USFA Critical Infrastructure Protection Information Center
Infogram

To promote the awareness of fire and emergency medical service personnel, two September INFOGRAMs reported about suspicious activities at fire stations. Now is necessary to disclose another incident, which occurred at a California fire department.

Homeland Defense E-Alerts Sign up now for e-mail instant updates of homeland defense and other terrorism info Enter Your E-Mail Address Recent Terrorism Stories 9/15: FBI: Terrorist Sleeper Cell Nabbed in Buffalo 9/15: First Responders in Second Wave of Proposed U.S. Smallpox Vaccine Plan 8/27: Gov't Offers Radiation Equipment 8/15: Pentagon Area Hit on 9/11 Reopens 8/13: Federal Center Trains for Terror Threats 7/17: Pentagon Considers New Weapons 7/16: Bush Releases Homeland Security Plan 7/16: California Boosts Security After Arrests 7/16: AL Residents Near Incinerator Get Help 7/5: FBI: Gunman Went to LAX Airport to Kill 7/4: Three Dead in LAX Airport Shooting 6/28: FBI Investigates Anthrax Researchers 6/26: 20,000 Gas Masks Ordered for Capitol WMD Prep Notes 12 Recommendations to Strengthen Preparedness Against Terrorist Attacks Definitions: Chemical Agent-Related 33 Random Decontamination Considerations Radiological Terrorism: Are we Prepared? List All Prep Notes Insider September 11th: Full Coverage Forward: E-Mail This Page to a Friend or Co-Worker Interact: Discuss This and Other Topics in the Firehouse Forums

A member of the concerned department stated that on 18 September, he received a phone call from someone with a heavy foreign accent. The caller initially requested information regarding department patches, but then started asking questions about staffing and capabilities.

When queried why this type of information was needed, the caller quickly hung up the phone. On the following day, an individual of Middle Eastern appearance was found parked behind the same fire station making notes and sketching the building.

The person could not or would not speak fluent English and, therefore, did not adequately respond to questions before driving away.

The firefighters involved on both days appropriately prevented the unauthorized collection of sensitive details about their station and department. Furthermore, as encouraged in previous INFOGRAMs, they contacted local authorities and also the National Infrastructure Protection Center (NIPC).

The one firefighter provided a description of the driver, vehicle, and its license plate number. Their notification of NIPC facilitated additional incident examination by the NIPC, this INFOGRAM report, and critical information sharing with the emergency services sector.

As a reminder, phone numbers for the NIPC can be seen below.

The National Infrastructure Protection Center (NIPC) has been designated as the central point of notification for infrastructure disruptions and intrusions. Members of the emergency response community are requested to report any incidents involving their systems. There are three ways to report these attacks:

• NIPC - Voice: 202-323-3205, Fax: 202-323-2079, Web: http://www.nipc.gov/incident/cirr.htm
  
• Your local FBI office - Web: http://www.fbi.gov/contact/fo/fo.htm
  
• U. S. Fire Administration - Voice: 301-447-1325, E-Mail: usfacipc@fema.gov, Fax: 301-447-1034, Mail: 16825 S. Seton Avenue, Emmitsburg, MD 21727
  

More Recent Suspicious Activities: Maryland

On 17 September, the Frederick News-Post reported the thefts of five self-contained breathing apparatus units from two volunteer fire companies in Frederick County, MD. Each breathing unit included a facial piece, air tank, and regulator.

The thefts of these units were first noticed in late July during routine inventory checks. Both affected companies notified the Frederick County Sheriff’s Office. The FBI and neighboring law enforcement agencies were contacted as well.

After the chiefs of the two organizations verified that the equipment had not been loaned or borrowed, all company personnel were thoroughly questioned as part of the investigation. It quickly became apparent that someone had targeted the fire companies specifically for this equipment.

County officials announced they were concerned that the property could be used for illegal purposes. Additionally, they said that "there is great risk to public safety in mishandling and misuse of the breathing apparatus."

This event, as others before it, reinforces the necessity for all emergency first responders to aggressively protect their uniforms, turnout gear, equipment, and vehicles.

The 15 August INFOGRAM discussed the growing trend in the thefts or attempted thefts of these items throughout the United States. Hence, departments should review and revise their physical security plan as necessary to ensure outstanding protection of all property.

Security experts advise that now is not the time to be passive or timid about such matters. Failure to secure department equipment and apparatus may eventually jeopardize the critical infrastructures upon which survivability, continuity of operations, and mission success depend.

More Recent Suspicious Activities: St Louis

More suspicious activities at fire and emergency medical service departments have occurred. During the month of August, three engine companies of the St. Louis Fire Department reported incidents involving male subjects of "middle eastern" appearance who fled the scene when approached or questioned.

At one Engine Company the suspect was observed video taping the fire house. At another company the subject escaped after video taping the facility and the apparatus inside. At a third location the suspect entered the fire house and made inquiries regarding the size, floor space, and load capacity of the ambulance housed therein.

These recent events reinforce the necessity for all emergency response departments to remain vigilant for data collection by potential adversaries. They are reminders that all department personnel must fight complacency and remain ready to quickly stop unauthorized information gathering by the questions and filming of alleged visitors.

Also, first responders should avoid sharing information with unknown individuals who communicate by telephone or electronic mail. Intelligence experts confirm that terrorists study the information they obtain to identify existing vulnerabilities and to plan their attacks accordingly.

Failure to prevent unsanctioned collection of details about the fire and emergency medical services may jeopardize the critical infrastructures upon which the protection of life and property depends. It is as important to avert as the theft of uniforms and vehicles used by emergency responders.

When a suspicious incident occurs such as the ones mentioned above, in addition to notifying the local authorities, the National Infrastructure Protection Center (NIPC) requests contact using the NIPC information seen at the bottom of this INFOGRAM.

Notification of the NIPC will enable their specialists to attempt identification of the patterns, methods, and sources of past and future malicious actions directed against the critical infrastructures of emergency first responders.

NIPC Imposter Alert: August

The Washington Post reported on August 10th that the Transportation Security Administration (TSA) alerted the airline industry to the possibility of impostors seeking access to industry assets. TSA warned the airlines to be observant for individuals wearing stolen uniforms, citing a series of recent thefts from flight crews including uniforms, keys, and identification tags.

A few days earlier, the New York Post related that law enforcement officials throughout New York were directed to watch for impostors disguised as cops or military personnel trying to enter restricted areas.

Recent reporting also suggests a growing trend in the thefts of uniforms, vehicles, and other items used by police, firefighters, and emergency response personnel. Therefore, the CIPIC advises that fire and EMS departments, both career and volunteer, inform their personnel of this trend and acquire their cooperation in securing all stations and apparatus.

Emergency response personnel should be especially meticulous about keeping personal uniforms and equipment out-of-sight and locked in homes or car trunks.