Faith-Based Daily Awareness Post 14 January 2025

These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.

FB-ISAO Newsletter

Volume 7, Issue 1

January-2025

Articles in this month’s newsletter include:

Hello 2025 And a Review of 2024

The Faith-Based Information Sharing & Analysis Organization (FB-ISAO) provides members with information, analysis, and capabilities to help reduce risk while enhancing preparedness, security, and resilience. By way of our reporting, we look at the threat landscape and inform our members of concerns for their consideration.

This article provides a snapshot of multiple Advisory and Weekly Reports provided to FB-ISAO members in 2024.

AI Powered Phishing

This article discusses how attackers’ tactics are becoming more sophisticated and convincing due to artificial intelligence (AI). Several links are provided for more information.

The newsletter also Spotlights:

Winter Weather

How weather events could have a significant impact on business operations for Faith Based Organization is spotlighted. Several considerations for preparedness are also provided.

The newsletter also covers:

• FB-ISAO Cyber and Physical Threat Levels remains Elevated
• FB-ISAO Advisory Board
• How to How to Join FB-ISAO
• FB-ISAO Slack
• Upcoming FB-ISAO Events

The January 2025 Newsletter has been directly distributed to members and may be accessed here. 

FBI IC3 Alert Number: I-011325-PSA: Threat of Copycat Attacks after ISIS-Inspired Vehicle Attack in New Orleans

From the PSA:

The Federal Bureau of Investigation (FBI) and Department of Homeland Security (DHS) are issuing this Public Service Announcement to highlight a potential public safety threat from violent extremists in response to the New Year’s Day attack in New Orleans, Louisiana…

The FBI and DHS are concerned about possible copycat or retaliatory attacks due to the persistent appeal of vehicle ramming as a tactic for aspiring violent extremist attackers. Previous attackers inspired by foreign terrorist organizations (FTOs) who have conducted vehicle attacks in the United States and abroad have used rented, stolen, and personally owned vehicles, which are easy to acquire. Some have used additional weapons, such as firearms and knives, to attack individuals after the vehicle has stopped. Additionally, attackers may attempt to conceal and pre-position improvised explosive devices (IEDs) to supplement a vehicle attack. Targets have included pedestrians, law enforcement or military members, and crowded public venues, including festivals and commercial centers, which generally are accessible from roadways. We ask that the public remain vigilant regarding possible copycat or retaliatory attacks and report any suspicious activity to law enforcement.

…

To help mitigate potential risks from a variety of threat actors, DHS, the FBI, and the National Counterterrorism Center have compiled resources for law enforcement officers, other first responders, faith leaders, and communities, including a list of funding opportunities, resources for technical assistance, and educational materials.

The PSA also provides other resources.

Related Article:

• FBI warns of potential ‘copycat or retaliatory’ New Orleans attacks
• CA: 3 Humvees, equipment stolen from Orange County military warehouse
• The Islamic State’s Global Long Game and Resurgence in Syria Poses an Evolved Threat to the West | Institute for the Study of War
• How New Orleans failed to protect Bourbon Street from attack, block by block

Analyst Comments:

Reacting to the New Orleans vehicle ramming attack, and reviewing the above PSA, may cause many jurisdictions and organizations to harden their security posture. As security at many locations is hardened, potential attackers will look for softer targets. Faith-Based Organizations (FBO), especially those holding outdoor activities, should consider developing or improving safeguards against vehicle attacks. Additionally, parking lots at the end of a service may be a vulnerable area as large numbers of worshipers return to their cars. Security begins at the parking lot and the outer perimeter.

A guide to ransomware

The UK’s National Cyber Security Centre-(NCSC) website explains:

Ransomware is a type of malware which prevents you from accessing your device and the data stored on it, usually by encrypting your files. A criminal group will then demand a ransom in exchange for decryption.

The guidance details the following:

• What is ransomware?
• How does ransomware work?
• Should I pay the ransom?
• Prevent and protect against ransomware
• Monitor and detect ransomware
• Respond and recover from ransomware

Related Article:

• The Evolution of Ransomware: From Simple Encryption to Double Extortion Tactics

Analyst Comments:

While the NCSC guidance is aimed at UK citizens and organizations, it can serve as an introduction to those unfamiliar with ransomware. For those knowledgeable of ransomware, it can be helpful to get information from a different angle.