Category: Police

MIL-OSI United Kingdom: Nine imprisoned for operating illegal Lincolnshire waste site
Source: United Kingdom – Executive Government & Departments

Nine people have been sentenced for the operation of an illegal waste site in rural Lincolnshire, following an investigation by the Environment Agency.
Aerial view of the site during the raid, showing burning waste and a lorry depositing waste.

The defendants were sentenced today (Friday 18 October) at Nottingham Crown Court to a collective 11 years of imprisonment, including three family members who controlled the illegal waste site at Long Bennington near Newark.

The investigation, named Operation Lord, saw Environment Agency officers spend months building a picture of evidence of the illegal waste site on Fen Lane, Long Bennington.

The findings of the investigation led to 12 people and one company being charged, of which 10 pleaded guilty. Following an eight-week trial at Nottingham Crown Court which concluded on 28 June 2024, the remaining three defendants were found guilty.

Environment Agency officers conducted a raid on the site in April 2020 with Lincolnshire Police. Intelligence revealed lorry-loads of shredded waste were regularly being accepted onto the site the size of a football pitch.

Waste was burned daily and buried. This activity intensified during the first Coronavirus lockdown in March 2020, and so action was taken to bring it to a halt.

Environment Agency officers also seized an excavator and a lorry which were actively depositing more waste at the site when officers arrived. Two arrests were made.

Smoke over the illegal waste site after the burning of waste. Residential properties are in view nearby.

Prosecution brought against those involved

The prosecution was brought against individuals that ran the illegal waste site; burned the waste; drove waste to the site and the landowners. Two waste brokers were also prosecuted.

The Canner family trio of father Paul (53), mother Judith (55) of Main Road, Bilstone, Nuneaton, and son Joshua (29) of Laburnum Avenue, Newbold Verdon, ran the illegal waste site.

Paul Canner was sentenced today to 26 months in prison, while Judith and Joshua were each sentenced to 16 months. Seven of the nine defendants were sentenced to immediate imprisonment.

Sentencing the defendants, His Honour Judge Coupland found that the:

offending was deliberate for all nine defendants and the harm caused was of the highest level.

the illegal activity was deliberately concealed physically and with falsified paperwork.

the illegal waste site was close to nearby residents, putting them at harm from toxic fumes.

the repeated nature of the offences over a long period of time, and the financial gain obtained by the operation aggravated the offences for all defendants.

His Honour Judge Coupland said that ‘the custody threshold had been crossed in all cases’.

Site inflicted ‘misery on the local community’

Leigh Edlin, Area Director for Lincolnshire and Northamptonshire, said:

This was a serious illegal waste site which was highly organised and involved multiple offenders.

Those involved sought to profit from Covid restrictions at the cost of the environment and by inflicting misery on the local community. The site and its operators had a major impact on legitimate businesses and our regulatory work.

Our enforcement teams will continue to tackle serious illegal waste crime by working with partners such as Lincolnshire Police, fire services and councils, as we did in this case to hold those responsible to account.

Anyone who suspects illegal waste activity is reminded to report it to our 24-hour hotline. Call 0800 80 70 60, or anonymously contact Crimestoppers on 0800 555 111.

Background

Sentences issued to defendants on 18 October 2024:

Paul Canner, aged 53 of Main Road, Bilstone, Nuneaton, pleaded guilty to 1) knowingly causing the deposit of waste at the site between 1 October 2019 and 1 May 2020, and 2) knowingly causing the operation of the illegal waste site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 26 months’ immediate imprisonment.

Judith Canner, aged 55 of Main Road, Bilstone, Nuneaton, pleaded guilty to knowingly causing the deposit of waste at the site between 1 October 2019 and 1 May 2020. She was sentenced at Nottingham Crown Court to 16 months’ immediate imprisonment.

Joshua Canner, aged 29 of Laburnum Avenue, Newbold Verdon, pleaded guilty to knowingly causing the deposit of waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 16 months’ immediate imprisonment.

Sonial Surpal, aged 52 of Round House Road, Coventry, pleaded guilty to depositing waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 13 months’ immediate imprisonment.

Luke Woodward, aged 37 of Willow Road, Nuneaton, pleaded guilty to depositing waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 11 months’ immediate imprisonment.

Marcus Chapman, aged 39 of Egmanton Drive, Mansfield, pleaded guilty to disposing of the waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 12 months’ imprisonment, suspended for 18 months. He has been ordered to do 200 hours of unpaid work.

Peter Wainwright, aged 32 of Dexter Lane, Hurley, Atherstone, Warwickshire pleaded guilty to disposing of waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 16 months’ immediate imprisonment.

Nathan Jones, aged 43 of Carnation Road, Shirebrook, Mansfield, pleaded guilty to disposing of waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 16 months’ immediate imprisonment.

Daniel Lippitt, aged 55 of Lubbersthorpe Road, Leicester, pleaded guilty to depositing waste at the site between 1 October 2019 and 1 May 2020. He was sentenced at Nottingham Crown Court to 9 months’ imprisonment, suspended for 18 months. He has been ordered to do 200 hours of unpaid work.

The following defendants, who were the landowners, will be sentenced on 16 December 2024 at Nottingham Crown Court:

James Baggaley, aged 38 of Back Lane, Foston, pleaded not guilty but was found guilty in June 2024 after a trial of 1) knowingly permitting the deposit of waste at the site between 1 October 2019 and 1 May 2020, and 2) knowingly permitting the operation of the illegal waste site between 1 October and 14 April 2022.

Marc Greenfield, aged 46 of Fosse Road, Brough, pleaded guilty to knowingly permitting the operation of the illegal waste site between 1 October 2019 and 14 April 2022.

Proceeds of crime proceedings have commenced against all 13 defendants and the following two defendants will be sentenced at the outcome of those proceedings:

Robert Malone, aged 41 of Ribble Prospect, Clitheroe, the sole director of NWR 2004 Limited, pleaded not guilty but was found guilty in June 2024 after a trial of failing to comply with the waste duty of care between 1 October 2019 and 1 May 2020.

Fletcher Plant Limited pleaded not guilty but was found guilty in June 2024 after a trial of failing to comply with the waste duty of care between 1 October 2019 and 1 May 2020.

Share this page

The following links open in a new tab

Share on Facebook (opens in new tab)

Share on Twitter (opens in new tab)

Updates to this page

Published 18 October 2024
MIL OSI United Kingdom –
January 24, 2025
MIL-OSI Security: Pair Face Charges In Overdose Death of Northern Virginia Teen

Source: Office of United States Attorneys

Bessy Jimenez Mejia and Liam Conway Distributed Fentanyl that Killed Cayden Foster in 2023

CHARLOTTESVILLE, Va. – A pair of individuals responsible for distributing the fatal dose of fentanyl that killed an 18-year-old high school student in 2023 have been criminally charged with the teen’s death.

In separate court proceedings, the United States Attorney’s Office charged two people for the January 2023 overdose death of Cayden David Foster, a resident of Centreville, Virginia.

On August 28, 2024, a grand jury sitting in Charlottesville, returned a one-count Indictment charging Bessy Jimenez Mejia, 26, of Harrisonburg, Virginia, with distribution of fentanyl resulting in the death of Foster. If convicted, Mejia faces a mandatory minimum sentence of 20 years in federal prison.

The following day, Liam Conaway, 22, of Harrisonburg, Virginia pled guilty to a one-count Information charging him with distribution of fentanyl.

Mejia was arrested this week and made her initial court appearance.

According to court documents, in January 2023, Foster was an 18-year-old high school student living in Northern Virginia. Foster contacted Conaway, who was then a student at James Madison University (JMU), to purchase fentanyl pills. Conaway and Foster had previously consumed pills together during Conaway’s recent academic winter break from JMU.

On January 27, 2023, Foster sent Conaway $105 through Venmo to pay for the drugs. Conaway purchased approximately ten pills from his supplier, Jimenez, in Harrisonburg. The pills Conaway purchased from Jimenez were designed to appear as though they were 30 mg Percocet pills but were in fact counterfeit and contained fentanyl.

Two days later, a friend of Foster’s delivered three pills, sourced from Jimenez through Conaway in Harrisonburg to Foster in Northern Virginia.

On January 30, 2023, Foster consumed a portion of one of the pills purchased from Conaway. That night, Foster died from fentanyl poisoning.

First responders arrived at Foster’s home the next morning and pronounced Foster dead on arrival.

United States Attorney Christopher R. Kavanaugh and Jarod Forget, Special Agent in Charge of the DEA’s Washington Division made the announcement today.

The Drug Enforcement Administration (DEA) and the Fairfax County Police Department investigated the case.

Assistant United States Attorneys Sally J. Sullivan and Melanie A. Smith are prosecuting the case for the United States.

An indictment is merely an allegation and all defendants are presumed innocent until proven guilty beyond a reasonable doubt in a court of law.

MIL Security OSI –

January 24, 2025
MIL-OSI Security: Musquodoboit Harbour — RCMP welcomes new Musquodoboit Harbour Detachment Commander

Source: Royal Canadian Mounted Police

The Nova Scotia RCMP has appointed Sergeant Christopher Attewell as Detachment Commander for the Musquodoboit Harbour Detachment.

“I have a passion for community policing,” says Sgt. Attewell. “It’s about building partnerships with residents and businesses so that together we can make our communities safer. I’ve worked in Musquodoboit Harbour since 2021, and I’m looking forward to serving the area in this new role.”

Originally from Seeley’s Cove, New Brunswick, Sgt. Attewell graduated from RCMP Depot in 2009. After graduation, he was posted to RCMP Halifax Regional Detachment, where he worked in Lower Sackville and Cole Harbour.

In 2014, Sgt. Attewell transferred to Hopedale, Newfoundland, and then to Happy Valley-Goose Bay, before being promoted to a position in Sanikuluaq, Nunavut.

In 2021, Sgt. Attewell returned to Nova Scotia. He’s served the province in a variety of roles. He has worked in the Emergency Operations Centre, assisting with critical incidents, and as an Incident Commander for ground search and rescue.

Outside of policing, Sgt. Attewell volunteers with Scouts Canada and coaches youth sports.

MIL Security OSI –

January 24, 2025
MIL-OSI Security: Threats to Shoot Auto Shop Workers Gets Man Prison Sentence

Source: Office of United States Attorneys

WASHINGTON – Rashaud Williams, 30, of Washington, D.C., was sentenced yesterday to 80 months in prison for assault with a dangerous weapon and other related firearm charges, announced U.S. Attorney Matthew M. Graves and Chief Pamela A. Smith, of the Metropolitan Police Department (MPD).

Superior Court Judge Errol Arthur sentenced Williams on October 17, 2024, to 60 months in prison for assault with a dangerous weapon and 60 months for possession of a firearm during a crime of violence, to run concurrently. Judge Arthur also sentenced him to 20 months in prison for threatening to injure or kidnap a person, to run consecutively.

Williams was found guilty by a Superior Court jury on May 3, 2024.

According to the government’s evidence, on August 1, 2023, Williams brought his car into a Petworth area auto shop for repairs. Later in the day, the shop owner called the defendant’s mother to tell her that the car would not be ready until the next day, after they obtained a needed part. Shortly after that call, Williams went to the auto shop and made threats to “shoot up” the entire establishment. The repairman’s girlfriend was there and tried to calm Williams down. Williams then turned the gun on her and threatened to shoot her, then pointed the gun at the owner before leaving.

In announcing the sentence, U.S. Attorney Graves and Chief Smith commended the work of those who investigated the case from the Metropolitan Police Department and the U.S. Attorney’s Office for the District of Columbia. They also commended the work of Assistant U.S. Attorneys Emmanuel Hampton, Erica Rudolf, and Kathryn Bartz, who prosecuted the case.

