Operation Guardian of the Walls: Israel’s double intelligence failure
May 14, 2021 4 Comments
For several days now, a war has been going on between the State of Israel and the Hamas organization that controls the Gaza Strip. The confrontation began after unrest broke out among Palestinians in Judea and Samaria, who raised allegations of Israeli damage to the Temple Mount and the Al-Aqsa Mosque. In firing missiles at Israel, Hamas tries to portray itself as protecting the sanctuaries of Islam in Jerusalem. In doing so, it seeks to strengthen its political position in Judea and Samaria against the Palestinian Liberation Organization (PLO), which is leading the Palestinian Authority. Since then, Israel has been using airstrikes against targets in Gaza, while Hamas has been firing hundreds of missiles at Israel daily. Israel is desperately trying to undermine Hamas’ military and operational capabilities, including armaments factories, while also eliminating senior commanders of the organization.
Hamas’ missile attacks managed to surprise Israel. Israeli intelligence (the Israeli Military Intelligence, known as IMI, and the Israeli Security Agency, ISA) previously estimated that Hamas’ goal was to maintain the status quo, and was not ready to initiate attacks against Israel. Not only did Israeli intelligence err in assessing Hamas’ intentions, but Hamas 
surprised observers with its range of weapons, such as long-range missiles with a reach that is in excess of 150 miles. This constitutes a strategic surprise for Israel. So far (May 13, 2021), Hamas has fired about 1,500 missiles at Israel, most of which have been intercepted by Israel’s air defense system called the Iron Dome.
At the same time, extensive riots broke out within Israel between Palestinian Israeli Arabs and Israeli far-right groups. The attacks have spread throughout the country, and the Israeli police appear unable to control them. The ISA is responsible for monitoring terrorism-related developments in the area of political subversion, including assessing the intentions of Israeli Arabs and the level of threat posed by these intentions. It appears that the ISA, was completely surprised by recent developments. The spontaneous mobilization of Israeli Arabs stems from fears that Israel intends to harm the Temple Mount and the Al-Aqsa Mosque. It is also a form of identification with their brethren in the Gaza Strip. At present, the government of Israel has not managed to restrain the mobilization of the Israeli Arabs.
In conclusion, Israeli intelligence demonstrates two blind spots. One concerns Hamas’ intentions and offensive capabilities. The other concerns misreading the intentions and degree of threat to public order in Israel by Israeli Arabs. This is why the military clash between Israel and Hamas, as well as the riots by Israeli Arabs, have not yet ended.
Dr. Avner Barnea is research fellow at the National Security Studies Center of the University of Haifa in Israel. He served as a senior officer in the Israel Security Agency (ISA).
► Author: Avner Barnea | Date: 14 May 2021 | Permalink
LAST MONTH I WROTE an 
THE FEDERAL BUREAU OF Investigation and the New York Police Department gave Capitol Police officials specific warnings that supporters of United States President Donald Trump were determined to engage in serious violence on January 6, according to federal officials. The FBI even made contact with known far-right radicals across the United States in early January, and warned them not to travel to Washington for the pro-Trump rally that resulted in the bloody attack on the US Capitol, 
IF WEDNESDAY’S ATTACK ON the United States Capitol Complex was part of a coup d’état, then the American political system should be considered safe for the time being. The mob that ransacked the Capitol was disordered, leaderless, and appeared to have no coordination, or even direction. However, the broader militant movement that it represents is evolving very rapidly. If left unchecked, it will be able to turn its weaknesses into strengths and spell major trouble ahead for the already stormy waters of American politics. The nation’s law enforcement and security agencies must therefore prepare for a period of widespread insurrection, some of which will be armed and lethal in nature. Insurrectionist acts are likely to occur across the nation, and may last for months, if not longer.
Isaac Shoshan, an Israeli undercover operative, who was involved in some of Israel’s most daring and controversial intelligence operations for over 40 years, 
Since 2008, when intelNews was launched, it has been our 
Since 2008, when intelNews was launched, it has been our 
Since 2008, when intelNews was launched, it has been our 
On 10 December 2020, the Dutch Minister of the Interior and Kingdom Relations, Kajsa Ollongren, sent a 
THE SOVIET UNION INFLICTED incalculable damage to West German spy agencies —and by extension to their American patrons— by recruiting dozens of former Nazis who populated the ranks of West German intelligence after World War II. These are the preliminary conclusions of a study into the topic by Danny Orbach, a lecturer in history at Hebrew University in Jerusalem, which relies on recently declassified documents from American and German intelligence agencies.
