The Memo: 26 Aug—1 Sep 2024

The Memo from 26 Aug—1 Sep 2024: Summary of incidents, ranging from terrorism, covert actions, organised crimes, regional conflicts to cybersecurity incidents.

The Memo: 26 Aug—1 Sep 2024

In brief:

  • IS attacks near Palmyra killed two soldiers; 11 executed bodies found.
  • Over 100 killed in an al-Qaeda-linked attack in central Burkina Faso.
  • NIA raids expose espionage linked to Pakistan's ISI; suspects arrested.
  • China, Philippines clash over vessel collision near disputed waters.
  • TNLA and allies seize artillery bases; junta responds with airstrikes.
  • Interpol targets Black Axe for fraud, drug trafficking, human trafficking.
  • Telegram's CEO charged for facilitating criminal activities on the platform.
  • SlowTempest espionage targets China; suspected state-sponsored operation.
  • IRGC-linked hackers used fake recruitment to target national security officials.

Terrorism and insurgency

  1. Balochistan
    A series of militant attacks in Balochistan, southwestern Pakistan, left over 60 people dead, including 14 soldiers and police. The violence, targeting civilians and police, was one of the most extensive assaults by separatist insurgents in years.
  2. Syria
    Two Syrian regime troops were killed, and four others were wounded in an IS attack on a military checkpoint near Palmyra in Homs province. The bodies of 11 other soldiers, all executed, were found in the desert earlier in the week, with four still missing.
  3. Burkina Faso
    At least 100 villagers and soldiers were killed in a weekend attack by al-Qaeda-linked jihadis in central Burkina Faso, making it one of the deadliest assaults this year. The attack occurred in Barsalogho, where villagers were forced to dig trenches for security outposts before being targeted by the JNIM group. Al-Qaeda claimed responsibility, asserting control over a militia position in the strategic town of Kaya.

Intelligence, Espionage, Assassination and Covert Actions

  1. India
    The National Investigation Agency (NIA) conducted raids across seven states in India as part of an investigation into an alleged espionage racket linked to Pakistan's ISI. The case originated from a 2021 probe by Andhra Pradesh Police, which uncovered the exchange of sensitive Indian Navy information for money. So far, three suspects have been arrested, with chargesheets filed against them and two ISI-linked operatives. The investigation revealed the use of honey trapping and crypto channels to fund the espionage activities.

Defence, conflict and unrests

  1. South China Sea
    China and the Philippines have accused each other of causing a collision between their vessels in the South China Sea, escalating tensions over disputed waters. The incident occurred near Sabina Shoal, within the Philippines' exclusive economic zone, where a Philippine coast guard ship was allegedly rammed by a Chinese vessel.
  2. Myanmar
    The Ta’ang National Liberation Army (TNLA) and allied forces seized two artillery battalion headquarters, 206 and 406, in northern Shan State's Taung Hkam Village after weeks of fighting. The junta responded with airstrikes, and the situation remains tense with forces from both sides in the area.

Organised Crimes

  1. The Philippines
    Law enforcement, including Interpol, has been increasingly targeting Black Axe through international operations, revealing their involvement in various crimes such as fraud, drug trafficking, and human trafficking. Black Axe operates as a loose, non-hierarchical network, making it difficult to combat. The group's roots trace back to Nigerian student movements in the 1950s and 1960s, but they evolved into criminal organisations.
  2. France
    French authorities have formally charged Telegram CEO Pavel Durov in an investigation related to organised crime on his messaging app. Durov was arrested on August 24 at Le Bourget airport in Paris and released four days later after questioning, with conditions including a €5 million bail and twice-weekly police check-ins. Authorities accused Telegram of facilitating child sexual abuse and drug trafficking and alleged that Durov withheld information from investigators.

Cybersecurity and unlawful access

  1. France
    New research from Securonix reveals a "highly coordinated" espionage operation named SlowTempest, targeting people and organisations in China. The campaign's primary goals appear to be espionage, persistent access, and potential sabotage, although it could have also enabled ransomware attacks. The attackers demonstrated a deep understanding of the Chinese language and infrastructure, leading to suspicions of state-sponsored activities. The operation involved sophisticated malware and techniques, with hackers maintaining undetected access for over two weeks.
  2. Iran
    A hacking group linked to Iran’s Revolutionary Guard (IRGC) operated a fake recruitment business to target national security officials from Iran, Syria, and Lebanon for cyber espionage, according to Mandiant. The hackers, connected to APT42 (Charming Kitten), fabricated evidence suggesting Israeli control to lure individuals willing to share secrets with Israel and Western allies. The operation, which started in 2017, used fake HR websites like VIP Human Solutions to recruit Farsi-speaking individuals under false pretenses.

ICYMI: Exclusive access to paid subscribers only...

Please feel free to share The Deep Dive with your colleagues. In addition, we would appreciate it if you could consider becoming a paid subscriber with our tiered subscription packages to support our publication. Your support will help us continue providing valuable insights to assist you in making operational decisions

Subscribe to The Deep Dive

Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe