a lot of sense when considering the skills, training & planning needed to pull off larger scale actions – a more likely scenario is the lone wolf or small group running amok in an airport, train station or mall.. hard to prevent but there is hope…read on – of special interest to LE members:
(Quoted bulletin with permission from http://www.stratfor.com )
From a counterterrorism perspective, the problem posed by grassroots operatives is that unless they somehow self-identify by contacting a government informant or another person who reports them to authorities, attend a militant training camp, or conduct electronic correspondence with a person or organization under government scrutiny, they are very difficult to detect.
The threat posed by grassroots operatives, and the difficulty identifying them, highlight the need for counterterrorism programs to adopt a proactive, protective intelligence approach to the problem — an approach that focuses on “the how” of militant attacks instead of just “the who.”
The HowIn the traditional, reactive approach to counterterrorism, where authorities respond to a crime scene after a terrorist attack to find and arrest the militants responsible for the attack, it is customary to focus on the who, or on the individual or group behind the attack. Indeed, in this approach, the only time much emphasis is placed on the how is either in an effort to identify a suspect when an unknown actor carried out the attack, or to prove that a particular suspect was responsible for the attack during a trial. Beyond these limited purposes, not much attention is paid to the how.
In large part, this focus on the who is a legacy of the fact that for many years, the primary philosophy of the U.S. government was to treat counterterrorism as a law-enforcement program, with a focus on prosecution rather than on disrupting plots.
Certainly, catching and prosecuting those who commit terrorist attacks is necessary, but from our perspective, preventing attacks is more important, and prevention requires a proactive approach. To pursue such a proactive approach to counterterrorism, the how becomes a critical question. By studying and understanding how attacks are conducted — i.e., the exact steps and actions required for a successful attack — authorities can establish systems to proactively identify early indicators that planning for an attack is under way. People involved in planning the attack can then be focused on, identified, and action can be taken prevent them from conducting the attack or attacks they are plotting. This means that focusing on the how can lead to previously unidentified suspects, e.g., those who do not self-identify.
“How was the attack conducted?” is the primary question addressed by protective intelligence, which is, at its core, a process for proactively identifying and assessing potential threats. Focusing on the how, then, requires protective intelligence practitioners to carefully study the tactics, tradecraft and behavior associated with militant actors involved in terrorist attacks. This allows them to search for and identify those behaviors before an attack takes place. Many of these behaviors are not by themselves criminal in nature; visiting a public building and observing security measures or standing on the street to watch the arrival of a VIP at their office are not illegal, but they can be indicators that an attack is being plotted. Such legal activities ultimately could be overt actions in furtherance of an illegal conspiracy to conduct the attack, but even where conspiracy cannot be proved, steps can still be taken to identify possible assailants and prevent a potential attack — or at the very least, to mitigate the risk posed by the people involved.
Protective intelligence is based on the fact that successful attacks don’t just happen out of the blue. Rather, terrorist attacks follow a discernable attack cycle. There are critical points during that cycle where a plot is most likely to be detected by an outside observer. Some of the points during the attack cycle when potential attackers are most vulnerable to detection are while surveillance is being conducted and weapons are being acquired. However, there are other, less obvious points where people on the lookout can spot preparations for an attack.
It is true that sometimes individuals do conduct ill-conceived, poorly executed attacks that involve shortcuts in the planning process. But this type of spur-of-the-moment attack is usually associated with mentally disturbed individuals and it is extremely rare for a militant actor to conduct a spontaneous terrorist attack without first following the steps of the attack cycle.
To really understand the how, protective intelligence practitioners cannot simply acknowledge that something like surveillance occurs. Rather, they must turn a powerful lens on steps like preoperational surveillance to gain an in-depth understanding of them. Dissecting an activity like preoperational surveillance requires not only examining subjects such as the demeanor demonstrated by those conducting surveillance prior to an attack and the specific methods and cover for action and status used. It also requires identifying particular times where surveillance is most likely and certain optimal vantage points (called perches in surveillance jargon) from where a surveillant is most likely to operate when seeking to surveil a specific facility or event. This type of complex understanding of surveillance can then be used to help focus human or technological countersurveillance efforts where they can be most effective.