MIL Security OSI –

January 24, 2025
MIL-OSI Europe: ASIA/SRI LANKA – Easter attacks: new investigations are “a good sign of justice”

Source: Agenzia Fides – MIL OSI

Arcidiocesi di Colombo

Colombo (Agenzia Fides) – “The fact that the government under the newly elected President Anura Kumara Dissanayake has confirmed its will to conduct a thorough investigation into the Easter 2019 attacks is certainly a good sign. We look to the future with greater hope for justice. And we can say that we are confident,” said Peter Antony Wyman Croos, Bishop of Ratnapura, a city in central Sri Lanka, to Fides on the announcement that the new government in Colombo has confirmed the opening of a new investigation into the suicide attacks carried out on April 21, 2019 on three churches and three hotels, in which 279 people lost their lives and hundreds were injured. Government spokesman and Foreign Minister Vijitha Herath once again publicly assured that the government will ensure justice and that no one involved in the attacks will be exempt from legal responsibility. “The Easter Sunday attacks will be thoroughly investigated. We assure the people of Sri Lanka that we will not pave the way for injustice. We will not hide or protect anyone. All those responsible for these acts will be brought to justice through legal channels,” said Herath. “Once the investigation is completed, we will submit a full report and also announce the action that will be taken,” he added, stressing that all investigation reports currently in the government’s possession will be carefully reviewed to ensure “completeness and accuracy.” Also during a visit to St. Sebastian’s Catholic Church in Negombo, one of the churches attacked in 2019, President Anura Kumara Dissanayake promised justice for the faithful: “There is a widespread belief in society that the Easter Sunday attacks may have been carried out for political reasons,” he said. Meanwhile, in recent days, Sri Lanka’s Supreme Court has initiated “contempt of court” proceedings against Nilantha Jayawardena, the former director of the State Intelligence Service (SIS), for failing to pay full compensation to the victims of the 2019 attacks. The man had been ordered to pay 75 million rupees (around 25 thousand euros) in compensation to the victims of the Easter attacks, but has so far only paid 10 million rupees. On January 12, 2023, the Supreme Court upheld the appeal of the victims’ families and sentenced four politicians and government officials, including former President Maithripala Sirisena, to pay a heavy fine for failing to prevent the attacks despite advance warnings from the intelligence services. In addition to former President Sirisena, these include: Pujith Jayasundera, Inspector General of Police; Hemasiri Fernando, former Minister of Defense; Sisira Mendis, former head of intelligence services. But while those responsible have been identified in the trials for “failure to take precautionary measures”, five years after the tragic events, nothing is known about the organizers and instigators of the massacres, a point on which the Catholic Church continues to call for “justice and transparency”. Another focus of the new government is the social sphere, an area in which the new government will be called upon to intervene to alleviate the serious economic crisis. Bishop Croos recalled that “people expect the new president to take measures to support the economy, alleviate the hardships of families and improve the employment situation. In addition to the medium and long-term measures, there is also an urgent need to support in the short term, especially the poorest, who are currently struggling to make a living”. (PA) (Agenzia Fides, 16/10/2024)
Share:

MIL OSI Europe News –

January 23, 2025
MIL-OSI NGOs: Netherlands: Mass police surveillance of protests part of ‘growing control culture’ – new report

Source: Amnesty International –

“All facial recognition technology for identification purposes should be banned and clear rules for police surveillance at protests must be established.” – Dagmar Oudshoorn

Fear amongst protestors that camera surveillance may lead to negative repercussions

Transparency needed from Dutch police about use of materials gathered at protests

A new report from Amnesty International has found that widespread use of digital surveillance technology by police combined with a lack of transparency about its deployment and how materials gathered are analysed, stored and used is having a discriminatory and chilling effect on protest in the Netherlands.

Recording dissent: Camera surveillance at peaceful protests in the Netherlands, finds that Dutch police are using an array of digital means to monitor peaceful protesters, from drones to video cars and bodycams to conduct mass surveillance of protesters which is detrimentally impacting the right to protest. 

The report collates the experiences of protesters from a wide range of movements, including climate protests, pro-Palestine protests and protests relating to COVID. The research involved observation of 24 protests between 2022 and 2024, several interviews with protesters and police as well as an analysis of protest rules and practice. Across the range of demonstrations, protesters expressed fears that their identities could be logged in police databases and that this could have negative repercussions for them.

One organiser of COVID protests told Amnesty: “I would like to work at a ministry one day. If I have a mark against my name somewhere, I might never get in, so I want to avoid that. Those fears are really deep with everyone in our group.” 

Dagmar Oudshoorn, Director of Amnesty International Netherlands, said:

“Peaceful protest is a right, not a privilege but in the Netherlands an increasing risk-based approach to protest by authorities and a growing control culture is putting this right a risk.

“Dutch laws and policies are not formulated with sufficient precision with regard to what police may or may not do when surveilling protests. This creates a risk of arbitrariness or abuse and is having a discriminatory and chilling effect.

“It is unacceptable that images are stored in police data banks without any clarity as to what is done with them. This can lead to abuse – or fear of abuse – which can really have far-reaching consequences for people’s personal lives.

“Camera surveillance is being deployed because protests are being perceived as a security risk rather than a fundamental right and a vital part of a healthy society. All facial recognition technology for identification purposes should be banned and clear rules for police surveillance at protests must be established.”

The new research shows that police routinely fail to explain to organisers, protesters and the public why camera surveillance is in place. Opaque practices make it unclear what resources are being deployed and what images of protesters are being used for. Without adequate safeguards in place, surveillance practices are open to widespread abuse.  Police are able to use facial recognition technology to identify people. This risk is especially serious for migrants, who could be included in a facial recognition database when they apply for a residence permit.

One climate activist told Amnesty: “It’s unpredictable. I’ve seen camera surveillance in all forms…Police in uniform photographing, and camera cars with a telescopic camera on the roof…Not once have the police informed us about the surveillance.”

Protest rights under threat across continent.

This report is part of Amnesty ‘s global “Protect the Protest” campaign which challenges attacks on peaceful protest, works in solidarity with those targeted and supports the causes of social movements pushing for human rights change.

A report published in July 2024 looking at the state of protest across Europe found that the right to protest is being systematically undermined across Europe. See https://www.amnesty.org/en/latest/news/2024/07/europe-sweeping-pattern-of-systematic-attacks-and-restrictions-undermine-peaceful-protest/

MIL OSI NGO –

January 23, 2025
MIL-OSI Asia-Pac: The Vice-President of India, Shri Jagdeep Dhankhar to be the Chief Guest on the 31st Foundation Day of the National Human Rights Commission, India

Source: Government of India (2)

The Vice-President of India, Shri Jagdeep Dhankhar to be the Chief Guest on the 31st Foundation Day of the National Human Rights Commission, India

More than 23 lakh cases resolved and Rs. 254 crore recommended as relief to the victims of human rights violations during its 31 years journey

The Foundation Day celebrations will be followed by a day-long national conference on the “Rights of Older Persons”

Posted On: 16 OCT 2024 2:06PM by PIB Delhi

The National Human Rights Commission (NHRC), India is organizing a function to celebrate its 31st Foundation Day at Vigyan Bhawan on the 18th of October 2024. On the occasion, the Chief Guest, Shri Jagdeep Dhankhar, the Vice-President of India will address several national and international dignitaries in the presence of NHRC, India Acting Chairperson, Smt Vijaya Bharathi Sayani and Secretary General, Shri Bharat Lal and other senior officers of the Commission. The Foundation Day celebrations are a reminder of the Commission’s commitment to protecting and promoting human rights.

Following this, the Commission will also be organizing a day-long national conference on the ‘Rights of Older Persons’ under the theme- ‘Assessing the Structural Framework, Legal Safeguards, Security Rights, and Institutional Protection for India’s Elderly.’ The conference will address various concerns of older persons under three key technical sessions including ‘Addressing the Aging Population,’ ‘The Gendered Perspective of Aging,’ and ‘Evaluating the Healthcare Landscape-Impact on Healthy Living, Productivity, and Social Security.’ These sessions will be attended and addressed by various stakeholders including eminent experts and civil society representatives.

The live YouTube and Webcast link of the Foundation Day and the National Conference may be accessed at: https://www.youtube.com/watch?v=vzxbGV2pGGU and https://webcast.gov.in/nhrc

The NHRC, India, recognizes senior citizens as valuable assets to society. It is essential to honour their contributions to nation-building by promoting their overall welfare, respecting their rights, and encouraging meaningful engagement. The Commission has a core group on the Rights of older persons to discuss and suggest measures for their welfare. Recently, the Commission assessed the institutional responses and support available to them. It also issued an advisory to ensure the rights of elderly persons during Covid-19. Besides promoting awareness about the need to protect the rights of the elderly in the country, the NHRC has been emphasizing the proper implementation of policies and laws including the Maintenance and Welfare of Parents and Senior Citizens Act, 2007 (MWPSC Act, 2007).

In addition to the rights of older persons, the Commission has been working to promote and protect the rights of all segments of society, particularly those who belong to the vulnerable sections. During the 31 years of its journey since inception on 12^thOctober, 1993 to 30^thSeptember, 2024, the Commission has handled 2305194 (23 lakh 5 thousand and 194) cases including 2,873 cases of suo motu cognizance and recommended the payment of monetary relief of more than Rs. 254 crore in 8,731 cases to the victims of human rights violations.

During the last one year w.e.f. 1st October, 2023 to 30th September, 2024, the Commission disposed of 68,867 cases and recommended more than Rs. 17.88 crore as monetary relief in 404 cases to the victims of human rights violations. It also registered 112 cases taking suo motu cognizance during this period. Besides, 19 spot inquiries were conducted into the allegations of human rights violations.

The NHRC, India has conducted numerous spot investigations, open hearings, and camp sittings since its inception. Reviews of innumerable bills and laws, conferences and research projects, 31 Advisories, as well as more than 100 publications, including monthly newsletters, thousands of media reports, and engagements in international forums bear testimony to the work of the Commission towards the promotion and protection of human rights.

The 31 advisories issued by the Commission including the recent, among others are Child Sexual Abuse Material (CSAM), Rights of the Widows, people involved in begging, the Right to Food, Right to Health and mental Health, Rights of the Informal Workers, Upholding the Dignity of the Dead, Rights of Truck Drivers, Environmental Pollution and Degradation, Advisory for ensuring the welfare of Transgender Persons, Advisory to mitigate Deliberate Self Harm and suicide attempts by prisoners and Advisory to Prevent, Minimize and Mitigate Ocular Trauma.

The NHRC, India has designated 14 Special Rapporteurs to assess human rights conditions across various regions of the country. They conduct visits to shelter homes, prisons, observation homes, and similar institutions, compiling reports for the Commission that detail their observations and suggestions for future action. Additionally, the Commission has also appointed 21 Special Monitors tasked with overseeing specific thematic human rights issues and reporting their findings to the Commission. Throughout the year, they have visited several places to suggest improvements in human rights situations.

The Commission has also proactively engaged with the NGOs and Human Rights Defenders. It has constituted 12 core groups on various thematic issues related to human rights to hold discussions with the domain experts and the concerned senior government functionaries representing different ministries from time to time to finalize its recommendations for the government. Besides these core group meetings, the Commission also organizes open house discussions with different stakeholders on various issues of human rights. The Commission during the last one year, w.e.f. 1st October, 2024 to 30th September, 2024 has organized 13 core group meetings and 06 open house discussions on varied themes of human rights and two national consultations.

The NHRC, India is actively caring for all 47 Government mental health hospitals across the country. It continues to collaborate with central and state governments, parastatal organizations, academic institutions, NGOs, and human rights defenders to protect and promote human rights for all. Since last year, the Commission started a new program of sensitizing All India Services officers, including IAS, IPS, and IFS officers. The goal is to equip officers with a deeper understanding of human rights, enabling them to share this knowledge within their respective organizations for imparting human rights training to the other personnel.

The Commission has also collaborated with various institutions to conduct human rights awareness programmes. During the last one year w.e.f. 1st October, 2023 to 30th September, 2024, it organized 69 collaborative workshops and 08 moot court competitions with financial support of over Rs. 130 lakh to various institutions. Additionally, the Commission also organized on-site winter and summer internships and 06 online short-term internships which have benefitted hundreds of students from far-flung areas at zero costs on their travel expenses to help them evolve as human rights ambassadors. During this period, students and faculty from 45 institutions visited the Commission to learn about various aspects of human rights and the functioning of the NHRC. Besides, annual debate competitions for Central Para-military forces and State Police organizations on various aspects of human rights for sensitization of security personnel.

The Commission has issued notices to various sports bodies to establish Cells to deal with cases of harassment of women in the workplace. It has been issuing regular directions to provide free housing to thousands of homeless persons as per the government scheme. Victims of communal riots and internal conflicts are compensated. The Commission constantly endeavours to rehabilitate persons displaced due to natural disasters, land acquisition, and other causes. In the cases of suicide by debt-ridden farmers, the Commission successfully intervened.

Some of the other important interventions of the Commission include recommending amendments to 97 laws that discriminate against persons with Hansen’s disease. The Government has enhanced compensation for bonded labour based on NHRC advisory at the pre-trial stage.

The Commission has also been playing an active role at international human rights forums including the Asia Pacific Forum of National Human Rights Institutions, Global Alliance of National Human Rights Institutions (GANHRI), and UN Human Rights Council, among others with the participation of the Chairperson, Members, and senior officers. Last month, it successfully hosted a two-day conference of the NHRIs of Asia Pacific.

