What's New

Thank you for visiting the Financial and Banking Information Infrastructure Committee (FBIIC) website!

FBIIC implemented this website as a method of sharing information about Critical Infrastructure Protection and Homeland Security activities and initiatives. The website will also be used to facilitate internal communications among FBIIC members.

July 2010
For Your Information

• Approved and Released: Continuity Guidance Circular 2 (CGC 2), Effective July 22, 2010
• 5/1 Security Project
• Mariposa Botnet Press Release
• "State of the Internet" Akamai
• "Mariposa Botnet Analysis" Defence Intelligence
• IMPORTANT: CTICG's second joint advisory
• United Kingdom "A new approach to financial regulation: judgement, focus and stability"
• 2010 Data Breach Investigations Report
• European ATM Security Team
• Top 5 Fraud Threats
• Vital Records brochure
• United Kingdom Cyber Security Challenge
• Black Hat Abu Dhabi -- 8th and 11th November 2010
• Visa Best Practices - Tokenization Version 1.0
• Information Management: Challenges In Federal Agencies' Use of Web 2.0 Technologies
• "An infrared invisibility cloak composed of glass" - Applied Physics Letters
• Deloitte's 2010 Financial Services Global Security Study: The Faceless Threat
• ODNI PROVIDES DETAILED FACTS ABOUT THE IC POST-9/11: Truth about Contractors
• ODNI PROVIDES DETAILED FACTS ABOUT THE IC POST-9/11: Questions & Answers
• Recommendations for Measuring and Reporting Overall Data Center Efficiency
• Acting Director of National Intelligence, David C. Gompert, reaction to the Washington Post series
• Washington Post, July 19: "Top Secret America"
• July 15 “Planning for the Future of Cyber Attack Attribution” House Committee on Science and Technology; Subcommittee on Technology & Innovation
• Trojan-Spy.0485 And Malware-Cryptor.Win32.Inject.gen.2 Review
• Commodity Futures Trading Commission Notice of Proposed Rulemaking
• CIKR Monthly Open Source Cyber Digest (OSCD)
• FINANCIAL SERVICES SECTOR OPEN SOURCE DIGEST
• 2010 CyLab Report: Governance of Enterprise Security
• Wired Magazine, July 13 2010, "Hacking the Electric Grid? You and What Army?"
• NERC Report on High Impact Low Frequency Events on the Power Grid
• Homeland Security: June 2010 NIPP News
• Clarifying Cybersecurity Responsibilities and Activities of the Executive Office of the President and the Department of Homeland Security (DHS)
• Impact of New Madrid Seismic Zone Earthquakes on the Central USA
• Key Challenges Need to Be Addressed to Improve Research and Development. GAO-10-466, June 3
• Incident Handling: Preparing for Incident Analysis
• MS-ISAC Cyber Security Tips Newsletter June 2010: Home Personal Computer (PC) Maintenance for Windows Operating Systems
• The Information Office of the State Council, or China's cabinet, White paper: The Internet in China

June 2010
For Your Information

• Information Security: Federal Guidance Needed to Address Control Issues with Implementing Cloud Computing. GAO-10-513, May 27
• Information Security: Governmentwide Guidance Needed to Assist Agencies in Implementing Cloud Computing, by Gregory C. Wilshusen, director, information security issues, before the Subcommittee on Government Management, Organization, and Procurement, House Committee on Oversight and Government Reform. GAO-10-855T, July 1
• Texas Banking Department Issues Proclamation to Texas State Chartered Banks for Tropical Storm Alex
• National Strategy for Trusted Identities in Cyberspace: Blog
• National Strategy for Trusted Identities in Cyberspace: Comments
• National Strategy for Trusted Identities in Cyberspace
• United Kingdom Dedicated Cheque and Plastic Crime Unit “Card fraud gang sentenced to 15 years” June 21, 2010
• COOP Planning at Your Agency: Keep Systems Running During Disaster
• Remarks and Q&A by Dawn Meyerriecks: Deputy Director of Acquisition and Technology, Office of the Director of National Intelligence
• Internet Fraud Alert
• Federal Trade Commission v. CyberSpy Software, LLC, and Tracer R. Spence
• Estonia Ministry of Foreign Affairs, Cyber Defence
• Estonian President Ilves Opens Conference on Cyber Conflict, June 16, 2010
• Statement of Richard Skinner Regarding the Department of Homeland Security’s US Computer Emergency Readiness Team, June 16, 2010
• Information Security Breaches Survey 2010: technical report
• Remote working poses threat to corporate security
• Cybercrime victim every 7 seconds in the UK: June 15, 2010
• Cybersecurity: Continued Attention Is Needed to Protect Federal Information Systems from Evolving Threats, by Gregory C. Wilshusen, director, information security issues, before the House Committee on Homeland Security. GAO-10-834T, June 16 | Highlights
• Internet Engineering Task Force
• DNS Security Extensions
• Spain National Police Corps - “Desarticulado un complejo grupo organizado de clonadores de tarjetas bancarias con conexiones a nivel mundial” June 15, 2010
• Clickjacking
• "Honeybot, Your Man in the Middle for Automated Social Engineering"
• International Secure System Lab Paper on Online Industry
• Survey Finds Cyberattacks and Cybersecurity to Be Top Security Priorities
• Department of Homeland Security "Stronger Security Controls Needed on Active Directory Systems" May 2010
• ICSJWG May Newsletter
• Cyber Digest
• Financial Services Open Source Digest
• NTIA report on safety online for children
• The Plight of the Targeted Attacker in a World of Scale
• China, Information Office of the State Council of the People's Republic of China, "The Internet in China" June 8, 2010
• The handling of the H1N1 pandemic: more transparency needed
• Conflicts of interest -- WHO and the pandemic flu "conspiracies"
• CSIS CYBERSECURITY POLICY DEBATE SERIES: U.S. CYBERSECURITY POLICY AND THE ROLE OF U.S. CYBERCOM
• U.S. Department of Justice – "Review of the Department's Preparation to Respond to a WMD Incident May 2010"
• National Institute of Standards and Technology - Continuous Monitoring FAQ
• Dereck Orr, National Institute of Standards and Technology, May 27, 2010: "Interoperability in Public Safety Communications Equipment"
• Times of London "Log-ins strengthened to thwart hackers" May 29, 2010
• Interview with EOP CTO Aneesh Chopra
• Canada's National CI Plan: Action Plan
• Canada's National CI Plan: National Strategy
• Canada's National CI Plan: News Release