Unfortunately, many counterterrorism investigators are so focused on the who that they do not focus on collecting this type of granular how information. When we have spoken with law enforcement officers responsible for investigating recent grassroots plots, they gave us blank stares in response to questions about how the suspects had conducted surveillance on the intended targets. They simply had not paid attention to this type of detail — but this oversight is not really the investigators’ fault. No one had ever explained to them why paying attention to, and recording, this type of detail was important. Moreover, it takes specific training and a practiced eye to observe and record these details without glossing over them. For example, it is quite useful if a protective intelligence officer has first conducted a lot of surveillance, because conducting surveillance allows one to understand what a surveillant must do and where he must be in order to effectively observe surveillance of a specific person or place.
Similarly, to truly understand the tradecraft required to build an IED and the specific steps a militant needs to complete to do so, it helps to go to an IED school where the investigator learns the tradecraft firsthand. Militant actors can and do change over time. New groups, causes and ideologies emerge, and specific militants can be killed, captured or retire. But the tactical steps a militant must complete to conduct a successful attack are constant. It doesn’t matter if the person planning an attack is a radical environmentalist, a grassroots jihadist or a member of the al Qaeda core, for while these diverse actors will exhibit different levels of professionalism in regard to terrorist tradecraft, they still must follow essentially the same steps, accomplish the same tasks and operate in the same areas. Knowing this allows protective intelligence to guard against different levels of threats.
Of course, tactics can be changed and perfected and new tactics can be developed (often in response to changes in security and law enforcement operations). Additionally, new technologies can emerge (like cell phones and Google Earth) — which can alter the way some of these activities are conducted, or reduce the time it takes to complete them. Studying the tradecraft and behaviors needed to execute evolving tactics, however, allows protective intelligence practitioners to respond to such changes and even alter how they operate in order to more effectively search for potential hostile activity.
Technology does not only aid those seeking to conduct attacks. There are a variety of new tools, such as Trapwire, a software system designed to work with camera systems to help detect patterns of preoperational surveillance, that can be focused on critical areas to help cut through the fog of noise and activity and draw attention to potential threats. These technological tools can help turn the tables on unknown plotters because they are designed to focus on the how. They will likely never replace human observation and experience, but they can serve as valuable aids to human perception.
Of course, protective intelligence does not have to be the sole responsibility of federal authorities specifically charged with counterterrorism. Corporate security managers and private security contractors should also apply these principles to protecting the people and facilities in their charge, as should local and state police agencies. In a world full of soft targets — and limited resources to protect those targets from attack — the more eyes looking for such activity the better. Even the general public has an important role to play in practicing situational awareness and spotting potential terrorist activity.
(edit)
…
Furthermore, when grassroots jihadists plan and carry out attacks acting as lone wolves or in small compartmentalized cells without inadvertently betraying their mission by conspiring with people known to the authorities, they are not able to be detected by the who-focused systems, and it becomes far more difficult to discover and thwart these plots. This focus on the how absolutely does not mean that who-centered programs must be abandoned. Surveillance on known militants, their associates and communications should continue, efforts to identify people attending militant training camps or fighting in places like Afghanistan or Somalia must be increased, and people who conduct terrorist attacks should be identified and prosecuted.However — and this is an important however — if an unknown militant is going to conduct even a simple attack against some of the targets al-Wahayshi suggests, such as an airport, train, or specific leader or media personality, complexity creeps into the picture, and the planning cycle must be followed if an attack is going to be successful. The prospective attacker must observe and quantify the target, construct a plan for the attack and then execute that plan. The demands of this process will force even an attacker previously unknown to the authorities into a position where he is vulnerable to discovery. If the attacker does this while there are people watching for such activity, he will likely be seen. But if he does this while there are no watchers, there is little chance that he will become a who until after the attack has been completed.
+++++++++++++++++
Terrorist Attack CycleIn most terrorist attacks, though the violence may seem spontaneous, it is usually the result of meticulous planning and coordination. Preventing the attack must be accomplished early in the “attack cycle,” before the violence begins. Once out of the bottle, the genie cannot be put back in.