Twelve Thematic Core Groups involving various experts have helped the Commission to formulate mechanisms to evaluate the schemes initiated by the Govt. and make recommendations thereof. The Special Monitors and Special Rapporteurs who are the eyes and ears of the Commission are adding value to the mandate of the Commission.

The Commission has taken several new initiatives to expand its outreach including linking its HRCNet Portal with all the State authorities and the majority of State Human Rights Commissions. Any person can file complaints directly through online mode in a fast and efficient manner and can track the real-time status of their complaint on the Commission’s portal. The online complaint filing system is also linked with over five lakh Common Service Centers and the National Government Services Portal.

*****

NSK/ VCK

(Release ID: 2065282) Visitor Counter : 13

MIL OSI Asia Pacific News –

January 23, 2025
MIL-OSI Security: Man charged with carrying knives
Source: United Kingdom London Metropolitan Police

A man will appear in court charged with possession of offensive weapons and class A and B drugs.

Jordan Watson Best, 23, (22.02.2001) of Princes Avenue, Tolworth was charged on Tuesday, 15 October with:
- Possessing an offensive weapon in a public place.
- Possessing a sharply pointed article in a public place.
- Possessing class A and class B drugs with intent to supply.
Best was remanded to appear at Highbury Corner Magistrates’ Court on Wednesday, 16 October.

MIL Security OSI –
January 23, 2025
MIL-OSI Europe: Vincenzo Mascioli appointed new State Secretary for Migration

Source: Switzerland – Department of Justice and Police

The Federal CouncilBern, 16.10.2024 – At its meeting on 16 November, the Federal Council appointed Vincenzo Mascioli as the new State Secretary for Migration. Vincenzo Mascioli is currently Vice Director of the State Secretariat for Migration (SEM). He will take up the post on 1 January 2025, succeeding Christine Schraner Burgener, who is moving to the Federal Department of Foreign Affairs (FDFA).
Vincenzo Mascioli, who is 54, has been working in the Federal Administration since 2005, initially as a research assistant for the Control Committee of the Federal Assembly, and between 2007 and 2010 as an advisor on Federal Councillor Moritz Leuenberger’s personal staff at the Federal Department of the Environment, Transport, Energy and Communications (DETEC). From 1 November 2011, Vincenzo Mascioli worked as the personal assistant to Federal Councillor Simonetta Sommaruga in the Federal Department of Justice and Police (FDJP), where he was also responsible for the migration dossier and in particular the reform of the Asylum Act, which was adopted by a clear majority at the popular vote in 2016.
At the beginning of 2017, he was appointed Vice Director of SEM, where he took charge of the International Affairs Directorate, which includes the Returns, International Cooperation and European Cooperation Divisions. Switzerland is currently one of the leading European states in terms of cooperation with the countries of origin of asylum seekers. In addition, Switzerland’s consistent return policy is internationally recognised. Vincenzo Mascioli also served as Vice Director of SEM for several years under Federal Councillor Karin Keller-Sutter and for one year under Federal Councillor Elisabeth Baume-Schneider.
Before joining the Federal Administration, he worked for a number of years as an editor at a publishing house and as a lecturer at Zurich University of Teacher Education (PH Zurich) after graduating from the University of Zurich with a degree in education.
Migration expert with extensive management experience at SEM
Vincenzo Mascioli is as familiar with the international dimension of migration as he is with Swiss domestic policy. He is an expert in migration issues and, in addition to proven leadership skills, brings with him strong social skills, extensive diplomatic and political knowledge, and strong communication and negotiation skills. The Federal Council is confident that he can credibly represent SEM at home and abroad.
As State Secretary for Migration, Vincenzo Mascioli heads an administrative unit with around 1,300 employees. He is responsible for developing strategies and implementing and further developing Switzerland’s asylum, immigration and integration policy, as well as its foreign policy on migration. His tasks include liaising with Parliament, cantonal, communal and other federal authorities, non-governmental organisations in the field of migration, international organisations and foreign counterparts.
State Secretary Christine Schraner Burgener is to step down as head of SEM at the end of the year at her own request to take up a new role at the FDFA. She took over as state secretary on 1 January 2022. During her time in office, Switzerland has had to respond to the largest refugee movement since the Second World War as a result of Russia’s war of aggression against Ukraine. At the same time, SEM has been confronted with a large number of new asylum applications in recent years.
The Federal Council thanks Ms Schraner Burgener for her services.
Address for enquiries
GS-FDJP Communications Services, T +41 58 462 18 18, info@gs-ejpd.admin.ch
Publisher
The Federal Councilhttps://www.admin.ch/gov/en/start.htmlFederal Department of Justice and Policehttp://www.ejpd.admin.chState Secretariat for Migrationhttps://www.sem.admin.ch/sem/en/home.html

MIL OSI Europe News –

January 23, 2025
MIL-OSI Security: Hartford Man Pleads Guilty to Gun Charge

Source: United States Bureau of Alcohol Tobacco Firearms and Explosives (ATF)

Vanessa Roberts Avery, United States Attorney for the District of Connecticut, today announced that on October 11, 2024, CHEVON GRANT, 27, of Hartford, pleaded guilty before U.S. District Judge Kari A. Dooley in Bridgeport to a federal firearm charge stemming from a gang-related shootout.

According to court documents and statements made in court, on April 18, 2022, after an unidentified shooter, who is suspected of being a member of a rival gang, opened fire at individuals who were standing in a parking lot outside of a memorial gathering at a party venue on Main Street in Hartford, surveillance cameras at the location recorded at least nine individuals drawing firearms, some of whom returned fire. Shot Spotter technology recorded approximately 50 shots fired within approximately 90 seconds in and around the location, and law enforcement recovered at least 31 shell casings from the scene. Grant was present at the memorial gathering and was recorded on surveillance videos brandishing a handgun.

Following the shooting, Hartford Police obtained a warrant for Grant’s arrest in relation to the April 18 shootout. At the time, Grant was also subject to two additional state arrest warrants for other alleged offenses. On May 7, 2022, officers encountered Grant in the driver’s seat of a parked vehicle, retrieved a loaded Ruger P90 .45 firearm from beneath the driver’s seat, and took Grant into custody.

Grant’s criminal history includes state felony convictions for robbery and larceny offenses. It is a violation of federal law for a person previously convicted of a felony offense to possess a firearm or ammunition that has moved in interstate or foreign commerce.

Judge Dooley scheduled sentencing for January 9, at which time Grant faces a maximum term of imprisonment of 10 years.

Grant is detained in state custody, and state charges against him are pending.

This investigation is being conducted by the Federal Bureau of Investigation’s Northern Connecticut Gang Task Force; the Bureau of Alcohol, Tobacco, Firearms and Explosives; and the Hartford Police Department. The case is being prosecuted by Assistant U.S. Attorneys Robert S. Dearington and John T. Pierpont, Jr.

U.S. Attorney Avery thanked the Hartford State Attorney’s Offices for its cooperation in the investigation and prosecution of this matter.

This case is part of Project Safe Neighborhoods (PSN), a program bringing together all levels of law enforcement and the communities they serve to reduce gun violence and other violent crime, and to make our neighborhoods safer for everyone. In May 2021, the Justice Department launched a violent crime reduction strategy strengthening PSN based on these core principles: fostering trust and legitimacy in our communities, supporting community-based organizations that help prevent violence from occurring in the first place, setting focused and strategic enforcement priorities, and measuring the results. For more information about Project Safe Neighborhoods, please visit http://www.justice.gov/psn.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Beaver Dam — Missing 15-year-old boy

Source: Royal Canadian Mounted Police

The Oromocto RCMP is asking for the public’s help to locate a missing 15-year-old boy from Beaver Dam, N.B.

Autumn (Jasper) Blaney was last seen on October 15, 2024, at approximately 4:30 p.m., near Whittaker Road in Beaver Dam. He was reported missing to police the same day. Police have followed up on several leads to try and locate him, but have so far been unsuccessful. Police and his family are concerned for his wellbeing.

Autumn (Jasper) Blaney is described as being approximately five feet five inches (167 centimetres) tall, and weighing approximately 150 pounds (68 kilograms). He has hazel eyes, blond hair, a tattoo of a rose on his forearm and a nose ring. He was last seen wearing an off-white sweater, jogger pants and black sneakers.

Anyone with information on his whereabouts is asked to contact the Oromocto RCMP at 506-357-4300.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Bonavista — Bonavista RCMP arrests suspect in multiple break and enters, charges laid
Source: Royal Canadian Mounted Police

Following recent investigations into property crimes in Bonavista, 43-year-old Christopher Delaney of Bonavista was arrested on October 9, 2024, by Bonavista RCMP.

On October 2, 2024, Bonavista RCMP received a report of a break, enter and theft at an Ultramar gas station on Confederation Drive. The suspect forced entry into the store and allegedly stole a quantity of cigarettes from inside.

On the evening of September 29, 2024, Bonavista RCMP received a report of an attempted residential break and enter on Sweeney’s Lane that occurred while the home owner was away from the property. The suspect tried to gain access to the residence but was startled by a neighbour.

A short time later that same evening, Bonavista RCMP received a report of a possible break and enter at the Irving gas station on Confederation Drive. The suspect forced entry into the business and stole a quantity of cigarettes, beer and lottery tickets.

Evidence obtained during each of these investigations identified the suspect involved as Delaney.

Delaney was remanded in custody over the weekend and is charged with the following criminal offences:
- Break enter and committing – two counts
- Possess break in instrument – two counts
- Mischief Under $5000.00 (damage to property) – three counts
- Breach of a Probation Order – three counts
He will appear in court today.

RCMP NL continues to fulfill its mandate to protect public safety, enforce the law, and ensure the delivery of priority policing services in Newfoundland and Labrador.

MIL Security OSI –
January 23, 2025
MIL-OSI Security: Birdton — Have you seen this stolen trailer?

Source: Royal Canadian Mounted Police

The Keswick RCMP Detachment is asking for the public’s help locating a stolen trailer from Birdton, N.B.

The theft is believed to have occurred on September 30, at an open field on Crow Hill Road, in Birdton.

The trailer is described as a white 2010 K-Z Cayote, with New Brunswick licence plate TPX 030, and vehicle identification number 4EZTC222XA8041333.

Anyone with information about the theft, or who has seen the trailer since September 30, is asked to contact the Keswick RCMP at 506-357-4300. Information can also be provided anonymously through Crime Stoppers at 1-800-222-TIPS (8477), by downloading the secure P3 Mobile App, or by Secure Web Tips at http://www.crimenb.ca.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Former Castroville Police Chief Convicted of Wire Fraud

Source: Federal Bureau of Investigation (FBI) State Crime News

SAN ANTONIO – A federal jury convicted former Castroville Police Chief, Christopher Filline, for one count of conspiracy to commit wire fraud.

According to court documents and evidence presented at trial, Filline, 58, developed a scheme in 2016 to defraud Farmers Insurance Group by destroying his vehicle that he insured through the company, and claiming it had been stolen. Filline arranged for two co-conspirators to take the vehicle and light it on fire using an accelerant. He subsequently filed a false report with the Lytle Police Department and an insurance claim with Farmers Insurance Group, declaring his vehicle had been stolen. The filing resulted in Filline receiving a $14,388.25 payment.

Filline was indicted in January 2020. He faces up to 20 years in federal prison and a $250,000 fine. A sentence hearing has been set for Jan. 22, 2025.

U.S. Attorney Jaime Esparza for the Western District of Texas made the announcement.

The FBI, Texas Department of Public Safety, and the Bexar County Fire Marshal’s Office investigated the case.

Assistant U.S. Attorneys Greg Surovic and Christina Playton are prosecuting the case.

###

MIL Security OSI –

January 23, 2025

MIL-OSI Security: Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations

Source: US Department of Homeland Security

Summary

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) are releasing this joint Cybersecurity Advisory to warn network defenders of Iranian cyber actors’ use of brute force and other techniques to compromise organizations across multiple critical infrastructure sectors, including the healthcare and public health (HPH), government, information technology, engineering, and energy sectors. The actors likely aim to obtain credentials and information describing the victim’s network that can then be sold to enable access to cybercriminals.

Since October 2023, Iranian actors have used brute force, such as password spraying, and multifactor authentication (MFA) ‘push bombing’ to compromise user accounts and obtain access to organizations. The actors frequently modified MFA registrations, enabling persistent access. The actors performed discovery on the compromised networks to obtain additional credentials and identify other information that could be used to gain additional points of access. The authoring agencies assess the Iranian actors sell this information on cybercriminal forums to actors who may use the information to conduct additional malicious activity.