May 2010
For Your Information

• Stratcom Cyber Symposium: Deputy Secretary of Defense William J. Lynn, III, Omaha, Nebraska, Wednesday, May 26, 2010
• DHS Private Sector Resource Catalog
• National Security Strategy: BLOG | PDF
• United Kingdom Defence Science and Technology Laboratory
• European Commission – Information Society – Digital Agenda for Europe 2010-2020
• Software Assurance
• Monthly Activity Summary - April 2010
• Disturbance liability: The reason for WLAN restrictions in Germany
• BBC News: First human 'infected with computer virus'
• Cyber Security Newsletter Tip - May 2010 - Identity Theft
• A Numerical Optimization-based Methodology for Application Robustification
• Experimental Security Analysis of a Modern Automobile
• Cyber and Finance Weekly #20 - 5/19/10
• FTC Permanently Shuts Down Notorious Rogue Internet Service Provider
• Further Technical Information for Mitigating Targeted Cyber Intrusions HTML | PDF
• Technical Information for Mitigating Targeted Cyber Intrusions HTML | PDF
• RAND Report: Jihadist Radicalization in the U.S.
• Portrait of a year-old pandemic
• Extended Range Forecast for 2010
• What Do You Learn at Terrorist Training Camp?
• Cyber and Finance Weekly #19 - 5/12/10
• Private-Public Partnerships
• ICSJWG April Newsletter
• Swiss Federal Institute of Technology Zurich "Critical (Information) Infrastructure Protection"
• Swiss Federal Institute of Technology Zurich "Governance of Information Security"
• BBC News – Tsunami Alerts
• United Nations "58/199. Creation of a global culture of cybersecurity and the protection of critical information infrastructures"
• CANN "First IDN ccTLDs Available"
• European Network and Information Security Agency: "Priorities for Research on Current and Emerging Network Technologies"
• Business Software Alliance: "2010 BSA GLOBAL CYBERSECURITY FRAMEWORK"
• Infosecurity Europe "Information Security Breaches Survey 2010: technical report"
• East West Institute: "First Worldwide Cybersecurity Summit"
• IntelCenter STER on NYC Times Square Attack
• NYPD SHIELD Brief: Times Square Car Bomb

April 2010
For Your Information

• 31st IEEE Symposium on Security & Privacy Advance Program, May 16-19, 2010 | Highlights
• U.S. Tsunami Preparedness: NOAA Has Expanded Its Tsunami Programs, but Improved Planning Could Enhance Effectiveness. GAO-10-490, April 28 | Highlights
• Transmissibility and geographic spread of the 1889 influenza pandemic
• United Kingdom: Cyber Security Challenge
• The Future Of Passports And Money Movements In The Undreground Economy
• FY 2010 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management
• Secretary Napolitano Remarks on Resilience
• Fault-Based Attack of RSA Authentication
• Gordon M. Snow Named Assistant Director of FBI Cyber Division 4-26-10
• Priorities for Research on Current and Emerging Network Technologies
• Active Shooter Guide Poster
• April 2010 - Cloud Computing
• Federal Reserve Banks: Areas for Improvement in Information Security Controls. GAO-10-640R, April 21.
• Preliminary Estimates of Mortality and Years of Life Lost Associated with the 2009 A/H1N1 Pandemic in the US and Comparison with Past Influenza Seasons
• Speech by Secretary of Defense Gates on April 20, 2010
• Background Report: On the Fifteenth Anniversary of the Oklahoma City Bombing
• Symantec "Internet Security Threat Report: Volume XV: April 2010"
• India – Cyber Laws and Security
• "Global Cyber Deterrence" – East West Institute
• "What do Senior Leaders Need to Know About Cyberspace?" by Jeffrey Caton
• Trend Micro Blog
• Cybercrime and Hacktivism
• Large-Scale Automatic Classification of Phishing Pages
• Shadowserver Foundation "Shadows in the Cloud: Investigating Cyber Espionage 2.0"
• CRITICAL INFRASTRUCTURE PROTECTION: Update to National Infrastructure Protection Plan Includes Increased Emphasis on Risk Management and Resilience