Vulnerabilities in the Terrorist Attack Cycle
Attacks designed to instill terror, not only among the surviving victims and those in the immediate always appear to occur suddenly — to come “out of the blue.” The actual event, however, is the culmination of the six-stage attack cycle: target selection, planning, deployment, the attack, escape and exploitation.
Re: Heads up on call for ‘low tech’ threats
My prayers and sympathies to the fine Soldiers and families at Ft Hood Texas.
Re: Heads up on call for ‘low tech’ threats
quote Coda Vex:My prayers and sympathies to the fine Soldiers and families at Ft Hood Texas.Just horrible news… All my thoughts and prayers are with them right now.
Re: Heads up on call for ‘low tech’ threats
Shocking & horrific (!)..
My thoughts go out to all those affected by the incident.
The attacker is an utter disgrace to his uniform, rank and profession. Its especially sickening since his role as a medical officer was to help and heal others.
Amazing reactions from the civilian police officers who responded, engaged and took this guy out quickly & decisively – undoubtedly saving lives.
Who knows what was going on in this guy’s mind, but it seems from some of the reports coming out in these early days that there were allegedly some red flags in terms of his attitude and apparent beliefs in the years leading up to this incident where you wonder how it was possible he didn’t warrant some kind of investigation and review from the military (maybe there was some ongoing investigation that’s not public).
Again, while the motives behind the Ft Hood incident are unclear, its worth noting that a common profile of a jihadist/extremist-influenced attacker in the West & especially in Europe, is that of a seemingly well-integrated, educated individual.
Be vigilant people!
Re: Heads up on call for ‘low tech’ threats
The shooting at fort hood were an atrocity and should have
never happened.About the article that chocolate put on here rings true.We live in a country that is free but we must be diligent in watching it.Law enforcement cannot be every were so we must do our part to protect or country.(No disrespect to any law enforcement officers).We do have people that don’t like us.Re: Heads up on call for ‘low tech’ threats
Here are some thoughts on the Ft Hood incident from the Stratfor team – some interesting reading:
The Hasan Case: Overt Clues and Tactical Challenges
November 11, 2009 | 1841 GMTBy Scott Stewart and Fred Burton
In last weekís global security and intelligence report, we discussed the recent call by the leader of al Qaeda in the Arabian Peninsula, Nasir al-Wahayshi, for jihadists to conduct simple attacks against a variety of targets in the Muslim world and the West. We also noted how it is relatively simple to conduct such attacks against soft targets using improvised explosive devices, guns or even knives and clubs.
The next day, a lone gunman, U.S. Army Maj. Nidal Malik Hasan, opened fire on a group of soldiers at Fort Hood, Texas. The victims were in the Soldier Readiness Processing Center, a facility on the base where troops are prepared for deployment and where they take care of certain processing tasks such as completing insurance paperwork and receiving medical examinations and vaccinations.
Even though the targets of Hasanís attack were soldiers, they represented a very soft target in this environment. Most soldiers on bases inside the United States are normally not armed and are only provided weapons for training. The only personnel who regularly carry weapons are the military police and the base civilian police officers. In addition to being unarmed, the soldiers at the center were closely packed together in the facility as they waited to proceed from station to station. The unarmed, densely packed mass of people allowed Hasan to kill 13 (12 soldiers and one civilian employee of the center) and wound 42 others when he opened fire.
Hasan is a U.S.-born Muslim who, according to STRATFOR sources and media accounts, has had past contact with jihadists, including the radical Imam Anwar al-Awlaki. Al-Awlaki is a U.S.-born imam who espouses a jihadist ideology and who was discussed at some length in the 9/11 commission report for his links to 9/11 hijackers Khalid al-Midhar and Nawaf al-Hazmi. Al-Awlaki, who is currently living in Yemen and reportedly has contacts with al Qaeda, posted a message on his Web site Nov. 9 praising Hasanís actions. Despite Hasanís connections to al-Awlaki and other jihadists, it is unknown at this point if he was even aware of al-Wahayshiís recent message calling for simple attacks, and therefore it is impossible to tell if his attack was in response to it.
However, one thing that is certain is that investigators examining Hasanís computer hard drive, e-mail traffic and Internet history will be looking into that possibility, along with other indications that Hasan was linked to radicals.
