Federal Bureau of Investigation Mission Statement

In the words of the FBI: “Our mission is to help protect you, your children, your communities, and your businesses from the most dangerous threats facing our nation – from international and domestic terrorists to spies on U.S. soil…from cyber villains to corrupt government officials…from mobsters to violent street gangs…from child predators to serial killers. Along the way, we help defend and uphold our nation’s economy, physical and electronic infrastructure, and democracy.

FBI Strategic IT Goals

  1. Create a Resilient, Agile and Secure Infrastructure
  2. Improve Analysis, Collaboration and Information Sharing
  3. Transform Our IT Workforce
  4. Improve the overall Management of Information Technology
  5. Enhance Customer Satisfaction

Cyber/Information Technology Movements

  • The FBI has their National Cyber Investigative Joint Task Force (NCIJTF)
  • As described by the directer, “[The FBI is] uniquely positioned to investigate counterintelligence threats in the cyber arena. The FBI is partnered in the National Cyber Investigative Joint Task Force with elements of the intelligence community to investigate and respond to counterintelligence cyber threats.”
  • The NCIJTF is made up of an information operations group as well an analytical group, designed to “synthesize a common operating picture of hostile intrusion related activity to aid investigations, reviews all-source data, and produces quarterly reports.”

Items of Interest

Anonymous Claims network Breach of FBI Security Contractor ManTech

The Anonymous “hacktivism” group hacked ManTech, and apparently pulled down over 500MB of sensitive material. Some of the documents include resumes of individuals, as well a statement of work for a NATO agency. The group stated that they will continue these attacks without fail — regardless of arrests or reprisals. ManTech provides cybersecurity to many agencies — including NSA, DoD, State Department and DHS.

FBI Targets ‘Scareware’ Distributors

FBI has announced “Operation Trident Tribunal,” a coordinated, international law-enforcement action that disrupted the activities of two international cyber crime rings involved in the sale of scareware. These groups are thought to be associated with over $74M in theft.

FBI will see IT budget increase

The FBI will fund 42 positions for investigative improvement and protection of infrastructure related to malicious cyber intrusions. As well, they will fun 23 positions for aggregated investigative data management system as well to establish a domestic communications assistance center. The total funding for these two should near $40M.

FBI Ramping Up Cyber-Attack Defense

The FBI is being pushed by continuous attacks to increase their ability to fight cybercrime. Robert Mueller, Director, cited cyber-attacks as one of the top FBI challenges in the coming years, and that continuous (and cash intensive) efforts will be necessary to protect networks.

Hackers hit Atlanta FBI affiliate

FBI shuts down Atlanta-based website that tracks cyber-crime after it was compromised by LulzSec hacking group. InfraGuard Atlanta, a non-profit partnership between private, public and academia security was hacked. The group has become increasingly audacious, hacking Nintendo and PBS.

FBI says audit does not reflect cyber capabilities

FBI says audit finding insufficient national cybersecurity investigation skills does not reflect current expertise and results. DoJ IG audit stated that FBI field offices lack the skills and expertise required for investigating national cybersecurity intrusions. This report states that many field offices are facing a shortage of forensic investigators, intelligence analysts and tactical intelligence.

FBI probes breach into Internet Security firm.

A hacker got into internet security firm Comodo’s servers and had it issue fake certificates. Circumstantial evidence points to the attack originating in Iran –however this has yet to be proven.

FBI Seeks Expanded Web Wiretapping Capability

FBI is searching for better technology as well more authority to execute wiretapping on electronic communications. There are both technical and legal difficulties in this endeavor. They seek capabilities that proffer network and packet interception.

Reports of FBI back door roils OpenBSD community

Allegations that the FBI surreptitiously placed a back door into the OpenBSD operating system have alarmed the computer security community, prompting calls for an audit of the source code and claims that the charges must be a hoax.

The report surfaced in e-mail made public yesterday from a former government contractor, who alleged that he worked with the FBI to implement “a number of back doors” in OpenBSD, which has a reputation for high security and is used in some commercial products.

ManTech on down-select for Huge DoJ IT Services contract

The multiple-award, indefinite-delivery/indefinite-quantity (IDIQ) contract has one base year and seven option years, with a total ceiling value of $30 billion for all awardees, making it the largest contract ever awarded by the FBI. Under the FBI IT Supplies and Support Services (FBI IT Triple S) contract, ManTech will provide technology services including secured communications, application development, systems engineering, cyber security, counter-terrorism analytics, tactical biometrics, system operations and maintenance, and other information technology support.

  • Outsourced $99.5M to ManTech in August of Cyber Security Support
  • $40M to BAE for Cybersecurity for Information Assurance Program Support
    • BAE’s Intelligence and Security Sector, based in Arlington, Va., will carry out the work under the new award, which makes the firm the prime contractor to provide information security risk assessments, a form of quality control, for the FBI’s IT systems.
    • BAE also will oversee a cyclical and continuously monitored assessment process to ensure that FBI data — both classified and unclassified — is stored and transmitted safely even as the agency makes hardware and software changes to its IT systems. The firm will make changes to IT systems as risks and security needs change, it said