March 2010
For Your Information

• Issue 50: March 2010 NIPP News
• Home Grown Terrorism
• Network and Distributed System Security Symposium 2010 -- Papers
• CCIP eBulletin - Issue 94
• New Card and Banking Fraud Figures
• Germany Computer Emergency Response Team
• Germany Citizens Computer Emergency Response Team
• European Governments CERTs Group
• Asia Pacific Computer Emergency Response Team
• Ruhr-University of Bochum Institute for E-Business Security
• Ruhr-University of Bochum Horst Görtz Institute for IT Security
• An updated description of the intelligence function of the Department of Homeland Security was produced last week by the Congressional Research Service
• Homeland Security Intelligence: Its Relevance and Limitations
• Germany Federal Office for Information Security
• Center for Complex Network Research at Northeastern University "Spreading Patterns of Mobile Phone Viruses"
• The Policing Cyberspace International Conference 2010 Organized in Cooperation with the Council of Europe
• Society for the Policing of Cyberspace
• United Kingdom House of Lords "Protecting Europe against large-scale cyber-attacks"
• US Department of Defense "Joint Operating Environment 2010"
• National Broadband Plan
• Flooding What to Know
• Flood Awareness
• Financial Services Sector Open Source Digest February 2010
• Ricoh Secure Document Governance - Safeguarding confidential information
• Australian Government -- Internet Service Provider (ISP) Filtering 'Live' Pilot
• National Defense University “Regional Collaboration in Cybersecurity: Securing the Cloud, Web, and Virtual Networks” Singapore July 13-14, 2010
• International Institute for Strategic Studies “17 Mar 2010 - IISS-US Discussion Meeting - China and ‘Cyber Power’”
• Bank of Japan Business Continuity Planning Documents
• 2009 Internet Crime Report
• Best Practice Document on Wire Transfer precautions
• BBC News “Inside the mind of a Russian hacker”
• United Kingdom Dedicated Cheque and Plastic Crime Unit
• United Kingdom National Fraud Authority
• United Kingdom National Fraud Strategy
• United Kingdom National Fraud Authority Annual Fraud Indicator January 2010
• United Kingdom Cards Association “New Card and Banking Fraud Figures”
• Financial Fraud Action United Kingdom
• United Kingdom Intelligence and Security Committee
• United Kingdom Intelligence Community
• British Standard for Business Continuity Management: BS 25999
• United Kingdom Emergency Planning College
• “What's in a Name? Evaluating Statistical Attacks on Personal Knowledge Questions” by Joseph Bonneau, Mike Just, Greg Matthews
• International Financial Cryptography Association
• Newsmap
• CYBERSECURITY Progress Made but Challenges Remain in Defining and Coordinating the Comprehensive National Initiative
• Remarks by Howard Schmidt, White House Cybersecurity Coordinator, National Security Council, Executive Office of the President
• RSA Conference Panel "Dealing with Sophisticated Threats in Cyberspace without Creating Big Brother"
• Ross Anderson "Security Engineering"
• Edward Wilding "Information Risk and Security"
• Adam Shostack and Andrew Stewart "The New School of Information Security"
• Dorothy E. Denning "Information warfare and security"
• Andrew Jaquith "Security Metrics"
• Richard Bejtlich "Extrusion Detection: Security Monitoring for Internal Intrusions"
• C. Warren Axelrod "Outsourcing Information Security"
• Department of Homeland Security "Secretary Napolitano Launches National Cybersecurity Awareness Campaign Challenge"
• CCIP eBulletin - Issue 93
• Spain Grupo de Delitos Telemáticos (Computer Crime Unit)
• Spain Oficina de Seguridad del Internauta
• El Mundo “Tres españoles dirigían una de las mayores redes de ordenadores "zombis"
• Cloud Security Alliance “Top Threats to Cloud Computing V1.0”
• CNCI Description
• Cracking Down on Botnets
• University of Bath - Software sniffs out criminals by the shape of their nose Document : PDF
• Human Factors in the Design and Evaluation of Central Control Room Operations
• United Kingdom Serious Organised Crime Agency “DarkMarket mastermind jailed”
• “Draft Report for the Study of the Accuracy of WHOIS Registrant Contact Information”

February 2010
For Your Information

• Latvian 'Robin Hood' hacker leaks bank details to TV
• GPS Jamming & Interference –A Clear and Present Danger
• Widespread Data Breaches Uncovered by FTC Probe
• New Report on Cybersecurity 2-22-10
• Fact Sheets
• France National Assembly – Proposed Legislation Concerning inter alia Cyber Security
• United Kingdom National Audit Office "Staying Safe Online"
• United Kingdom Market-Wide Exercise 2009 Report
• Franklin Fellows Program, U.S. Department of State
• Chip and PIN is Broken
• National Cyber Defense Financial Services Workshop Final Report
• Disasters and Emergencies Newsroom
• CYBER STORM II Final Report 2-1-10
• Social Media - FINRA Regulatory Notice
• Annual Threat Assessment of the US Intelligence Community for the Senate Select Committee on Intelligence
• "The quick and the dead: when reaction beats intention" Proceedings of the Royal Society
• Quadrennial Homeland Security Review - Final Report
• United Kingdom Office of Fair Trading – Scamnesty
• City of London Police Joint warning with FSA over boiler rooms

January 2010
For Your Information

• Issue 48: January 2010 NIPP News
• In the Crossfire: Critical Infrastructure in the Age of Cyber War
• How not to design an authentication protocol
• Cyber crime : A clear and present danger
• Prevention of WMD Proliferation and Terrorism Report Card
• (BN) U.K. Terror Threat Level System Raised to Severe, MI5 Says
• National Security Threats in Cyberspace
• United Kingdom Communications Electronics Security Group
• RSA Global Survey
• National Energy Sector Cyber Organization
• China-linked cyberattack: What you need to know | Article
• Useful guidance on administering FEMA disaster funds properly
• PandaLabs 2009 Report
• Release of the Security Review Conducted After the Failed Christmas Terrorist Attack : Summary
• Major Management Challenges Facing the Department of Homeland Security
• Who Regulates Whom? An Overview of U.S. Financial Supervision
• ICSJWG Newsletter

December 2009
For Your Information

• Executive Order : Classified National Security Information
• Promoting Openness and Accountability by Making Classification a Two-Way Street
• Issue 47: November/December 2009 NIPP Newsletter
• Priorities for the National Vaccine Plan
• How Much Information? 2009 Report on American Consumers
• CCIP eBulletin 90
• Influenza Pandemic: Monitoring and Assessing the Status of the National Pandemic Implementation Plan Needs Improvement. GAO-10-73, November 24 | Highlights
• Pop-Up Security Warnings Pose Threats
• Redacting with Confidence: How to Safely Publish Sanitized Reports Converted From Word to PDF
• Community Emergency Response Teams (CERT)
• Measuring the Effectiveness of In-the-Wild Phishing Attacks
• Presidential Proclamation - Critical Infrastructure Protection Month
• Mapping the Mal Web