We noted last week that by their very nature, individual actors and small cells are very difficult for the government to detect. They must somehow identify themselves by contacting a government informant or another person who reports them to the authorities, attend a militant training camp or conduct correspondence with a person or organization under government scrutiny. In the Hasan case, it now appears that Hasan did self-identify by making radical statements to people he worked with, who reported him to the authorities. It also appears that he had correspondence with people such as al-Awlaki, whom the government was monitoring. Because of this behavior, Hasan brought himself to the attention of the Department of Defense, the FBI and the CIA.
The fact that Hasan was able to commit this attack after bringing government attention to himself could be due to a number of factors. Chief among them is the fact that it is tactically impossible for a government to identify every aspiring militant actor and to pre-empt every act of violence. The degree of difficulty is increased greatly if an actor does indeed act alone and does not give any overt clues through his actions or his communications of his intent to attack. Because of this, the Hasan case provides an excellent opportunity to examine national security investigations and their utility and limitations.
The Nature of Intelligence InvestigationsThe FBI will typically open up an intelligence investigation (usually referred to as a national security investigation) in any case where there is an indication or allegation that a person is involved in terrorist activity but there is no evidence that a specific law has been broken. Many times these investigations are opened up due to a lead passed by the CIA, National Security Agency or a foreign liaison intelligence service. Other times an FBI investigation can come as a spin-off from another FBI counterterrorism investigation already under way or be prompted by a piece of information collected by an FBI informant or even by a tip from a concerned citizen ó like the flight instructors who alerted the FBI to the suspicious behavior of some foreign flight students prior to the 9/11 attacks. In such a case, the FBI case agent in charge of the investigation will open a preliminary inquiry, which gives the agent a limited window of time to look into the matter. If no indication of criminal activity is found, the preliminary inquiry must be closed unless the agent receives authorization from the special agent in charge of his division and FBI headquarters to extend it.
If, during the preliminary inquiry, the investigating agents find probable cause that a crime has been committed, the FBI will open a full-fledged criminal investigation into the case, similar to what we saw in the case of Luqman Ameen Abdullah and his followers in Detroit.
One of the large problems in national security investigations is separating the wheat from the chaff. Many leads are based on erroneous information or a misidentification of the suspect ó there is a huge issue associated with the confusion caused by the transliteration of Arabic names and the fact that there are many people bearing the same names. Jihadists also have the tendency to use multiple names and identities. And there are many cases in which people will falsely report a person to the FBI out of malice. Because of these factors, national security investigations proceed slowly and usually do not involve much (if any) contact with the suspect and his close associates. If the suspect is a real militant planning a terrorist attack, investigators do not want to tip him off, and if he is innocent, they do not want to sully his reputation by showing up and overtly interviewing everyone he knows. Due to its controversial history of domestic intelligence activities, the FBI has become acutely aware of its responsibility to protect privacy rights and civil liberties guaranteed by the Constitution and other laws.
And the rights guaranteed under the Constitution do complicate these national security investigations. It is not illegal for someone to say that Muslims should attack U.S. troops due to their operations in Iraq and Afghanistan, or that more Muslims should conduct attacks like the June 1 shooting at a recruiting center in Little Rock, Ark. ó things that Hasan is reported to have said. Radical statements and convictions are not illegal ó although they certainly would appear to be conduct unbecoming a U.S. Army officer. (We will leave to others the discussion of the difficulties in dealing with problem officers who are minorities and doctors and who owe several years of service in return for their education.)
There are also many officers and enlisted soldiers in the U.S. Army who own personal weapons and who use them for self-defense, target shooting or hunting. There is nothing extraordinary or illegal about a U.S. Army major owning personal weapons. With no articulable violation of U.S. law, the FBI would have very little to act upon in a case like Hasanís. Instead, even if they found cause to extend their preliminary inquiry, they would be pretty much limited to monitoring his activities (and perhaps his communications, with a court order) and waiting for a law to be violated. In the Hasan case, it would appear that the FBI did not find probable cause that a law had been violated before he opened fire at Fort Hood. Although perhaps if the FBI had been watching his activities closely and with an eye toward ìthe howî of terrorist attacks, they might have noticed him conducting preoperational surveillance of the readiness center and even a dry run of the attack.