On the 20th anniversary of the outbreak of the second intifada (October 2000), the debate arises again in Israel as to whether the Palestinian move was an initiative of Chairman Arafat and the Palestinian Authority or whether it was a spontaneous evolution on the Palestinian side that largely surprised not only Israel but also the Palestinians.
In a recent video message, the new head of the Islamic State calls COVID-19 a “great torment” from God against unbelievers, and vows that “not a single day will pass without bloodshed” due to attacks by his forces. The 39-minute video is entitled “The Crusaders Will Know Who Will Win in the End”, and began to circulate on the popular messaging application Telegram last Thursday.
intelNews.org 
Russian actors had access to Dutch police computer network during MH17 probe
June 17, 2021 Leave a comment
Russian hackers compromised the computer systems of the Dutch national police while the latter were conducting a criminal probe into the downing of Malaysia Airlines Flight 17 (MH17), according to a new report. MH17 was a scheduled passenger flight from Amsterdam to Kuala Lumpur, which was shot down over eastern Ukraine on July 17, 2014. All 283 passengers and 15 crew on board, 196 of them Dutch citizens, were killed.
Dutch newspaper De Volkskrant, which revealed this new information last week, said the compromise of the Dutch national police’s computer systems was not detected by Dutch police themselves, but by the Dutch General Intelligence and Security Service (AIVD). The paper said that neither the police nor the AIVD were willing to confirm the breach, but added that it had confirmed the breach took place through multiple anonymous sources.
On July 5, 2017, the Netherlands, Ukraine, Belgium, Australia and Malaysia announced the establishment of the Joint Investigation Team (JIT) into the downing of flight MH-17. The multinational group stipulated that possible suspects of the downing of flight MH17 would be tried in the Netherlands. In September 2017, the AIVD said it possessed information about Russian targets in the Netherlands, which included an IP address of a police academy system. That system turned out to have been compromised, which allowed the attackers to access police systems. According to four anonymous sources, evidence of the attack was detected in several different places.
The police academy is part of the Dutch national police, and non-academy police personnel can access the network using their log-in credentials. Some sources suggest that the Russian Foreign Intelligence Service (SVR) carried out the attack through a Russian hacker group known as APT29, or Cozy Bear. However, a growing number of sources claim the attack was perpetrated by the Main Directorate of the Russian Armed Forces’ General Staff, known commonly as GRU, through a hacker group known as APT28, or Fancy Bear. SVR attackers are often involved in prolonged espionage operations and are careful to stay below the radar, whereas the GRU is believed to be more heavy-handed and faster. The SVR is believed to be partly responsible for the compromise of United States government agencies and companies through the supply chain attack known as the SolarWinds cyber attack, which came to light in late 2020.
Russia has tried to sabotage and undermine investigation activities into the MH17 disaster through various means: influence campaigns on social media, hacking of the Dutch Safety Board, theft of data from Dutch investigators, manipulation of other countries involved in the investigation, and the use of military spies. The Dutch police and public prosecution service were repeatedly targeted by phishing emails, police computer systems were subjected to direct attacks, and a Russian hacker drove a car with hacking equipment near the public prosecution office in Rotterdam.
The above efforts are not believed to have been successful. But the attack that came to light in September 2017 may have been. The infected police academy system ran “exotic” (meaning uncommon) software, according to a well-informed source. The Russians reportedly exploited a zero day vulnerability in that software. After the incident, the national police made improvements in their logging and monitoring capabilities, and in their Security Operations Center (SOC). It is not currently known how long the attackers had access to the national police system, nor what information they were able to obtain.
► Author: Matthijs Koot | Date: 17 June 2021 | Permalink
Filed under Expert news and commentary on intelligence, espionage, spies and spying Tagged with AIVD (Netherlands), computer hacking, Dutch National Police, espionage, Joint Investigation Team, MH17, Netherlands, News, Russia, Ukraine, War in Donbass