November 2009
For Your Information

• 2009 Report To Congress of the U.S.-China Economic and Security Review Commission
• Bird Flu Study
• GAO report
• Cybersecurity:Preventing Terrorist Attacks and Protecting Privacy in Cyberspace
• Critical Infrastructure Protection
• Virtual Criminology Report 2009
• Secretary Timothy Geithner Remarks at the Financial Fraud Enforcement Task Force Event As Prepared for Delivery
• CCIP eBulletin 89
• The New England Journal of Medicine H1N1 Publications
• Application Usage and Risk Report: Fall 2009
• ALLEGED INTERNATIONAL HACKING RING CAUGHT IN $9 MILLION FRAUD
• RISEPTIS Report
• National Cybersecurity and Communications Integration Center
• Emergency Public Notice
• Hurricane Ida - Proclamation
• Royal Canadian Mounted Police “Internet Security”
• Canadian Cyber Incident Response Centre
• Canadian Security Intelligence Service
• Japan INFORMATION-TECHNOLOGY PROMOTION AGENCY
• Japan National Police Agency
• Japan Computer Emergency Response Team
• Korea Internet Security Center
• Australian Internet Security Initiative
• Australian Government online security and fraud awareness initiatives
• Australian High Tech Crime Centre
• Australia Computer Emergency Response Team
• Australia Stay Smart Online Initiative
• New Zealand Centre for Critical Infrastructure Protection
• Monetary Authority of Singapore “INTERNET BANKING &TECHNOLOGY RISK MANAGEMENT GUIDELINES VERSION 3.0”
• UK Police Secured by Design Initiative
• INTERPOL : IT security and crime prevention methods
• INTERPOL : Company Information Technology (IT) crime prevention checklist
• THE UNITED KINGDOM THREAT ASSESSMENT OF ORGANISED CRIME : (pp 52-55; 58-60 and "Technology-enabled Crime") speak to cybercrime
• UK Contactless mobile phone payments - Best practice guidelines
• Garlik UK Cybercrime Report 2009
• Fast Track Process for Internationalized Domain Names Launches Nov 16
• U.S. Department of Homeland Security Channel

October 2009
For Your Information

• Critical Infrastructure Protection
• President Obama Signs Emergency Declaration for H1N1 Flu
• Critical Infrastructure Protection
• Influenza Pandemic
• Special Alerts
• USDA confirms H1N1 in Minnesota pigs
• Symantec Report on Rogue Security Software July 2008 - June 2009
• On guard On-line
• FBI-DHS Private Sector Advisory : Document | PDF
• Telecommunications: Current Broadband Measures Have Limitations and New Measures Are Promising but Need Improvement | Highlights
• OSHA statement on H1N1 Inspections
• POTUS Video
• FINRA Guidance on Pandemic Preparedness
• Updated Guidance on Pandemic Preparedness in the Workplace from the U.S. Equal Employment Opportunity Commission
• FBI-DHS Suspicious Behavior Indicators (UNCLASSIFIED)
• IRS Disaster Relief for American Samoa

September 2009
For Your Information

• Third and Final QHSR National Dialogue Begins on September 28
• Monthly Activity Summary - August 2009
• Updated Interim Recommendations for the Use of Antiviral Medications in the Treatment and Prevention of Influenza for the 2009-2010 Season
• Good Practice Guide Network Security Information Exchanges
• Ccip-ebulletin
• National Cyber Leap Year Summit reports
• Our Intelligence makes your decisions
• Guidelines for Secure Use of Social Media by Federal Departments and Agencies
• H1N1 Preparedness Webcast for Small Businesses
• HSAS 60 Day Review Report
• New Guidance for Small Business
• National Preparedness Month
• ATM crime
• Ability to Avoid Severe Operational Problems.from Reduced Workforce for 2 Weeks.Comparison by Size of Firm
• Business Preraredness: Novel Influenza A (H1N1)
• The Challenges of the 2009-H1N1 Influenza and its Potential Impact on Small Businesses and Healthcare Providers
• Be Ready DC Publication
• Questions & Answers: Revised Recommendations for the Use of Influenza Antiviral Drugs
• Updated Interim Recommendations for the Use of Antiviral Medications in the Treatment and Prevention of Influenza for the 2009-2010 Season
• The 2009 Influenza Pandemic: Selected Legal Issues | Abstract
• FEMA Course: IS-520 Introduction to Continuity of Operations Planning for Pandemic Influenzas
• Framework for Dealing with Disasters and Related Interdependencies Final Report | Transmittal Letter
• Monthly Activity Summary - July 2009
• GAO-09-811 Disaster Recovery: Experiences from Past Disasters Offer Insights for Effective Collaboration after Catastrophic Events - Adobe Acrobat Professional
• 2009 Breaches Involving U.S. Financial Institutions
• Second Quadrennial Homeland Security Review National Dialogue

August 2009
For Your Information

• Presentation of Richard Hatchett, Director of Medical Preparedness Policy over at the Resiliency Directorate
• OCC News Release: OCC Allows National Bank Offices Affected by California Fires to Close : Proclamation | OCC Bulletin 2008-26
• CBP Border Search of Electronic Devices Containing Information
• ICE Border Searches of Electronic Media
• Privacy Impact Assessment: Border Searches of Electronic Information
• Flu : Planning Checklists
• Issue 45: August 2009 NIPP Newsletter
• Information Technology Sector Baseline Risk Assessment
• Global Plans
• UK Guide on H1N1
• President's Council of Advisors on Science and Technology REPORT TO THE PRESIDENTON U.S. PREPARATIONS FOR 2009-H1N1 INFLUENZA
• Working Paper No 374 : How do different models of foreign exchange settlement influence the risks and benefits of global liquidity management?
• WHO Guidelines for Pharmacological Management of Pandemic (H1N1) 2009 Influenza and other Influenza Viruses
• A risk-based methodology for payment systems oversight
• CDC Guidance for Responses to Influenza for Institutions of Higher Education during the 2009-2010 Academic Year
• Preparing for the Flu: A Communication Toolkit for Institutions of Higher Education
• Guidance for Businesses and Employers to Plan and Respond to the 2009 - 2010 Influenza Season
• Preparing for the Flu: A Communication Toolkit for Businesses and Employers
• Contaminated banknotes
• Alleged International Hacker Indicted for Massive Attack on U.S. Retail and Banking Networks
• An accurate and nondestructive GC method for determination of cocaine on US paper currency
• Recommended Security Controls for Federal Information Systems and Organizations
• Updated Federal Guidelines for 2009 H1N1 Influenza in Schools Offer Many Options
• Contaminated Currency and Coin
• OMB-OSTP S&T Priorities Policy Statement