Of course, in addition to just looking for violations of the law, the other main thrust of a national security investigation is to determine whom the suspect is connected to and whom he is talking to or planning with. In past cases, such investigations have uncovered networks of jihadist actors working together in the United States, Canada, Europe and elsewhere. However, if all Hasan did in his correspondence with people such as al-Awlaki was exercise his First Amendment right to hold radical convictions, and if he did not engage in any type of conspiracy to conduct an attack, he did not break the law.
Another issue that complicates national security cases is that they are almost always classified at the secret level or above. This is understandable, considering they are often opened based upon intelligence produced by sensitive intelligence programs. However, this classification means that only those people with the proper clearance and an established need to know can be briefed on the case. It is not at all unusual for the FBI to visit a high-ranking official at another agency to brief the official on the fact that the FBI is conducting a classified national security investigation involving a person working for the officialís agency. The rub is that they will frequently tell the official that he or she is not at liberty to share details of the investigation with other individuals in the agency because they do not have a clear need to know. The FBI agent will also usually ask the person briefed not to take any action against the target of the investigation, so that the investigation is not compromised. While some people will disagree with the FBIís determination of who really needs to know about the investigation and go on to brief a wider audience, many officials are cowed by the FBI and sit on the information.
Of course, the size of an organization is also a factor in the dissemination of information. The Department of Defense and the U.S. Army are large organizations, and it is possible that officials at the Pentagon or the Armyís Criminal Investigation Command (still known by its old acronym CID) headquarters at Fort Belvoir, Va., were briefed on the case and that local officials at Fort Hood were not. The Associated Press is now reporting that the FBI had alerted a Defense Criminal Investigative Service agent assigned to the Joint Terrorism Task Force (JTTF) in Washington about Hasanís contacts with al-Awlaki, and ABC reports that the Defense Department is denying the FBI notified them. It would appear that the finger-pointing and bureaucratic blame-shifting normally associated with such cases has begun.
Even more severe problems would have plagued the dissemination of information from the CIA to local commanders and CID officers at Fort Hood. Despite the intelligence reforms put in place after the 9/11 attacks, the U.S. government still faces large obstacles when it comes to sharing intelligence information with law enforcement personnel.
Criminal Acts vs. TerrorismSo far, the Hasan shooting investigation is being run by the Army CID, and the FBI has been noticeably ó and uncharacteristically ó absent from the scene. As the premier law enforcement agency in the United States, the FBI will often assume authority over investigations where there is even a hint of terrorism. Since 9/11, the number of FBI/JTTF offices across the country has been dramatically increased, and the JTTFs are specifically charged with investigating cases that may involve terrorism. Therefore, we find the FBIís absence in this case to be quite out of the ordinary.
However, with Hasan being a member of the armed forces, the victims being soldiers or army civilian employees and the incident occurring at Fort Hood, the case would seem to fall squarely under the mantle of the Uniform Code of Military Justice (UCMJ). From a prosecutorial perspective, a homicide trial under the UCMJ should be very tidy and could be quickly concluded. It will not involve all the potential loose ends that could pop up in a federal terrorism trial, especially when those loose ends involve what the FBI and CIA knew about Hasan, when they learned it and who they told. Also, politically, there are some who would like to see the Hasan case remain a criminal matter rather than a case of terrorism. Following the shooting death of Luqman Ameen Abdullah and considering the delicate relationship between Muslim advocacy groups and the U.S. government, some people would rather see Hasan portrayed as a mentally disturbed criminal than as an ideologically driven lone wolf.
Despite the CID taking the lead in prosecuting the case, the classified national security investigation by the CIA and FBI into Hasan and his possible connections to jihadist elements is undoubtedly continuing. Senior members of the government will certainly demand to know if Hasan had any confederates, if he was part of a bigger plot and if there are more attacks to come. Several congressmen and senators are also calling for hearings into the case, and if such hearings occur, they will certainly produce an abundance of interesting information pertaining to Hasan and the national security investigation of his activities.
(With permission from http://www.stratfor.com)
- You must be logged in to reply to this topic.