This advisory provides the actors’ tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs). The information is derived from FBI engagements with entities impacted by this malicious activity.

The authoring agencies recommend critical infrastructure organizations follow the guidance provided in the Mitigations section. At a minimum, organizations should ensure all accounts use strong passwords and register a second form of authentication.

Download the PDF version of this report:

For a downloadable list of IOCs, see:

Technical Details

Note: This advisory uses the MITRE ATT&CK^® for Enterprise framework, version 15. See the MITRE ATT&CK Tactics and Techniques section in Appendix A for a table of the actors’ activity mapped to MITRE ATT&CK tactics and techniques.

Overview of Activity

The actors likely conduct reconnaissance operations to gather victim identity [T1589] information. Once obtained, the actors gain persistent access to victim networks frequently via brute force [T1110]. After gaining access, the actors use a variety of techniques to further gather credentials, escalate privileges, and gain information about the entity’s systems and network. The actors also move laterally and download information that could assist other actors with access and exploitation.

Initial Access and Persistence

The actors use valid user and group email accounts [T1078], frequently obtained via brute force such as password spraying [T1110.003] although other times via unknown methods, to obtain initial access to Microsoft 365, Azure [T1078.004], and Citrix systems [T1133]. In some cases where push notification-based MFA was enabled, the actors send MFA requests to legitimate users seeking acceptance of the request. This technique—bombarding users with mobile phone push notifications until the user either approves the request by accident or stops the notifications— is known as “MFA fatigue” or “push bombing” [T1621].

Once the threat actors gain access to an account, they frequently register their devices with MFA to protect their access to the environment via the valid account:

In two confirmed compromises, the actors leveraged a compromised user’s open registration for MFA [T1556.006] to register the actor’s own device [T1098.005] to access the environment.
In another confirmed compromise, the actors used a self-service password reset (SSPR) tool associated with a public facing Active Directory Federation Service (ADFS) to reset the accounts with expired passwords [T1484.002] and then registered MFA through Okta for compromised accounts without MFA already enabled [T1556] [T1556.006].

The actors frequently conduct their activity using a virtual private network (VPN) service [T1572]. Several of the IP addresses in the actors’ malicious activity originate from exit nodes tied to the Private Internet Access VPN service.

Lateral Movement

The actors use Remote Desktop Protocol (RDP) for lateral movement [T1021.001]. In one instance, the actors used Microsoft Word to open PowerShell to launch the RDP binary mstsc.exe [T1202].

Credential Access

The actors likely use open-source tools and methodologies to gather more credentials. The actors performed Kerberos Service Principal Name (SPN) enumeration of several service accounts and received Kerberos tickets [T1558.003]. In one instance, the actors used the Active Directory (AD) Microsoft Graph Application Program Interface (API) PowerShell application likely to perform a directory dump of all AD accounts. Also, the actors imported the tool [T1105] DomainPasswordSpray.ps1, which is openly available on GitHub [T1588.002], likely to conduct password spraying. The actors also used the command Cmdkey /list, likely to display usernames and credentials [T1555].

Privilege Escalation

In one instance, the actors attempted impersonation of the domain controller, likely by exploiting Microsoft’s Netlogon (also known as ”Zerologon”) privilege escalation vulnerability (CVE-2020-1472) [T1068].

Discovery

The actors leverage living off the land (LOTL) to gain knowledge about the target systems and internal networks. The actors used the following Windows command-line tools to gather information about domain controllers [T1018], trusted domains [T1482], lists of domain administrators, and enterprise administrators [T1087.002] [T1069.002] [T1069.003]:

Nltest /dclist
Nltest /domain_trusts
Nltest /domain_trusts/all_trusts
Net group “Enterprise admins” /domain
Net group “Domain admins” /domain

Next, the actors used the following Lightweight Directory Access Protocol (LDAP) query in PowerShell [T1059.001]to search the AD for computer display names, operating systems, descriptions, and distinguished names [T1082].

                                           $i=0
                                           $D= [System.DirectoryServices.ActiveDirectory.Domain]::GetCurrentDomain()
                                           $L='LDAP://' . $D
                                           $D = [ADSI]$L
                                           $Date = $((Get-Date).AddDays(-90).ToFileTime())
                                           $str = '(&(objectcategory=computer)(operatingSystem=*serv*)(|(lastlogon>='+$Date+')(lastlogontimestamp>='+$Date+')))'
                                           $s = [adsisearcher]$str
                                           $s.searchRoot = $L.$D.distinguishedName
                                           $s.PropertiesToLoad.Add('cn') > $Null
                                           $s.PropertiesToLoad.Add('operatingsystem') > $Null
                                           $s.PropertiesToLoad.Add('description') > $Null
                                           $s.PropertiesToLoad.Add('distinguishedName') > $Null
                                           Foreach ($CA in $s.FindAll()) {
                                                         Write-Host $CA.Properties.Item('cn')
                                                         $CA.Properties.Item('operatingsystem')
                                                         $CA. Properties.Item('description')
                                                         $CA.Properties.Item('distinguishedName')
                                                         $i++
                                           }
                                           Write-host Total servers: $i

Command and Control

On one occasion, using msedge.exe, the actors likely made outbound connections to Cobalt Strike Beacon command and control (C2) infrastructure [T1071.001].

Exfiltration and Collection

In a couple instances, while logged in to victim accounts, the actors downloaded files related to gaining remote access to the organization and to the organization’s inventory [T1005], likely exfiltrating the files to further persist in the victim network or to sell the information online.

Detection

To detect brute force activity, the authoring agencies recommend reviewing authentication logs for system and application login failures of valid accounts and looking for multiple, failed authentication attempts across all accounts.

To detect the use of compromised credentials in combination with virtual infrastructure, the authoring agencies recommend the following steps:

Look for “impossible logins,” such as suspicious logins with changing usernames, user agent strings, and IP address combinations or logins where IP addresses do not align to the user’s expected geographic location.
Look for one IP used for multiple accounts, excluding expected logins.
Look for “impossible travel.” Impossible travel occurs when a user logs in from multiple IP addresses with significant geographic distance (i.e., a person could not realistically travel between the geographic locations of the two IP addresses during the period between the logins). Note: Implementing this detection opportunity can result in false positives if legitimate users apply VPN solutions before connecting into networks.
Look for MFA registrations with MFA in unexpected locales or from unfamiliar devices.
Look for processes and program execution command-line arguments that may indicate credential dumping, especially attempts to access or copy the ntds.dit file from a domain controller.
Look for suspicious privileged account use after resetting passwords or applying user account mitigations.
Look for unusual activity in typically dormant accounts.
Look for unusual user agent strings, such as strings not typically associated with normal user activity, which may indicate bot activity.

Mitigations

The authoring agencies recommend organizations implement the mitigations below to improve organizations’ cybersecurity posture based on the actors’ TTPs described in this advisory. These mitigations align with the Cross-Sector Cybersecurity Performance Goals (CPGs) developed by CISA. The CPGs, which are organized to align to the National Institute of Standards and Technology (NIST) Cybersecurity Framework, are a subset of cybersecurity practices, aimed at meaningfully reducing risks to both critical infrastructure operations and the American people. These voluntary CPGs strive to help small- and medium-sized organizations kick-start their cybersecurity efforts by prioritizing investment in a limited number of essential actions with high-impact security outcomes. Visit CISA’s Cross-Sector Cybersecurity Performance Goals for more information on the CPGs, including additional recommended baseline protections.

Review IT helpdesk password management related to initial passwords, password resets for user lockouts, and shared accounts. IT helpdesk password procedures may not align to company policy for user verification or password strength, creating a security gap. Avoid common passwords (e.g. “Spring2024” or “Password123!”).
Disable user accounts and access to organizational resources for departing staff [CPG 2.D]. Disabling accounts can minimize system exposure, removing options actors can leverage for entry into the system. Similarly, create new user accounts as close as possible to an employee’s start date.
Implement phishing-resistant MFA [CPG 2.H]. See CISA’s resources Phishing-Resistant Multifactor Authentication and More than a Password for additional information on strengthening user credentials.
Continuously review MFA settings to ensure coverage over all active, internet-facing protocols to ensure no exploitable services are exposed [CPG 2.W].
Provide basic cybersecurity training to users [CPG 2.I] covering concepts such as:
- Detecting unsuccessful login attempts [CPG 2.G].
- Having users deny MFA requests they have not generated.
- Ensuring users with MFA-enabled accounts have MFA set up appropriately.
Ensure password policies align with the latest NIST Digital Identity Guidelines.
- Meeting the minimum password strength [CPG 2.B] by creating a password using 8-64 nonstandard characters and long passphrases, when possible.
Disable the use of RC4 for Kerberos authentication.

These mitigations apply to critical infrastructure entities across sectors.

The authoring agencies also recommend software manufacturers incorporate secure by design principles and tactics into their software development practices to protect their customers against actors using compromised credentials, thereby strengthening the security posture of their customers. For more information on secure by design, see CISA’s Secure by Design webpage and joint guide.

Validate Security Controls

In addition to applying mitigations, the authoring agencies recommend exercising, testing, and validating organization security programs against the threat behaviors mapped to the MITRE ATT&CK for Enterprise framework in this advisory. The authoring agencies recommend testing your existing security controls inventory to assess how they perform against the ATT&CK techniques described in this advisory.

To get started:

Select an ATT&CK technique described in this advisory (see Table 1 to Table 12).
Align your security technologies against the technique.
Test your technologies against the technique.
Analyze your detection and prevention technologies’ performance.
Repeat the process for all security technologies to obtain a set of comprehensive performance data.
Tune your security program, including people, processes, and technologies, based on the data generated by this process.

The authoring agencies recommend continually testing your security program, at scale, in a production environment to ensure optimal performance against the MITRE ATT&CK techniques identified in this advisory.

Contact Information

Organizations are encouraged to report suspicious or criminal activity related to information in this advisory to:

CISA via CISA’s 24/7 Operations Center [report@cisa.gov or 1-844-Say-CISA (1-844-729-2472)] or your local FBI field office. When available, please include the following information regarding the incident: date, time, and location of the incident; type of activity; number of people affected; type of equipment used for the activity; the name of the submitting company or organization; and a designated point of contact.
For NSA cybersecurity guidance inquiries, contact CybersecurityReports@nsa.gov.

Disclaimer

The information in this report is being provided “as is” for informational purposes only. The authoring agencies do not endorse any commercial entity, product, company, or service, including any entities, products, or services linked within this document. Any reference to specific commercial entities, products, processes, or services by service mark, trademark, manufacturer, or otherwise, does not constitute or imply endorsement, recommendation, or favoring by the authoring agencies.

Intrusion events connected to this Iranian group may also include a different set of cyber actors–likely the third-party actors who purchased access from the Iranian group via cybercriminal forums or other channels. As a result, some TTPs and IOCs noted in this advisory may be tied to these third-party actors, not the Iranian actors. The TTPs and IOCs are in the advisory to provide recipients the most complete picture of malicious activity that may be observed on compromised networks. However, exercise caution if formulating attribution assessments based solely on matching TTPs and IOCs.

Version History

October 2, 2024: Initial version.

Appendix A: MITRE ATT&CK Tactics and Techniques

See Tables 1–12 for all referenced actors’ tactics and techniques in this advisory. For assistance with mapping malicious cyber activity to the MITRE ATT&CK framework, see CISA and MITRE ATT&CK’s Best Practices for MITRE ATT&CK Mapping and CISA’s Decider Tool.

*Table 1: Reconnaissance*
Technique Title	ID	Use
Gather Victim Identity Information	T1589	The actors likely gathered victim information.

*Table 2: Resource Development*
Technique Title	ID	Use
Obtain Capabilities: Tool	T1588.002	The actors obtained a password spray tool through an open-source repository.

*Table 3: Initial Access*
Technique Title	ID	Use
Valid Accounts	T1078	The actors used password spraying to obtain valid user and group email account credentials, allowing them access to the network.
Valid Accounts: Cloud Accounts	T1078.004	The actors used accounts hosted on Microsoft 365, Azure, and Okta cloud environments as additional methods for initial access.
External Remote Services	T1133	The actors exploited Citrix systems’ external-facing remote services as another method for gaining initial access to the system.

*Table 4: Execution*
Technique Title	ID	Use
Command and Scripting Interpreter: PowerShell	T1059.001	The actors used PowerShell commands to maintain and expand access.