July 2009
For Your Information

• A Quantitative Assessment of the Efficacy of Surgical and N95 Masks to Filter Influenza Virus in Patients with Acute Influenza Infection

• OBP Training Fact Sheet-w-planned activities (31-07-09)

• Influenza Pandemic: Gaps in Pandemic Planning and Preparedness Need to Be Addressed, by Bernice Steinhardt, director, strategic issues, before the House Committee on Homeland Security. GAO-09-909T, July 29
• SAFECode's paper on Supply Chain Integrity Framework
• Quadrennial Homeland Security Review: Feedback Opportunity
• Cyber Security Report
• Cisco Advice on DDOS Prevention
• Proof of Concept Centers

June 2009
For Your Information

• GAO Reports about Information Management:CORRESPONDENCE Federal Information Security Issues. GAO-09-817R, June 30 | Reports and Testimonies | Help | E-mail Updates
• Nuclear Detonation Planning Guide
• Continued Federal Efforts Are Needed to Protect Critical Systems and Information. GAO-09-835T, June 25
• Cyber Security Strategy of the United Kingdom
• National Security Strategy of the United Kingdom - II
• National Security Strategy of the United Kingdom - I
• National Security Strategy 2009
• 2009 Payments Fraud Survey
• DHS - Bomb Threat Chart
• Pandemic Guidance
• "The Role of the Department of Defense During a Flu Pandemic," June 4, 2009
• Emerging Threats and Security Planning: How Should We Decide What Hypothetical Threats to Worry About?
• Interim Guidance to Assist Airline Flight Deck and Cabin Crew
• Security Economics and Critical National Infrastructure
• Influenza Pandemic : GAO Report
• Pandemic Flu Preparedness : LESSONS FROM THE FRONTLINES

May 2009
For Your Information

• 2008 Annual Report - Energy Sector Control Systems Working Group
• Classified Information and Controlled Unclassified Information Review
• 60 day Cyber Space review
• Torpig Research Paper
• U.S. Treasury Department Advice for Social Security Check Recipients
• Monthly Activity Summary - April 2009
• 1976 Swine Flu report
• Terrorism Protective Measures
• DOE's "Comparing the Impacts of the 2005 and 2008 Hurricanes on U.S. Energy Infrastructure."
• NCTC -- 2008 Report on Terrorism
• CDC Flyer: Clean Hands Save Lives
• Information Security: Cyber Threats and Vulnerabilities Place Federal Systems at Risk. GAO-09-661T, May 5 | Highlights
• Update on School (K - 12) Dismissal and Childcare Facilities: Interim CDC Guidance in Response to Human Infections with the 2009 Influenza A H1N1 Virus
• Guidance from CDC : What to Do if you get flu like symptoms
• Attorney General memoranda on Federal authority to address Pandemic Influenza
• Guidance for Preventing Transmission of H1N1 Influenza in the Workplace
• The Preparedness Report - Volume 7 Issue 9
• Update on School (K – 12) Dismissal and Childcare Facilities: Interim CDC Guidance in Response to Human Infections with the 2009 Influenza A H1N1 Virus

April 2009
For Your Information

• U.S. Department of Homeland Security Department Response to the H1N1 Flu Update
• H1N1 Global Outbreak Map
• Guidance on Preparing Workplaces for an Influenza Pandemic
• Department Response to H1N1 (Swine) Flu
• Video on improved map and H1N1 swine flu current and future evolution
• Secretary Napolitano's Remarks at the H1N1 Flu Outbreak Media Briefing
• Antiviral Drugs and Swine Influenza
• New York City Department of Health and Mental Hygiene ; Swine Flu Information
• THE FBIIC/FSSCC PANDEMIC FLU EXERCISE OF 2007 AFTER ACTION REPORT
• Swine Influenza information
• Interim CDC Guidance for Nonpharmaceutical Community Mitigation in Response to Human Infections with Swine Influenza (H1N1) Virus
• Swine Influenza information from U.S Department of Health & human Services
• Swine Influenza - More information
• Pandemic preparedness
• US-CERT Monthly Summary Activity - March 2009
• Melissa Hathaway's comments at RSA
• Office of Information Policy - FOIA Post
• Lessons from a Storm - Banking for Safety Video
• 2009 Data Breach Investigations Report
• Hurricane Ike in Texas and Louisiana: Mitigation Assessment Team Report, Building Performance Observations, Recommendations, and Technical Guidance
• Vulnerability Summary for the Week of April 6, 2009
• OBP Training Fact Sheet with Planned Activities
• April Newsletter - Security of Credit Card Transactions
• Electricity Grid in U.S. Penetrated By Spies

March 2009
For Your Information

• US-CERT Cyber Security Bulletin SB09-096 -- Vulnerability Summary for the Week of March 30, 2009
• 2008 Internet Crime Report
• Information on North Dakota Severe Storms and Flooding
• Information on Minnesota Severe Storms and Flooding
• A Comprehensive Study of Financial Data Security Breaches in the United States 3-30-09
• Conficker Computer Worm Detection Tool
• Notice to ND bankers from Commissioner
• Reporting Stimulus Fraud
• Information Bulletin - April 1, 2009 - Conficker C Activation
• OCC News Release: OCC Allows National Bank Offices Affected by Floods in Upper Midwest to Close
• Issue 41: March 2009 NIPP Newsletter
• Report of the Interagency Working Group on Digital Data
• US CERT Monthly Activity Summary for February 2009
• GAO - National Cybersecurity Strategy: Key Improvements Are Needed to Strengthen the Nation's Posture.GAO-09-432T, March 10 | Highlights
• Optimised to Fail : Card Readers for Online Banking
• Influenza Pandemic: Sustaining Focus on the Nation's Planning and Preparedness Efforts. GAO-09-334, February 26 | Highlights
• DISASTER RECOVERY: Past Experiences Offer Recovery Lessons for Hurricanes Ike and Gustav and Future Disasters
• Enisa Country Reports 2009

