|
Biweekly Homeland Security Insights for a Safer New Jersey |
|
Threat Actors Target Sensitive Information Through Fake Ads
Foreign adversaries and criminal organizations may seek to recruit or scam job seekers into providing sensitive, proprietary, or personal information through fake job advertisements and applications. NJOHSP's latest intelligence note outlines the threat these adversaries pose to potential job seekers and provides examples and indicators to help individuals avoid falling victim to these campaigns.
NJOHSP recommends any potential job seekers do their due diligence prior to applying for any listings. Conducting simple searches could protect applicants from falling victim to exploitation from foreign adversaries or criminals. Conducting research on the company could aid in verifying a legitimate institution as well as fraudulent websites posing as legitimate potential employers.
New Jersey Man Lied About ISIS Ties on Naturalization Application
 On March 28, authorities charged Gafur Abdudzhamilovich Aliev, of Edison, NJ, with making false statements about sending money to ISIS on his U.S. naturalization application. Between 2018 and 2020, Aliev moderated or was a member of several encrypted social media messaging channels that targeted individuals associated with ISIS. Aliev allegedly sent money to ISIS for weapons and believed that "those who commit jihad in the name of Allah should commit jihad financially and physically." In December 2020, Aliev falsely reported that he never associated with a terrorist organization.
Analyst Comment: Aliev's use of social media and material support toward a foreign terrorist organization (FTO) is consistent with the findings from NJOHSP's 2025 Threat Assessment. Individuals who support FTOs often communicate via encrypted messaging platforms due to its increased privacy and anonymity.
NJCCIC: Threat Actors Target Account Credentials Via Azure AD PHS Login Method
Threat actors are targeting account credentials by exploiting Microsoft Azure AD's Password Hash Synchronization (PHS) login method. PHS is enabled by default and used to validate credentials and authenticate users without needing an additional Identity Provider. During attacks, threat actors hijack PHS by intercepting credentials or injecting malware into the PHS process.
In a recent incident, an attacker modified a compromised account's multifactor authentication settings and sent nearly 800 phishing emails within a few hours. The emails likely sought to compromise additional user accounts for subsequent threat activity.
The New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) recommends that organizations follow cybersecurity best practices, implement network segmentation, and monitor networks for atypical behavior. Review the NJCCIC's latest alerts and advisories to learn more.
|
|
|
 NJOHSP Sponsors Bilingual 'Stop the Bleed' Training Course for Faith-Based Communities
NJOHSP's Houses of Worship Bleeding Control Kit team partnered with the New Jersey Injury Prevention Trauma Council and Christ Fellowship Church in Elizabeth, NJ, on March 10 to administer a "Stop the Bleed" training course to faith-based communities in the area. More than 50 individuals representing eight houses of worship received training in Spanish and English. Eight bleeding control kits were distributed at the completion of the training. NJOHSP launched its "Bleeding Control Kit" program in March 2024 to help prevent deaths among victims with traumatic injuries received during an active shooter or hostile event incident, prior to the arrival of first responders. To date, NJOHSP has distributed more than 1,300 bleeding control kits to faith-based communities throughout New Jersey. Religious communities can register to receive a bleeding control kit and "Stop the Bleed" training through the Houses of Worship Distribution Survey. NJOHSP's initiative is federally funded and is based on the national "Stop the Bleed" awareness campaign. For more information regarding this initiative, visit NJOHSP's Houses of Worship Bleeding Control Kits web page.
Jersey CTF Cyber Competition Draws US and International Students
 Nearly 1,100 competitors from colleges and universities from across the country and around the globe (see map above) participated in JerseyCTF V, a capture the flag competition hosted by the New Jersey Institute of Technology (NJIT) and sponsored and facilitated by the NJCCIC. The annual event is an effort to encourage cybersecurity education and skill development among participants. NJCCIC personnel, including interns, helped to develop the challenges used in the competition that was held March 29 and 30 at NJIT. On-site participants included those from NJIT, Rutgers University, Princeton University, New York University, the University of Puerto Rico, the University of New Haven (Connecticut), and Bloomsburg University (Pennsylvania). Remote participants throughout the U.S. and the world joined their fellow on-site competitors in attempting to solve 54 cyber challenges.
This year's competition winners are:
- The Academy of Cryptography Techniques (Vietnam)
- The Hong Kong University of Science and Technology (Hong Kong)
- New York University
|
|
Upcoming Training Programs |
|
NJOHSP-Coordinated Training
All NJOHSP-coordinated training courses are posted on the NJOHSP State Training Calendar. The calendar provides a course description, training location, target audience, and point of contact.
|
|
Intelligence Analyst Apprentice
NJOHSP's Intelligence Management Bureau is seeking early-career professionals to apply for an Intelligence Analyst Apprentice position. The selected candidate will assist New Jersey Suspicious Activity Reporting System (NJSARS) staff with the collection, interpretation, and dissemination of relevant information. The ideal candidate will be a team member with the ability to adapt to meet priorities and deadlines in a fast-paced, changing environment. As an Intelligence Analyst Apprentice, the selected candidate will assist the Intelligence collection manager, reports officer, and other analysts. To apply, visit NJOHSP's careers web page.
|
|
|
Counter-Threat Watch Specialist
NJOHSP invites talented individuals to apply for a Counter-Threat Watch Specialist position in its Intelligence Management Bureau and make a meaningful impact across New Jersey in homeland security. Join our team and help to ensure the safety of residents and visitors in the Garden State. Requirements include a background in law enforcement/criminal justice, intelligence, or homeland security, as the job requires a basic understanding of the current threat environment. The position also requires strong writing and computer skills, the ability to simultaneously manage multiple projects in collaboration with various NJOHSP staff, the ability to adapt to a fluctuating workload, and the ability to work with individuals of all backgrounds. To apply, visit NJOHSP's careers web page.
|
|
Contact Information
For more information or to share feedback, please contact the Communications Bureau at communications@njohsp.gov.
The NJ Security Spotlight is a biweekly newsletter of the New Jersey Office of Homeland Security and Preparedness and is intended to provide constituents with important agency updates, publications, and announcements.
Please visit njohsp.gov/connect/nj-security-spotlight to read previous newsletters.
Report Threat-Related Suspicious Activity
Call 1-866-4-SAFE-NJ or email tips@njohsp.gov.
|
|
|
|
|