*Table 5: Persistence*
Technique Title	ID	Use
Account Manipulation: Device Registration	T1098.005	The actors used PowerShell commands to maintain and expand access.
Modify Authentication Process	T1556	The actors used a public facing Active Directory Federation Service (ADFS) domain to reset the passwords of expired accounts.
Modify Authentication Process: Multi-Factor Authentication	T1556.006	The actors used an MFA bypass method, such as Multi-Factor Authentication Request Generation, providing the ability to modify or completely disable MFA defenses.

*Table 6: Privilege Escalation*
Technique Title	ID	Use
Exploitation for Privilege Escalation	T1068	The actors attempted impersonation of the domain controller likely by exploiting CVE-2020-1472, Microsoft’s Netlogon Privilege Escalation vulnerability.
Domain or Tenant Policy Modification: Trust Modification	T1484.002	The actors leveraged a public-facing ADFS password reset tool to reactivate inactive accounts, allowing the actor to authenticate and enroll their devices as any user in the AD managed by the victim tenant.

*Table 7: Defense Evasion*
Technique Title	ID	Use
Indirect Command Execution	T1202	The actors attempted impersonation of the Domain Controller likely by exploiting CVE-2020-1472, Microsoft’s Netlogon Privilege Escalation vulnerability.

*Table 8: Credential Access*
Technique Title	ID	Use
Brute Force: Password Spraying	T1110.003	The actors targeted applications, including Single Sign-on (SSO) Microsoft Office 365, using brute force password sprays and imported the tool `DomainPasswordSpray.ps1`.
Credentials from Password Stores	T1555	The actors used the command `Cmdkey /list` likely to display usernames and credentials.
Steal or Forge Kerberos Tickets: Kerberoasting	T1558.003	The actors performed Kerberos Service Principal Name (SPN) enumeration of several service accounts and received Rivest Cipher 4 (RC4) tickets.
Multi-Factor Authentication Request Generation	T1621	The actors sent MFA requests to legitimate users.

*Table 9: Discovery*
Technique Title	ID	Use
Remote System Discovery	T1018	The actors used LOTL to return information about domain controllers.
Permission Groups Discovery: Domain Groups	T1069.002	The actors used LOTL to return lists of domain administrators and enterprise administrators.
Permission Groups Discovery: Cloud Groups	T1069.003	The actors used LOTL to return lists of domain administrators and enterprise administrators.
System Information Discovery	T1082	The actors were able to query the AD to discover display names, operating systems, descriptions, and distinguished names from the computer.
Account Discovery: Domain Account	T1087.002	The actors used LOTL to return lists of domain administrators and enterprise administrators.
Domain Trust Discovery	T1482	The actors used LOTL to return information about trusted domains.

*Table 10: Lateral Movement*
Technique Title	ID	Use
Remote Services: Remote Desktop Protocol	T1021.001	The actors used Microsoft Word to open PowerShell to launch RDP binary mstsc.exe.

*Table 11: Collection*
Technique Title	ID	Use
Data from Local System	T1005	The actors downloaded files related to remote access methods and the organization’s inventory.

*Table 12: Command and Control*
Technique Title	ID	Use
Application Layer Protocol: Web Protocols	T1071.001	The actors used `msedge.exe` to make outbound connections likely to Cobalt Strike Beacon C2 infrastructure.
Ingress Tool Transfer	T1105	The actors imported a tool from GitHub and used it to conduct password spraying.
Protocol Tunneling	T1572	The actors frequently conduct targeting using a virtual private network (VPN).

Appendix B: Indicators of Compromise

See Tables 13 to 15 for IOCs obtained from FBI investigations.

*Table 13: Malicious Files Associated with Iranian Cyber Actors*
Hash	Description
1F96D15B26416B2C7043EE7172357AF3AFBB002A	Associated with malicious activity.
3D3CDF7CFC881678FEBCAFB26AE423FE5AA4EFEC	Associated with malicious activity.

Disclaimer: The authoring organizations recommend network defenders investigate or vet IP addresses prior to taking action, such as blocking, as many cyber actors are known to change IP addresses, sometimes daily, and some IP addresses may host valid domains. Many of the IP addresses provided below are assessed VPN nodes and as such are not exclusive to the Iranian actors’ use. The authoring organizations do not recommend blocking these IP addresses based solely on their inclusion in this JCSA. The authoring organizations recommend using the below IP addresses to search for previous activity the actors may have conducted against networks. If positive hits for these IP addresses are identified, the authoring organizations recommend making an independent determination if the observed activity aligns with the TTPs outlined in the JCSA. The timeframes included in the table reflect the timeframe the actors likely used the IPs.

*Table 14: Network Indicators*
IP Address	Date Range
95.181.234.12	01/30/2024 to 02/07/2024
95.181.234.25	01/30/2024 to 02/07/2024
173.239.232.20	10/06/2023 to 12/19/2023
172.98.71.191	10/15/2023 to 11/27/2023
102.129.235.127	10/21/2023 to 10/22/2023
188.126.94.60	10/22/2023 to 01/12/2024
149.40.50.45	10/26/2023
181.214.166.59	10/26/2023
212.102.39.212	10/26/2023
149.57.16.134	10/26/2023 to 10/27/2023
149.57.16.137	10/26/2023 to 10/27/2023
102.129.235.186	10/29/2023 to 11/08/2023
46.246.8.138	10/31/2023 to 01/26/2024
149.57.16.160	11/08/2023
149.57.16.37	11/08/2023
46.246.8.137	11/17/2023 to 01/25/2024
212.102.57.29	11/19/2023 to 01/17/2024
46.246.8.82	11/22/2023 to 01/28/2024
95.181.234.15	11/26/2023 to 02/07/2024
45.88.97.225	11/27/2023 to 02/11/2024
84.239.45.17	12/04/2023 to 12/07/2023
46.246.8.104	12/07/2023 to 02/07/2024
37.46.113.206	12/07/2023
46.246.3.186	12/07/2023 to 12/09/2023
46.246.8.141	12/07/2023 to 02/10/2024
46.246.8.17	12/09/2023 to 01/09/2024
37.19.197.182	12/15/2023
154.16.192.38	12/25/2023 to 01/24/2024
102.165.16.127	12/27/2023 to 01/28/2024
46.246.8.47	12/29/2023 to 01/29/2024
46.246.3.225	12/30/2023 to 02/06/2024
46.246.3.226	12/31/2023 to 02/03/2024
46.246.3.240	12/31/2023 to 02/06/2024
191.101.217.10	01/05/2024
102.129.153.182	01/08/2024
46.246.3.196	01/08/2024
102.129.152.60	01/09/2024
156.146.60.74	01/10/2024
191.96.227.113	01/10/2024
191.96.227.122	01/10/2024
181.214.166.132	01/11/2024
188.126.94.57	01/11/2024 to 01/13/2024
154.6.13.144	01/13/2024 to 01/24/2024
154.6.13.151	01/13/2024 to 01/28/2024
188.126.94.166	01/15/2024
89.149.38.204	01/18/2024
46.246.8.67	01/20/2024
46.246.8.53	01/22/2024
154.16.192.37	01/24/2024
191.96.150.14	01/24/2024
191.96.150.96	01/24/2024
46.246.8.10	01/24/2024
84.239.25.13	01/24/2024
154.6.13.139	01/26/2024
191.96.106.33	01/26/2024
191.96.227.159	01/26/2024
149.57.16.150	01/27/2024
191.96.150.21	01/27/2024
46.246.8.84	01/27/2024
95.181.235.8	01/27/2024
191.96.227.102	01/27/2024 to 01/28/2024
46.246.122.185	01/28/2024
146.70.102.3	01/29/2024 to 01/30/2024
46.246.3.233	01/30/2024 to 02/15/2024
46.246.3.239	01/30/2024 to 02/15/2024
188.126.89.35	02/03/2024
46.246.3.223	02/03/2024
46.246.3.245	02/05/2024 to 02/06/2024
191.96.150.50	02/09/2024

*Table 15: Devices*
Device Type	Description
Samsung Galaxy A71 (SM-A715F)	Registered with MFA
Samsung SM-G998B	Registered with MFA
Samsung SM-M205F	Registered with MFA

MIL Security OSI –

January 23, 2025

MIL-OSI Security: Île-à-la-Crosse — Île-à-la-Crosse RCMP seize cocaine in traffic stop
Source: Royal Canadian Mounted Police

On October 12, 2024 at approximately 3:00 a.m., Île-à-la-Crosse RCMP conducted a traffic stop on Highway #155 near Île-à-la-Crosse.

During the traffic stop, officers located and seized a small amount of cocaine, a large sum of cash and drug trafficking paraphernalia. The adult male driver and adult female passenger were arrested at the scene.

As a result of investigation, 46-year-old Jamey Hanson and 31-year-old Ashley Desjarlais, both from Buffalo Narrows, were charged with:
- one count, possession for the purpose of trafficking – cocaine, Section 5(2), Controlled Drugs and Substances Act;
- one count, possession of property obtained by crime over $5000, Section 354(1)(a), Criminal Code.
Hanson and Desjarlais will appear in Meadow Lake Provincial Court on October 15, 2024.

MIL Security OSI –
January 23, 2025
MIL-OSI Security: Sagkeeng First Nation — Powerview RCMP investigating homicide

Source: Royal Canadian Mounted Police

On October 14, 2024, at approximately 12:20 am, Powerview RCMP received a report of a female being assaulted on Northshore Road in Sagkeeng First Nation. Officers attended immediately and located a 26-year-old female at the side of the road. She was pronounced deceased on scene.

Police were able to track the suspect to a nearby residence. RCMP Major Crime Services deployed and took carriage of the investigation.

A 15-year-old male has been arrested and charged with Second Degree Murder in relation to the female’s death. An autopsy is scheduled to be completed October 15, 2024.

The investigation continues.

MIL Security OSI –

January 23, 2025
MIL-OSI Global: Elite corruption has the power to ignite mass protests in Nigeria – why police corruption doesn’t

Source: The Conversation – Africa – By Jacob Lewis, Assistant Professor, School of Politics, Philosophy and Public Affairs, Washington State University

Nigerians took to the streets in August 2024 to voice their frustration at a series of government policies. These policies had been ostensibly designed to make Nigeria more attractive for outside investment.

The removal of fuel subsidies and the removal of the economic peg between the Nigerian naira and the US dollar have sent the Nigerian economy into a tailspin.

Many Nigerians rely on government subsidies to make ends meet. The economic policy changes have resulted in a big rise in inflation, adding to the challenges for ordinary Nigerians.

As economic conditions have worsened, the prominence of government corruption has risen. Protests and riots have exploded in the streets across the country in the form of #EndBadGovernance protests that call out government graft and poor governance.

Does government corruption drive protests and social movements? While some scholars have argued that it does, others have argued that corruption is often a catch-all term for frustration over broad economic and democratic grievances. Others have noted that in some cases, increased perceptions of corruption correlate with less protest.

These contradictory results reveal an important puzzle: why does corruption only sometimes seem to generate mass uprisings? If, for example, corruption is enough to generate citizen uprisings, then why do we only rarely see unified anti-police protests in countries like Nigeria, where police corruption is rampant?

I argue that one key to this puzzle is the way different types of corruption are associated with increased or decreased protest mobilisation.

I am a political scientist whose work focuses in part on African social movements and issues of corruption. I approach this by merging large statistical models with political psychological approaches.

I conducted research in 2021 on different types of corruption shaping protests. I found that elite corruption had the power to mobilise protest. But that other forms of corruption – such as corruption in the police force – were less likely to lead people to take protest action.

The implication of my findings is that anti-corruption protests are an imperfect signal for understanding everyday corruption experiences. The fact that people aren’t protesting doesn’t mean there’s nothing to complain about.

Why elite corruption sparks protest

To explain why corruption sometimes corresponds with protest movements and other times does not, I think it is useful to consider two types of corruption. Elite corruption refers to forms of graft and venality performed by political elites who seek to either enrich themselves or reshape the political system to their advantage.

Police corruption refers to acts of self-enrichment or abuse perpetrated by police officers, often during traffic stops or in the process of police procedure.

My findings show that citizens are generally more likely to mobilise in response to elite corruption than police corruption. Why?

First, elite corruption tends to be intertwined with macro-level economic crises and scandals.

Second, elite corruption provides a universal point of focus for protesters across an entire nation, rather than the highly localised experiences of police and bureaucratic graft.

Finally, anger over police corruption may be suppressed by the safety concerns associated with demonstrating against armed security forces.