February 2009
For Your Information

• RSA Online Fraud Report
• I3P National Cyber Security
• 2009 NIPP - Electronic Copy Available
• Microsoft Document for DNSSEC on the Windows Server 2008 R2 and Windows 7 operating systems
• US-CERT National Cyber Alert System Monthly Activity Summary
• Planning Guidance for Response to a Nuclear Detonation
• General Protective Measures For Vehicle Borne Improvised Explosive Devices (VBIED)

January 2009
For Your Information

• GAO Reports about Information Management - Information Security: Further Actions Needed to Address Risks to Bank Secrecy Act Data. GAO-09-195, January 30
• McAfee Report: Unsecured Economies: Protecting Vital Information
• North American PI Plan
• Top Private-Sector Security Concerns in 2008 : Global Security Concerns
• Issue 39: January 2009 NIPP Newsletter
• US-CERT Public Trends and Analysis Report FY08 Q4
• January 2009 Cyber Security Tips Newsletter - Challenge or Secret Questions
• Pandemic Planning Update VI
• Monthly Activity Summary
• CWE/SANS TOP 25 Most Dangerous Programming Errors
• Which? Computing
• United Kingdom : British Medical Association - "Preparing for Pandemic Influenza"
• NCTC 2009 Counterterrorism Calendar
• United Kingdom: MI5 Security Service
• Georgia
• CERT - Georgia
• CERT - Armenia
• CERT - Turkey
• CERT - Estonia
• Twitter Blog
• Learning More About the Underground Economy: A Case-Study of Keyloggers and Dropzones
• United Kingdom Ministry of Defence : Defence Science and Technology Laboratory
• Science: Stable Introduction of a Life-Shortening Wolbachia Infection into the Mosquito Aedes aegypti

December 2008
For Your Information

• Digital World, Digital Life - December 2008
• France Telecom -- Three undersea cables cut: traffic greatly disturbed between Europe and Asia/Near East zone
• ENISA Quarterly Review
• Cisco 2008: Annual Security Report
• Microsoft confirms that all versions of IE have critical new bug
• Microsoft Security Vulnerability Research & Defense
• Microsoft Security Response Center (MSRC)
• Pew Internet & American Life Project - "The Future of the Internet III"
• Government of Australia - Online and Communications Council "Framework for the collaborative development and use of broadband in Australia"
• Government of Australia - Communications Infrastructure and Services Availability Report 2006-07
• Federal Trade Commission Alert - "Free Security Scan" Could Cost Time and Money
• Federal Trade Commission - Court Halts Bogus Computer Scans
• Common Cold Centre
• A Report of the CSIS Commission on Cybersecurity for the 44th Presidency
• "Asteroid Threats: a Call for Global Response"
• Internet Corporation for Assigned Names and Numbers
• Commission on the Prevention of WMD Proliferation and Terrorism:The Report of the Commission on the Prevention of WMD Proliferation and Terrorism
• European Commission - "Fight against cyber crime"

November 2008
For Your Information

• European Commission - "Fight against cyber crime"
• The Network Topology of CHAPS Sterling
• CIIN-08-309-01-Using Caution with USB Drives
• Symantec Report on the Underground Economy July 07–June 08
• 2008 REPORT TO CONGRESS of the U.S.-CHINA ECONOMIC AND SECURITY REVIEW COMMISSION
• Future of Privacy Forum
• Issue 38: November 2008 NIPP Newsletter
• Online criminals can make £14,500 from average UK internet user
• UK Energy Infrastructure Questionnaire
• Arbor Networks - Worldwide Infrastructure Security Report Volume IV, 2008
• Spamalytics: An Empirical Analysis of Spam Marketing Conversion
• A Guide to Names and Naming Practices
• US-CERT - CIIN-08-309-01: Using Caution with USB Drives
• Reconsidering Physical Key Secrecy: Teleduplication via Optical Decoding
• Microsoft Security Intelligence Report volume 5 (January – June 2008)
• United Kingdom - "Corporate IT Forum Survey: Is organised electronic crime on the rise?"
• United Kingdom - "The Frontline In The Fight Against E-Crime: Lessons From Top Organisations"

October 2008
For Your Information

• Stock_taking_final_report_2008
• Garlik UK Cybercrime Report 2008
• United Kingdom Information Commissioner's Office - Speech of 29 October 2008
• Internet Watch Foundation
• Critical Infrastructure Information Notice- CIIN-08-297-01
• Microsoft Security Bulletin MS08-067
• Issue 37: October 2008 NIPP Newsletter
• Mail Handling Procedures File #1
• Mail Handling Procedures File #2
• Ecole Polytechnique Federale de Lausanne - "Compromising Electromagnetic Emanations of Keyboards"
• FBI Statement
• USPS Information on How to Handle Suspicious Mail
• USPS Poster on How to Handle Suspicious Mail
• Social Security Numbers Are Widely Available in Bulk and Online Records, but Changes to Enhance Security Are Occurring. GAO-08-1009R, September
• Social Security Numbers: Transfers and Sales of Public Records That May Contain Social Security Numbers (GAO-08-1004SP, September 2008), an E-supplement to GAO-08-1009R. GAO-08-1004SP, September 19
• SwA Community Resources and Information Clearinghouse
• Enhancing the Development Life Cycle to Produce Secure Software - Version 2, October 3, 2008
• Fundamental Practices for Secure Software Development: A Guide to the Most Effective Secure Development Practices in Use Today - Released October 8, 2008
• Software Assurance in Acquisition: Mitigating Risks to the Enterprise - Version 1.01, October 2008
• Practical Measurement Framework for Software Assurance and Information Security - Version 1.0, October 2008
• Practical Measurement Framework for Software Assurance and Information Security - Released October 1, 2008
• Engineering for System Assurance - Version 1.0, October 1, 2008
• Common Weakness Enumeration - Released October 14, 2008
• Financial Impact of Cyber Security
• United Kingdom - Speech by the Home Secretary
• Georgia Tech Information Security Center - "Emerging Cyber Threats Report for 2008"
• Risk-Based Capital: New Basel II Rules Reduced Certain Competitive Concerns, but Bank Regulators Should Address Remaining Uncertainties. GAO-08-953, September 12 | Highlights
• Business Continuity Course
• New England Journal of Medicine - "Antigenically Distinct MF59-Adjuvanted Vaccine to Boost Immunity to H5N1"
• Consumer Alert
• Information Technology: Management Improvements Needed on the Department of Homeland Security's Next Generation Information Sharing System. GAO-09-40, October 8 | Highlights
• Government Accountability Office - "GAO’s Efforts to Assist the 111th Congress"
• United Kingdom All Party Parliamentary Group on Identity Fraud - Identity Fraud Report
• 13th European Symposium on Research in Computer Security
• Radboud University Nijmegen - "Dismantling MIFARE Classic"
• Radboud University Nijmegen - "Making the Best of Mifare Classic"
• Avoiding Social Engineering and Phishing Attacks
• Recognizing and Avoiding Email Scams
• Department of Justice Press Release - October 2, 2008
• United Kingdom Home Office - "Fighting back against electronic crime"
• University of Toronto, Munk Centre for International Studies - "Breaching Trust"
• General Protective Measures For Vehicle Borne Improvised Explosive Devices (VBIED)
• Vehicle Borne IED Identification Guide: Parked Vehicles
• Update on Anthrax Preparedness
• State of Washington Attorney General - Scareware
• International Association of Chiefs of Police - “To Protect and Defend”
• Infrastructure Resiliency Guide
• Connecting Research in Security to Practice (CRISP) Report - Lost Laptops = Lost Data

September 2008
For Your Information

• Influenza Pandemic: HHS Needs to Continue Its Actions and Finalize Guidance for Pharmaceutical Interventions. GAO-08-671, September 30.
• 2007/2008 NIPP Update
• House Committee on Homeland Security - "Cybersecurity Recommendations for the Next Administration"
• European Commission - Second periodic review of the scope of universal service in electronic communications networks and services
• UK Border Agency, "Identity cards for foreign nationals"
• Proceedings of Human Factors and Ergonomics Society
• United Kingdom Information Commissioner's Office calls on consumers to take control of their personal information
• Federal Plan for Advanced Networking Research and Development
• FSSCC Research Agenda for the Banking and Finance Sector
• Delivering super-fast broadband in the UK
• FY08 DHS Protective Security Coordination Division Training 19 September 2008
• Issue 36: Aug/Sept 2008 NIPP Newsletter
• National Counterterrorism Center - Historical references
• US Postal Service closings related to Hurricane Ike
• Mitigation Monday - Defense Against Malicious E-mail Attachments, Release 1
• National Security Professional Development
• Shadowserver Foundation
• Louisiana Reentry Procedures
• Do Zebras get more Spam than Aardvarks?
• Ignoring the Great Firewall of China
• Sampled Traffic Analysis by Internet-Exchange-Level Adversaries

August 2008
For Your Information

• ILTF Brochure
• Upcoming Cyber Security Conferences
• Bulletin of the Seismological Society of America - Observations and Tectonic Setting of Historic and Instrumentally Located Earthquakes in the Greater New York City–Philadelphia Area
• FEMA OPB Future Outlook
• Unified Command Incident Situation Report 08/21/08 at 1600 hrs
• NOAA Tropical Storm Fay 1100L 08/21/08
• Unified Command Incident Situation Report 08/21/08 at 1000 hrs
• Unified Command Incident Situation Report 08/20/08
• OCC Allows National Bank Offices Affected by Hurricane Fay to Close
• Office Closing Proclamation - TS/Hurricane Fay
• WMD Radiological/Nuclear Awareness Train-the-Trainer Responder Operations
• Market-wide Exercise 2006

July 2008
For Your Information

• US Air Force Weather
• National Academy of Public Administration
  "Addressing the 2009 Presidential Transition at the Department of Homeland Security"
• Incorporated Research Institutions for Seismology Global Seismic Monitor
• Earthquake Safety
• Products for DNS Issue
• Homegrown Terrorist Threat Report
• U.S. Geological Survey Earthquake Hazards Program & NWS Tsunami Centers
• Japan Meteorological Agency
• Tropical Storm Dolly SITREP #1 (0600 EDT 24 Jul 08)
• HHS and DHS on Pandemic Vaccination Allocation
• LA City Readiness Report
• TX SCU update and advisory
• OCC Allows National Bank Offices Affected by Hurricane Dolly to Close
• Analyzing Websites for User-Visible Security Design Flaws
• Annual Process Control Systems Forum
• SCIENCE AND THE TERRORIST CHALLENGE – OPTIONS FOR POLICY AND THEIR IMPLICATIONS.
• REGISTER NOW for the Next National Webcast on Voice Over-IP!
• Influenza Pandemic: Federal Agencies Should Continue to Assist States to Address Gaps in Pandemic Planning. GAO-08-539, June 19
• House of Lords: Diseases Know No Frontiers: How effective are Intergovernmental Organisations in controlling their spread?
• US-CERT Advisory 08-04- BlackBerry Security Advisory
• On the State of Public Health: Annual Report of the Chief Medical Officer 2007, Chapter 5
• Data Sharing Review
• Using Wireless Technology Securely
• Swiss Federal Institute of Technology Zurich Understanding the Web browser threat: Examination of vulnerable online Web browser populations and the "insecurity iceberg"
• Midwest Flood Update
• Power of Information Task Force Competition
• Power of Information Task Force
• CIKR Pandemic Influenza Planning Update Webinar
• The President’s National Science and Technology Council, Subcommittee on Disaster Reduction
• U.S. Forest Service Fire and Aviation Management Program
• National Interagency Fire Center
• Further Efforts Needed to Integrate Planning for and Response to Disruptions on Converged Voice and Data Networks
• Methods for Sharing Dynamic IP Address Space Information with Others
• NOAA Midwest Flooding Situation and Outlook 1600L 061808
• Internet Corporation for Assigned Names and Numbers
• StopBadware.org - a partnership amongst academic and research organizations
• United Kingdom Foreign & Commonwealth Office’s Travel Advice Notices