I tested this argument using two methods. First, drawing from a 2017 household survey experiment that I conducted in five Nigerian states, I examined whether exposure to vignettes describing either elite corruption or police corruption shaped a respondent’s self-reported willingness to participate in a protest.

The elite corruption vignettes included self-dealing and system-changing forms of corruption perpetrated by political elites. The police corruption vignette focused on the solicitation of bribes and unfair detention of citizens by the police. I then asked respondents:

Many Nigerians join groups that engage in protests, strikes, or demonstrations. Now I would like to ask you about how willing you would be to join a protest or demonstration.

Respondents were able to select a response between 1 (“not at all willing”) to 5 (“very willing / I already do”).

I found that individuals who received the elite corruption vignette were statistically more likely to state that they would join a protest or demonstration.

I then expanded this analysis via a statistical regression that measured whether perceptions of elite and police corruption (sourced from the Afrobarometer dataset) correlated with different levels of observed conflict (sourced from the Social Conflict Analysis Database).

I thought it was best to test whether the results of my survey experiment, which capture a moment in time, reflected a broader reality, or whether it was just a fluke.

Using the Afrobarometer data, I identified regions where citizens expressed particularly high or low perceptions of elite and police corruption. Then, using the social conflict analysis data, I measured the number of protest events in those regions.

I found that while elite corruption perceptions were positively correlated with an increased number of observed protest events, police corruption perceptions were not.

Together, these methods suggest that it is not enough to argue that citizens will rise up against corrupt governments. Rather, the ways in which a government is corrupt matter.

Turning back to the August 2024 protests, one might ask: why now? Why did Nigerians spend ten days protesting against corruption when there had been rampant corruption for so long?

My research suggests that the nature of the corruption claims – specifically, anger over large-scale government graft – is what counts.

Recent developments seem to support this.

What’s changed

First, corruption perceptions have spiked. In 2021, Afrobarometer polled 1,600 Nigerians, asking them whether levels of corruption had risen, stayed the same, or decreased in the past year. At the time, just over 35% stated that corruption had “increased a lot”. One year later, that number had nearly doubled, jumping to just under 65%.

This drastic increase in perceived corruption reveals a broader lack of faith in the government and concern over the future of the country.

Second, tipping points help with mobilisation. The protests in early August arose as the financial crisis crystallised and as a series of economic policies brought into sharp relief the economic disparities between the rich and the poor.

The removal of fuel subsidies is a particularly touchy subject in Nigerian politics. In 2012, Nigerians took to the streets over the same issue, leading to a week-long “occupation” of major Nigerian cities by protesters.

Implications

Protests are a highly visible signal that citizens are frustrated; however, it is easy to overlook the possibility that citizens may be widely upset about a broad array of issues, but only willing to speak out in response to some of those issues.

There is a knock-on consequence to this; namely, that police corruption has a more direct effect on the lives of Nigerians than elite corruption, but often goes unaddressed.

Jacob Lewis receives funding from the Department of Defense, the U.S. Agency for International Development, the Anti-Defamation League, and the Carnegie Corporation of New York. He consults with the Anti-Defamation League on survey-based research.

– ref. Elite corruption has the power to ignite mass protests in Nigeria – why police corruption doesn’t – https://theconversation.com/elite-corruption-has-the-power-to-ignite-mass-protests-in-nigeria-why-police-corruption-doesnt-239760

MIL OSI – Global Reports –

January 23, 2025
MIL-OSI Africa: Elite corruption has the power to ignite mass protests in Nigeria – why police corruption doesn’t

Source: The Conversation – Africa – By Jacob Lewis, Assistant Professor, School of Politics, Philosophy and Public Affairs, Washington State University

Nigerians took to the streets in August 2024 to voice their frustration at a series of government policies. These policies had been ostensibly designed to make Nigeria more attractive for outside investment.

The removal of fuel subsidies and the removal of the economic peg between the Nigerian naira and the US dollar have sent the Nigerian economy into a tailspin.

Many Nigerians rely on government subsidies to make ends meet. The economic policy changes have resulted in a big rise in inflation, adding to the challenges for ordinary Nigerians.

As economic conditions have worsened, the prominence of government corruption has risen. Protests and riots have exploded in the streets across the country in the form of #EndBadGovernance protests that call out government graft and poor governance.

Does government corruption drive protests and social movements? While some scholars have argued that it does, others have argued that corruption is often a catch-all term for frustration over broad economic and democratic grievances. Others have noted that in some cases, increased perceptions of corruption correlate with less protest.

These contradictory results reveal an important puzzle: why does corruption only sometimes seem to generate mass uprisings? If, for example, corruption is enough to generate citizen uprisings, then why do we only rarely see unified anti-police protests in countries like Nigeria, where police corruption is rampant?

I argue that one key to this puzzle is the way different types of corruption are associated with increased or decreased protest mobilisation.

I am a political scientist whose work focuses in part on African social movements and issues of corruption. I approach this by merging large statistical models with political psychological approaches.

I conducted research in 2021 on different types of corruption shaping protests. I found that elite corruption had the power to mobilise protest. But that other forms of corruption – such as corruption in the police force – were less likely to lead people to take protest action.

The implication of my findings is that anti-corruption protests are an imperfect signal for understanding everyday corruption experiences. The fact that people aren’t protesting doesn’t mean there’s nothing to complain about.

Why elite corruption sparks protest

To explain why corruption sometimes corresponds with protest movements and other times does not, I think it is useful to consider two types of corruption. Elite corruption refers to forms of graft and venality performed by political elites who seek to either enrich themselves or reshape the political system to their advantage.

Police corruption refers to acts of self-enrichment or abuse perpetrated by police officers, often during traffic stops or in the process of police procedure.

My findings show that citizens are generally more likely to mobilise in response to elite corruption than police corruption. Why?

First, elite corruption tends to be intertwined with macro-level economic crises and scandals.

Second, elite corruption provides a universal point of focus for protesters across an entire nation, rather than the highly localised experiences of police and bureaucratic graft.

Finally, anger over police corruption may be suppressed by the safety concerns associated with demonstrating against armed security forces.

I tested this argument using two methods. First, drawing from a 2017 household survey experiment that I conducted in five Nigerian states, I examined whether exposure to vignettes describing either elite corruption or police corruption shaped a respondent’s self-reported willingness to participate in a protest.

The elite corruption vignettes included self-dealing and system-changing forms of corruption perpetrated by political elites. The police corruption vignette focused on the solicitation of bribes and unfair detention of citizens by the police. I then asked respondents:

Many Nigerians join groups that engage in protests, strikes, or demonstrations. Now I would like to ask you about how willing you would be to join a protest or demonstration.

Respondents were able to select a response between 1 (“not at all willing”) to 5 (“very willing / I already do”).

I found that individuals who received the elite corruption vignette were statistically more likely to state that they would join a protest or demonstration.

I then expanded this analysis via a statistical regression that measured whether perceptions of elite and police corruption (sourced from the Afrobarometer dataset) correlated with different levels of observed conflict (sourced from the Social Conflict Analysis Database).

I thought it was best to test whether the results of my survey experiment, which capture a moment in time, reflected a broader reality, or whether it was just a fluke.

Using the Afrobarometer data, I identified regions where citizens expressed particularly high or low perceptions of elite and police corruption. Then, using the social conflict analysis data, I measured the number of protest events in those regions.

I found that while elite corruption perceptions were positively correlated with an increased number of observed protest events, police corruption perceptions were not.

Together, these methods suggest that it is not enough to argue that citizens will rise up against corrupt governments. Rather, the ways in which a government is corrupt matter.

Turning back to the August 2024 protests, one might ask: why now? Why did Nigerians spend ten days protesting against corruption when there had been rampant corruption for so long?

My research suggests that the nature of the corruption claims – specifically, anger over large-scale government graft – is what counts.

Recent developments seem to support this.

What’s changed

First, corruption perceptions have spiked. In 2021, Afrobarometer polled 1,600 Nigerians, asking them whether levels of corruption had risen, stayed the same, or decreased in the past year. At the time, just over 35% stated that corruption had “increased a lot”. One year later, that number had nearly doubled, jumping to just under 65%.

This drastic increase in perceived corruption reveals a broader lack of faith in the government and concern over the future of the country.

Second, tipping points help with mobilisation. The protests in early August arose as the financial crisis crystallised and as a series of economic policies brought into sharp relief the economic disparities between the rich and the poor.

The removal of fuel subsidies is a particularly touchy subject in Nigerian politics. In 2012, Nigerians took to the streets over the same issue, leading to a week-long “occupation” of major Nigerian cities by protesters.

Implications

Protests are a highly visible signal that citizens are frustrated; however, it is easy to overlook the possibility that citizens may be widely upset about a broad array of issues, but only willing to speak out in response to some of those issues.

There is a knock-on consequence to this; namely, that police corruption has a more direct effect on the lives of Nigerians than elite corruption, but often goes unaddressed.

– Elite corruption has the power to ignite mass protests in Nigeria – why police corruption doesn’t
– https://theconversation.com/elite-corruption-has-the-power-to-ignite-mass-protests-in-nigeria-why-police-corruption-doesnt-239760

MIL OSI Africa –

January 23, 2025
MIL-OSI Security: Edmonton — Fraudster arrested for money laundering offences via hawala system
Source: Royal Canadian Mounted Police

The RCMP Federal Policing Northwest Region’s Provincial Financial Crime Team (PFCT) in Edmonton has charged an Airdrie resident with fraud and money laundering-related offences.

Between January and July 2023, the accused is alleged to have fraudulently received in excess of $100,000 from domestic and international victims who sent money via e-transfer and wire transfer to purchase goods from online sales platforms. The fraudulent sales included goods such as hay bales, deer antlers, antiseptic cleaning wipes and sea urchins.

The accused is also believed to have been running an informal value transfer system, known as hawala, using trade-based money laundering methods that contravene the Proceeds of Crime (Money Laundering) and Terrorist Financing Act (PCMLTFA).

Mbua Ngomba Kalla, 49, a resident of Airdrie, was charged was arrested and charged with:
- Theft over $5,000 contrary to section 380(1)(a) of the Criminal Code;
- Possession of property obtained by crime contrary to section 355(a) of the Criminal Code;
- Failure to register as a money service business contrary to section 11.1 of the PCMLTFA;
- Failure to report large value transactions contrary to section 12 of the PCMLTFA; and,
- Failure to verify identity contrary to section 74(1) of the PCMLTFA.
Kalla is scheduled to appear in the Airdrie Provincial Court on Oct. 17, 2024.

“By working with our partners at the Financial Transactions and Reports Analysis Centre of Canada and law enforcement agencies across Canada, we found that the individual used the internet to commit multiple frauds with victims across western Canada and abroad.”
- Insp. John Lamming, RCMP Federal Policing Northwest Region
If you believe you may be a victim of fraud, or are currently being targeted by fraud, please report it to your local law enforcement and the Canadian Anti-Fraud Centre (CAFC) at 1-888-495-8501. Instances of compromised personal and/or financial information should be reported to your bank and credit card company. To learn more about the various types of frauds and scams, please visit the CAFC’s scam webpage.

The Provincial Financial Crime Team is a specialized unit that conducts investigations relating to multi-jurisdictional serious fraud, investment scams and corruption.

MIL Security OSI –
January 23, 2025
MIL-OSI Security: Met detectives secure justice following the murder of a teenager in Dagenham

Source: United Kingdom London Metropolitan Police

Four men have been jailed for a total of 91 years after being found guilty of fatally stabbing an 18-year-old in Dagenham thanks to the work of dedicated Met officers.

Wazabakana Kukabu, known as Jordan to his loved ones, was tragically murdered last year (May 2023).

At the Old Bailey on Tuesday, 15 October, Michael Tommy-Mbogba, 21 (13.12.02) of Arkwrights, Harlow was sentenced to 29 years. Toulwalase Odunewu, 18 (22.10.05) of Angel Way, Romford was also sentenced to 23 yea

rs in prison.

A 16-year-old boy – who cannot be named for legal reasons – was also sentenced to 16 years for the same murder, while a 17-year-old – who also cannot be named – was sentenced to 23 years.

Detective Chief Inspector Laura Semple, who led the investigation, said: “I want to extend our deepest condolences to Jordan’s family and those who knew him – our thoughts very much remain with them today.

“I would also like to thank those witnesses who came forward and provided crucial evidence during the trial, as well as acknowledge the incredible efforts of those Met officers and other emergency service staff who tried so desperately to save Jordan’s life.

“Knife crime has a devastating impact on our communities and rips families apart – that’s why we’re committed to doing everything in our power to work with partners and charities, such as the Ben Kinsella Trust, to protect young people and make London safer.”