June 2008
For Your Information

• Electromagnetic Interference From Radio Frequency Identification Inducing Potentially Hazardous Incidents in Critical Care Medical Equipment
• June 2008 NIPP Newsletter
• U.S. Army War College Guide to National Security Issues, Vol. II: National Security Policy and Strategy
• U.S. Army War College Guide to National Security Issues, Vol. I: Theory of War and Strategy
• Brochure - Regional Coalitions
• Federal Register Notice: Notice of Availability of Draft Guidances to Assist in Preparation for an Influenza Pandemic
• Dominant Cyber Offensive Engagement and Supporting Technology
• MWE Progress Report

May 2008
For Your Information

• PREPARING FOR PANDEMIC INFLUENZA:SUPPLEMENTARY GUIDANCE FOR LOCAL RESILIENCE FORUM PLANNERS
• European Union Electronic Identity Management
• CIA World Leaders Reference Guide
• TRENDS AND ANALYSIS REPORT
• Sinagapore Exercise
• Seminar on Countering Insider Threats
• Issue 33: May 2008 NIPP Newsletter
• Security Configuration Guides
• Human Security Brief 2007
• UCLA CENTER FOR INFORMATION AND COMPUTATION SECURITY
• Definitive Care for the Critically Ill During a Disaster
• 2008 Emergency Response Guidebook
• First pre-pandemic vaccine approved to help protect against pandemic influenza
• OECD Internet Address Space Report
• NATO opens new centre of excellence on cyber defence
• US Senate Violent Islamist Extremism, The Internet, and the Homegrown Terrorist Threat
• US JSSRT Security and Suitability Process Reform Initial Report 4-30-08
• US DOS Reports on Terrorism 2007
• Journal of Biological Chemistry, April 22, 2008
• Japan Meteorological Agency Earthquake of 8 May 2008
• Durham University Institute of Hazard and Risk Research
• Electronic Crime Scene Investigation: A Guide for First Responders, Second Edition
• WI-FI SECURITY
• DHS ICE Investigations Mission Roles in Multi Agency Areas of Responsibility
• Keyboards harbour harmful bacteria
• Country Reports on Terrorism
• Federal guidence to assist states in improving state-level pandemic influenza operating plans
• New 18th Sector - Federal Register Notice
• CYBER ALERT
• Report on fraud regarding non cash means of payments in the EU
• Internet Traffic Studies Site

April 2008
For Your Information

• Next Generation New Build: Promoting higher speed broadband in new build housing developments
• Changes in Espionage by Americans: 1947-2007
• Fact Sheet: Protecting Our Federal Networks Against Cyber Attacks
• Global Information Technology Report
• APWG's Second Annual Counter eCrime Operations Summit (CeCOS II)
• 8th Software Assurance Forum
• Director for National Intelligence Information Sharing Strategy
• International Criminal Police Organization
• Protected Critical Infrastructure Information (PCII) Program Survey
• Being Human: Human-Computer Interaction in the year 2020
• Carnegie Mellon link
• Exploring Identity Management: Global Landscape and Implications for Stakeholder Engagement Around the National Response Framework
• National Cyber-Forensics and Training Alliance

March 2008

• NIST/ITL Bulletin
• The U.S. Department of Transportation's Federal Highway Administration (FHWA)
• State Department Travel Warnings
• CYBER SOLIDARITY: Five Nations, One Mission
• Blueprint for a Modernized Financial Regulatory Structure
• National Security Strategy of the United Kingdom
• Pandemic Economics: The 1918 Influenza and Its Modern-Day Implications
• Identity Theft
• Joint Task Force - Global Network Operations
• The Center for Homeland Defense and Security
• Republic of the Philippines
  Department of Health
• 2nd International Forum Against Cybercrime - France
• SFH on class suspension in primary schools and kindergarten due to flu
• Secretariat-General for National Defense Cyber Security Portal
• Ministry for Culture and Communications Web Surf Intelligently Portal
• DHS FEMA US Fire Administration Emergency Incident Rehabilitation
• Report: Insider Threat Study: Illicit Cyber Activity in the Government Sector
• Report: Insider Threat Study: Illicit Cyber Activity in the Information Technology and Telecommunications Sector
• Podcast: Significant insider threat vulnerabilities can be introduced (and mitigated) during all phases of the software development life cycle.
• Research document on pandemic influenza and the financial services sector
• United Nations Food & Agriculture Organization
• Survey of Federal Chief Information Officers
• FFIEC Business Continuity Plan
• Australian Federal Police
• Terrorist Recognition Cards
• Research paper on cyber security
• Increase to Netherlands Terror Threat Level
• Summary of Terrorist Threat Assessment Netherlands 12
• Counterterrorism Alert System in the Netherlands

February 2008

• A study of the effects of financial crises on health
• Computer Crime Unit
• Computer Laboratory Security Group
• Earthquakes in the British Isles
• ODNI report to Congress
• Pandemic Disease
• International Telecommunications Union
• U.S. State Department's notice "Remain in Country During a Pandemic."
• Investigative Programs Cyber Investigations
• Internet Safety
• FBI warns of Valentines Day Storm Worm virus
• Submarine Cable Cut Repairs - Bulletin
• Annual Threat Assessment of the Director of National Intelligence
• FEMA RELEASES ON-LINE TRAINING COURSE FOR THE NATIONAL RESPONSE FRAMEWORK
• Update on Submarine Cable Cut Repairs
• Update on Submarine Cable Cut
• Submarine Cable Map
• Important Change in International Land and Sea Travel Document Procedures
• FBBIIC / FSSCC Pandemic Flu Exercise of 2007 After Action Report
• FERC Mandatory Reliability Standards for Critical Infrastructure Protection
• National Response Framework, Resource Center
• Important Change in International Land and Sea Travel Document Procedures
• An increase in Internet schemes purportedly from the FBI
• Preparing and Protecting Security Personnel in Emergencies
• Occupant Emergency Plan guide

What's New Archive

FBIIC looks forward to your feedback on this website.