At around 23:45hrs on Friday, 5 May 2023, Jordan and his friend drove to Dagenham Heathway station, where they parked their car. The four defendants were already nearby and moved towards the vehicle brandishing machetes. One of the defendants stabbed Jordan in the chest while he sat in the back seat.

He managed to sprint away and stop a passing car for help, but quickly collapsed on the road.

Police officers on patrol nearby provided CPR but Jordan was sadly pronounced dead a short time later.

Detectives immediately launched an investigation and pieced together CCTV of the attack and the defendants leaving the scene. They identified witnesses as part of the investigation, who came forward and supplied crucial evidence.

One explained that he had seen the defendants sitting on the top deck of a bus after the murder re-enacting the fatal attack they had just carried out.

Met search teams found a blood-stained knife close to the scene, which was tested and matched to Tommy-Mbogba. Fingerprints were also found in a taxi, which the group had used later that night.

The 17-year-old boy was also found guilty of the attempted murder of Jordan’s friend, while the other three defendants were found guilty of Grievous Bodily Harm (GBH) against the same victim.

All were also found guilty of a separate incident of violent disorder, which had taken place two days previously.

In a statement Jordan’s father said: “I want to take this opportunity to thank the judge, the prosecution team and the investigation team for all the hard work. My son possessed beauty both inside and out. He had a pure heart and was so gentle he would not harm anyone, yet his life was taken so prematurely. I can only visit Jordan’s grave and mourn the loss of his beautiful presence to this world.”

In a statement Jordan’s mother said: “Words will never explain the pain and devastation I have writing this. Jordan has a family who love him so much and you took my precious son away from us. He always showed his whole family and everyone who knew him love and affection.”

If you are concerned about knife crime or know somebody who carries a weapon, has been a victim or is at risk of becoming a victim – please visit the Crimestoppers website or the Met’s ‘Stop Knife Crime’ web pages.

Note to Editors

There is no video footage of the incident available for release at the request of Jordan’s family.

All four defendants were previously found guilty at a trial at Old Bailey on Monday, 17 June 2024.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Makwa Sahgaiehcan First Nation — Loon Lake RCMP ask public to report sightings of Christian Mitsuing

Source: Royal Canadian Mounted Police

On October 13, 2024 at approximately 7 p.m., Loon Lake RCMP received a report of a firearm discharge on Makwa Sahgaiehcan First Nation. Officers immediately responded.

Officers investigated and determined no injuries were associated with the report.

During the course of investigation, an officer was out of their police vehicle taking statements. An ATV with a male driver and female passenger suddenly drove toward the officer at high speed. The officer had to quickly move out of the way to avoid being struck. The ATV then fled.

The officer did not report physical injuries.

The next day, officers were patrolling on Makwa Sahgaiehcan First Nation. They observed the ATV from the previous night’s incident. Officers attempted to stop the ATV but it fled.

As a result of continued investigation, 31-year-old Christian Mitsuing from Makwa Sahgaiehcan First Nation is charged with:

– two counts, operation while prohibited, Section 320.18(1)(a), Criminal Code;

– one count, dangerous operation of a motor vehicle, Section 320.13(1), Criminal Code;

– one count, assault with weapon on police officer, Section 270(1)(a), Criminal Code; and

– one count, flight from peace officer, Section 320.13, Criminal Code.

A warrant has been issued for his arrest and Loon Lake RCMP is actively working to locate him. Investigators ask members of the public to report all sightings of Christian Mitsuing and information on his whereabouts.

Christian Mitsuing is described as approximately 5’10” and 180 lbs. He has black hair and brown eyes. He has numerous small tattoos on his face.

If you see Christian Mitsuing, do not approach him. Call Loon Lake RCMP by dialling 310-RCMP. Information can also be submitted anonymously by contacting Saskatchewan Crime Stoppers at 1-800-222-TIPS (8477) or http://www.saskcrimestoppers.com.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Two men arrested as victim named following a fatal shooting in Barking

Source: United Kingdom London Metropolitan Police

Two men have been arrested by detectives investigating a fatal shooting in Barking.

Police were called at approximately 04:35hrs on Sunday, 13 October to reports of a man injured in Linton Road, Barking.

Officers and London Ambulance Service attended and found a man suffering a gunshot injury. Despite the best efforts of the emergency services he was pronounced dead on scene.

He has today been named as Hanif Redwood, who was aged 32. His family continue to be supported by specialist officers.

A special post mortem revealed that he died of a single gunshot wound to the head.

Two men have been arrested on suspicion of murder, they remain in custody in an East London police station.

Detective Chief Inspector Mark Rodgers, who is leading the investigation, said: “We continue to work at a fast pace to progress this investigation. We have made two arrests which is a positive step forward into building a picture of what happened on Sunday night.

“Hanif was an innocent member of the public whose life was tragically taken far too soon. Hanif was a father of two, this painful loss will forever effect his family.

“We will continue to support Hanif’s family and will update them at every point possible. We ask for you to respect their privacy during this unimaginably difficult time.

“Despite the two arrests, we are appealing for anyone who was present in the area who may have seen or heard anything relating to this incident to please get in touch. I want to stress to you that Hanif was a hardworking, innocent man – we need to understand why this attack was carried out.

“You can submit any footage or information via this link.

“I want to thank the community for their patience as we carried out all our relevant enquiries. Your support does not go unnoticed. We will have extra patrols in the area – please do voice any of your concerns to officers.”

Anyone with information is asked to call 101 or ‘X’ @MetCC and quote CAD1295/13OCT. You can upload information and material online.

You can also provide information anonymously to the independent charity Crimestoppers on 0800 555 111.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: St. John’s — Impaired drivers arrested by RCMP Traffic Services during Operation Impact

Source: Royal Canadian Mounted Police

During Operation Impact, from October 11-14, 2024, RCMP NL’s Traffic Services Units arrested multiple impaired drivers and ticketed a number of motorists for various traffic offences.

RCMP Traffic Services Units from East, Central, West and Labrador participated in Operation Impact, an annual 4-day traffic enforcement initiative that occurs over the Thanksgiving long weekend. Operation Impact focusses on the enforcement of impaired drivers, aggressive drivers, distracted drivers and those not wearing a seat belt.

A total of five drivers were arrested for impaired driving offences, including impairment by alcohol and impairment by drugs. One motorist received a roadside licence suspension for having a blood alcohol concentration that was above the provincial limit but below the criminal threshold. Where appropriate to do so, drivers were released from custody with future court dates to face charges of impaired operation, were issued licence suspensions and their vehicles were seized and impounded.

During this time frame, 15 check points were conducted in various areas of the province with more than 1600 vehicles checked.

Road safety should be of priority to all motorists throughout the year. Driving with due care and attention for yourself and all others who share the roadway is always the best decision. RCMP NL’s Traffic Services remains dedicated to the enforcement of those who place others at unnecessary risk on roadways throughout Newfoundland and Labrador.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: RM of Rockwood — Stonewall RCMP respond to fatal collision

Source: Royal Canadian Mounted Police

On October 15, 2024, at approximately 5:25 pm, Stonewall RCMP received a report of a SUV travelling northbound in the southbound lane of Highway 7 at Stony Mountain and it appeared a collision had occurred. A Stonewall RCMP officer was on scene in under five minutes and found the SUV had collided with a pickup truck on Highway 7, about half a kilometer north of Road 73 North.

The SUV was on fire and the driver and lone occupant was deceased. The deceased has not yet been identified.

The driver and lone occupant of the pickup, a 36-year-old male from Teulon, was removed from the vehicle and officers provided CPR. He succumbed to his injuries and was pronounced deceased on scene.

A RCMP Forensic Collision Reconstructionist attended the scene and is assisting with the ongoing investigation.

MIL Security OSI –

January 23, 2025
MIL-OSI Canada: Government of Canada National Action Plan results in 19 per cent decline in auto theft
Source: Government of Canada News

News release

Today, the Honourable Anita Anand, President of the Treasury Board and Minister of Transport, released an update on the progress made under the National Action Plan on Combatting Auto Theft.
October 16, 2024 – Oakville, ON

Today, the Honourable Anita Anand, President of the Treasury Board and Minister of Transport, released an update on the progress made under the National Action Plan on Combatting Auto Theft.

The Action Plan, which was developed following the National Summit on Combatting Auto Theft, focuses on disrupting, dismantling and prosecuting the organized crime groups involved in auto theft. It is built on the following pillars: Intelligence and information sharing; Intervention; and Legislation, regulations and governance.

The Government of Canada’s efforts, guided by the Action Plan and done in collaboration with its domestic and international partners, including provinces, territories, municipalities, industry, and law enforcement, are yielding results. According to the Insurance Bureau of Canada, national auto theft trends for 2024 have shown a 19 per cent decline in auto theft in the first half of the year compared to the same period last year. As well, the Canada Border Services Agency (CBSA) has intercepted more than 1,900 stolen vehicles in railyards and ports this year, already exceeding last year’s total. In the Greater Toronto Area alone, 620 stolen vehicles have been intercepted by the CBSA in 2024.

To date, the following key milestones have been achieved through the Action Plan.
- Changes to the Criminal Code to provide additional tools for law enforcement and prosecutors to address auto theft, including the addition of new offences targeting the use of violence in the commission of a vehicle theft and links to organized crime, as well as offences for the possession or distribution of electronic tools used to commit auto theft and laundering proceeds of crime for the benefit of a criminal organization. These changes strengthen an already robust framework to address organized crime and auto theft.
- Enhancements to intelligence and information sharing between municipal, provincial, federal and international police and customs officials.
- Expansion of scanning technology, data analytics and targeting to increase the examination of shipping containers – including the deployment of additional scanning technology in the Greater Toronto Area.
- Launch of up-to-date specialized anti-auto theft training for law enforcement, delivered by the Canadian Police College.
- Radiocommunication Act amendments to regulate the sale, distribution, and importation of radio devices used for auto theft.
- Establishment of a National Intergovernmental Working Group on Auto Theft to coordinate actions, monitor progress and explore new initiatives to combat auto theft and transnational organized crime.
- New supports for the development of early-stage, pre-commercial, anti-theft technologies.
While this downward trend is promising, maintaining it will require continued focus and collaboration. Canadians can rest assured that the Government of Canada, as well as our law enforcement agencies, will continue to be vigilant.
Quotes

“When we see that auto theft rates are declining, we know that we’re taking steps in the right direction. Our Government is fighting to keep Canadians safe and implementing our Action Plan, including exploring new anti-theft technologies, regulatory updates, and improving port security.”

– The Honourable Anita Anand, President of the Treasury Board and Minister of Transport

“Today’s Action Plan update highlights some significant steps forward in our fight to combat this complex crime. Our government will continue to build on this progress to ensure we remain responsive and adaptable in our approach to combat auto theft and the organized crime groups behind it.”

– The Honourable Dominic LeBlanc, Minister of Public Safety, Democratic Institutions and Intergovernmental Affairs

“We have shown that by working together, we can tackle complex issues and ensure that all people in Canada can feel safe in their communities. We strengthened the Criminal Code to give law enforcement the full range of tools they need to address auto theft and ensure that offenders are held to account, while strengthening penalties to deter crime.”

– The Honourable Arif Virani, Minister of Justice and Attorney General of Canada

“No Canadian should wake up to discover their means of getting to work, school, or the grocery store has been stolen. We are working with Canadian companies, online retailers and the automotive industry to come up with new initiatives such as Innovative Solutions Canada’ Vehicle Theft Prevention challenge, launched last month. By fostering innovative ideas that will enhance vehicle security and working collaboratively, we can protect our communities and put a stop to auto theft.”

– The Honourable François-Philippe Champagne, Minister of Innovation, Science and Industry

“We have a common goal to prevent and reduce auto theft crimes, enforce the law and keep Canadians safe. The RCMP has been actively sharing intelligence and information between all levels of law enforcement partners across Canada and internationally, and training investigators with the latest techniques to better detect and disrupt this criminal activity.”

– Michael Duheme, Commissioner, Royal Canadian Mounted Police

“Combatting auto theft and the organized crime groups that benefit from it is a priority for the CBSA. So far this year, the CBSA has intercepted more than 1,900 stolen vehicles, already exceeding last year’s total. We have also deployed additional scanning technology in the Greater Toronto Area. Moreover, we continue to act on 100% of referrals by enforcement partners and have expanded data analytics and targeting to increase the targeting of shipping containers. Finally, we have established a 24/7 central point of contact for police to coordinate requests to locate vehicles that may be tracked to a port. While we are pleased with what has already been achieved through the National Action Plan, we know more work needs to be done and we will continue collaborating with our partners to intercept stolen vehicles before they leave the country.”

– Erin O’Gorman, President of the Canada Border Services Agency

Quick facts
- The Government of Canada has been engaging with industry and other stakeholders on auto theft, including port authorities, rail and shipping companies, as well as the automotive and insurance industries, as part of our collective effort to combat this crime.
- While the investigation of these types of offences falls under the police of jurisdiction, the Royal Canadian Mounted Police (RCMP) and the Canada Border Services Agency (CBSA) are supporting important work being done to make progress on this issue.
- The RCMP and CBSA continue to be involved in integrated task forces led by the Ontario Provincial Police and Sûreté du Québec.
- The CBSA has established a 24/7 central point of contact for police to coordinate requests to locate vehicles that may be tracked to a marine port or intermodal facility and continues to act on 100% of referrals.
- The RCMP continues to process international notifications and requests received through INTERPOL’s stolen motor vehicle database to better track stolen vehicles with international partners. From February to August 2024, the RCMP received 2,310 alerts about Canadian vehicles and 424 international collaboration requests.
- The CBSA, in collaboration with police forces across Ontario and Quebec, announced the recovery of nearly 600 stolen vehicles from the Port of Montreal through Project Vector, in April 2024.
- The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) continues to produce financial intelligence disclosures to law enforcement in support or investigations into organized crime, including auto theft.
- Police services have been encouraged to collect information from victims relating to tracking technology present in their vehicles (i.e., Apple AirTag, Tile Tracker, Samsung SmartTracker) and add this information to the Canadian Police Information Centre system.
- Transnational organized criminal groups are believed to be involved in the export of stolen vehicles from Canada; however, most vehicle thefts involve lower-level threat groups, with violent street gangs being the most prevalent.
- Most stolen vehicles exported are destined for Africa and the Middle East. Some stolen vehicles also remain in Canada, enabling other crimes to be committed with the vehicles and are destroyed afterwards.
Related products

Associated links

Contacts

Gabriel Brunet
Press Secretary
Office of the Honourable Dominic LeBlanc
Minister of Public Safety, Democratic Institutions and Intergovernmental Affairs
819-665-6527
gabriel.brunet@iga-aig.gc.ca

Media Relations
Public Safety Canada
613-991-0657
media@ps-sp.gc.ca

MIL OSI Canada News –
January 23, 2025
MIL-OSI USA: North Carolina Man Arrested on Criminal Solicitation of a Minor and Related ChargesRead More

Source: US State of South Carolina

(COLUMBIA, S.C.) – South Carolina Attorney General Alan Wilson announced the arrest of Joseph Daniel Headrick, 35, of Waynesville, N.C., on three charges connected to the attempted sexual exploitation of a minor. Internet Crimes Against Children (ICAC) Task Force investigators with the Greenville Police Department made the arrest. Investigators with the U.S. Marshals Service, also a member of the state’s ICAC Task Force, and the Waynesville Police Department assisted with the investigation.

Investigators state Headrick solicited a person he believed to be a minor for sex, encouraged them to produce child sexual abuse material*, and sent sexually explicit images to a person he believed to be a minor.

Headrick was arrested on October 11, 2024. He is charged with one count of criminal solicitation of a minor (§16-15-342), a felony offense punishable by up to 10 years imprisonment; one count of attempted sexual exploitation of a minor, first degree (§16-15-395), a felony offense punishable by up to 20 years imprisonment; and one count of attempted dissemination of obscene material to a person under age eighteen (§16-15-345), a felony offense punishable by up to 10 years imprisonment.

This case will be prosecuted by the Attorney General’s Office.

Attorney General Wilson stressed all defendants are presumed innocent unless and until they are proven guilty in a court of law.

* Child sexual abuse material, or CSAM, is a more accurate reflection of the material involved in these heinous and abusive crimes. “Pornography” can imply the child was a consenting participant. Globally, the term child pornography is being replaced by CSAM for this reason.

MIL OSI USA News –

January 23, 2025
MIL-OSI Security: Broadview — Broadview RCMP seek public assistance locating missing 26-year-old female

Source: Royal Canadian Mounted Police

On October 15, 2024, Broadview RCMP received a report of a missing 26-year-old female, Shyla Kaysaywaysemat.

Shyla was last seen on October 12, 2024 at a residence on the Kahkewistahaw First Nation.

Shyla is described as approximately 5’3″ tall. She has brown eyes and long brown hair.

Since she was reported missing, Broadview RCMP have been checking places Shyla is known to visit and following up on information received. They are now asking members of the public to report information on Shyla’s whereabouts.

If you have seen Shyla or know where she is, contact Broadview RCMP at 310-RCMP. Information can also be submitted anonymously by contacting Saskatchewan Crime Stoppers at 1-800-222-TIPS (8477) or http://www.saskcrimestoppers.com.

MIL Security OSI –

January 23, 2025
MIL-OSI Security: Security News: Justice Department and City of Albuquerque, New Mexico, Seek Partial Termination of Consent Decree Covering Albuquerque Police Department
Source: United States Department of Justice 2

The Justice Department and City of Albuquerque (City), New Mexico, filed a joint motion today seeking court approval to terminate certain portions of the consent decree covering the Albuquerque Police Department (APD). The joint motion follows the independent monitor’s 20th report, also filed today, which concluded that the City and APD have reached full compliance with 99% of the consent decree’s terms, the highest level of compliance achieved by APD.

The monitor’s report indicates that APD’s compliance level reflects significant achievement in critical areas such as completing timely and high-quality use-of-force and misconduct investigations. These accomplishments take place against a backdrop of a 37% reduction in APD’s use of serious force in the last four years.

“Our joint motion to terminate additional provisions of this consent decree demonstrates that the Justice Department has come even closer to its ultimate goal of ensuring constitutional and effective policing in Albuquerque,” said Assistant Attorney General Kristen Clarke of the Justice Department’s Civil Rights Division. “Real reform is not only possible, but evident in Albuquerque. Since this consent decree went into effect, the Albuquerque Police Department has made significant and sustained progress in implementing policing practices that respect civil rights and promote public safety. We have seen a 37% decline in use of serious force over the last four years, and continue to move reform efforts forward. The Justice Department will continue to work with the City and its police department toward our shared goal of constitutional and effective policing—the community deserves nothing less.”

“This partial termination proves that the hard work of the men and women of the Albuquerque Police Department and the persistent advocacy from the community are achieving real results,” said U.S. Attorney Alexander M.M. Uballez for the District of New Mexico. “Where the existence of a consent agreement is a symptom of dysfunction, every paragraph terminated is evidence of progress. Effective policy, operational observance of those rules, and persistent compliance with reform have set up APD for success. The sustainment period which follows termination will ensure that APD delivers the police department the people of Albuquerque deserve.”

The joint motion asks the court to terminate 31 consent decree provisions with which APD has fully complied for at least two years. The provisions cover a range of topics, including use of electronic control weapons (commonly known as Tasers); crisis intervention; crisis prevention; and supervision. It is the third joint motion the parties have filed in the last year seeking to terminate a total of 183 paragraphs of the consent decree, or 67% of the enforceable provisions of the agreement.

APD has made substantial change in reaching compliance with provisions of the consent decree the parties seek to terminate, including:
- APD has properly trained all officers on using Tasers to ensure that officers only use these weapons when lawful and necessary.
- APD has trained specialized officers to respond to behavioral health crises and deployed those officers across the department. Albuquerque has also created a new agency called Albuquerque Community Safety to send trained mental health professionals to 911 calls involving behavioral health issues. Through these two initiatives, Albuquerque is working to ensure that people get the help they need.
- APD has improved supervision across the police department, ensuring that officers receive the guidance, direction and support they need to be effective and comply with the law.
The District Court for the District of New Mexico entered the consent decree in June 2015. The decree, as well as information about the Civil Rights Division, are available on the Special Litigation Section Cases and Matters website. Additional information about implementation of the consent decree is also available on the U.S. Attorney’s Office website. If you believe your civil rights have been violated, please submit a complaint through our online portal.

MIL Security OSI –
January 23, 2025
MIL-OSI Security: Justice Department and City of Albuquerque, New Mexico, Seek Partial Termination of Consent Decree Covering Albuquerque Police Department
Source: United States Attorneys General

The Justice Department and City of Albuquerque (City), New Mexico, filed a joint motion today seeking court approval to terminate certain portions of the consent decree covering the Albuquerque Police Department (APD). The joint motion follows the independent monitor’s 20th report, also filed today, which concluded that the City and APD have reached full compliance with 99% of the consent decree’s terms, the highest level of compliance achieved by APD.

The monitor’s report indicates that APD’s compliance level reflects significant achievement in critical areas such as completing timely and high-quality use-of-force and misconduct investigations. These accomplishments take place against a backdrop of a 37% reduction in APD’s use of serious force in the last four years.

“Our joint motion to terminate additional provisions of this consent decree demonstrates that the Justice Department has come even closer to its ultimate goal of ensuring constitutional and effective policing in Albuquerque,” said Assistant Attorney General Kristen Clarke of the Justice Department’s Civil Rights Division. “Real reform is not only possible, but evident in Albuquerque. Since this consent decree went into effect, the Albuquerque Police Department has made significant and sustained progress in implementing policing practices that respect civil rights and promote public safety. We have seen a 37% decline in use of serious force over the last four years, and continue to move reform efforts forward. The Justice Department will continue to work with the City and its police department toward our shared goal of constitutional and effective policing—the community deserves nothing less.”

“This partial termination proves that the hard work of the men and women of the Albuquerque Police Department and the persistent advocacy from the community are achieving real results,” said U.S. Attorney Alexander M.M. Uballez for the District of New Mexico. “Where the existence of a consent agreement is a symptom of dysfunction, every paragraph terminated is evidence of progress. Effective policy, operational observance of those rules, and persistent compliance with reform have set up APD for success. The sustainment period which follows termination will ensure that APD delivers the police department the people of Albuquerque deserve.”

The joint motion asks the court to terminate 31 consent decree provisions with which APD has fully complied for at least two years. The provisions cover a range of topics, including use of electronic control weapons (commonly known as Tasers); crisis intervention; crisis prevention; and supervision. It is the third joint motion the parties have filed in the last year seeking to terminate a total of 183 paragraphs of the consent decree, or 67% of the enforceable provisions of the agreement.

APD has made substantial change in reaching compliance with provisions of the consent decree the parties seek to terminate, including:
- APD has properly trained all officers on using Tasers to ensure that officers only use these weapons when lawful and necessary.
- APD has trained specialized officers to respond to behavioral health crises and deployed those officers across the department. Albuquerque has also created a new agency called Albuquerque Community Safety to send trained mental health professionals to 911 calls involving behavioral health issues. Through these two initiatives, Albuquerque is working to ensure that people get the help they need.
- APD has improved supervision across the police department, ensuring that officers receive the guidance, direction and support they need to be effective and comply with the law.
The District Court for the District of New Mexico entered the consent decree in June 2015. The decree, as well as information about the Civil Rights Division, are available on the Special Litigation Section Cases and Matters website. Additional information about implementation of the consent decree is also available on the U.S. Attorney’s Office website. If you believe your civil rights have been violated, please submit a complaint through our online portal.

MIL Security OSI –
January 23, 2025

Category: Police

Prosecution brought against those involved

Site inflicted ‘misery on the local community’

Background

Share this page

Updates to this page

The Vice-President of India, Shri Jagdeep Dhankhar to be the Chief Guest on the 31st Foundation Day of the National Human Rights Commission, IndiaMore than 23 lakh cases resolved and Rs. 254 crore recommended as relief to the victims of human rights violations during its 31 years journey

Summary

Technical Details

Overview of Activity

Initial Access and Persistence

Lateral Movement

Credential Access

Privilege Escalation

Discovery

Command and Control

Exfiltration and Collection

Detection

Mitigations

Validate Security Controls

Contact Information

Disclaimer

Version History

Appendix A: MITRE ATT&CK Tactics and Techniques

Appendix B: Indicators of Compromise

Why elite corruption sparks protest

What’s changed

Implications

Why elite corruption sparks protest

What’s changed

Implications

News release

Quotes

Quick facts

Related products

Associated links

Contacts

The Vice-President of India, Shri Jagdeep Dhankhar to be the Chief Guest on the 31st Foundation Day of the National Human Rights Commission, India

More than 23 lakh cases resolved and Rs. 254 crore recommended as relief to the victims of human rights violations during its 31 years journey