View as a webpage / Share

Volume 22 — Issue 14 | April 7, 2022

USFA releases Firefighter Fatalities in the United States in 2020

The United States Fire Administration (USFA) has released its annual report, Firefighter Fatalities in the United States in 2020. The report is accompanied by a data visualization graphic of firefighter fatality causes and a summary view of the data on its website.

The number of firefighter fatalities in 2020 increased significantly over those in 2019. The USFA logged 65 firefighter fatalities in 2019, the lowest total number since USFA began keeping track. In 2020, there were 102 firefighter fatalities, 37 more than the 2019 total. The increase is largely due to 36 firefighters who died in 2020 from complications of COVID-19.

Firefighter fatalities are included in this report even when death is considerably delayed after the original incident, in order to align with inclusion criteria in the Hometown Heroes Survivors Benefit Act. There were 56 firefighter fatalities in 2020 that were not significantly delayed after the original incident and that did not occur because of complications of COVID-19.

Some additional significant 2020 statistics include:

• Activities related to emergency incidents resulted in 71% of firefighter deaths.
• The top four causes of death were COVID-19 (37), heart attacks (29), trauma (17) and asphyxiation (7).
• Fatalities included 49 career firefighters and 44 volunteer firefighters.
• Fifty (50) deaths were urban and 52 were rural.
• Fifteen (15) firefighters lost their lives due to vehicle crashes. Vehicle crashes were the third leading cause of fatal firefighter injuries for the year.
• Nine (9) members of wildland or wildland contract fire agencies lost their lives.
• Seven (7) firefighters died while engaged in training activities.
• There were 3 multiple-firefighter-fatality incidents, taking the lives of 6 firefighters.

Since 1976, the USFA has tracked the number of firefighter fatalities and conducted an annual analysis. Every year, USFA reports on firefighter fatalities to identify their causes to understand how future deaths can be prevented.

Statistics, reports, and more information from past years are available on the USFA’s Firefighter Fatalities page.

(Source: USFA)

Highlights

USFA releases Firefighter Fatalities in the United States in 2020

DIY tech for bomb technicians’ X-ray generator batteries from DHS S&T

CISA kicks of its inaugural Emergency Communications Month

Webinar: Preventing DNS Infrastructure Tampering

Cyber Threats

The U.S. Fire Administration operates the Emergency Management and Response – Information Sharing and Analysis Center (EMR-ISAC).

For information regarding the EMR-ISAC visit www.usfa.dhs.gov/emr-isac or contact the EMR-ISAC office at: (301) 447-1325 and/or fema-emr-isac@fema.dhs.gov.

DIY tech for bomb technicians’ X-ray generator batteries from DHS S&T

The Department of Homeland Security (DHS), Science and Technology Directorate (S&T) supports public safety bomb technicians through its Response and Defeat Operations Support (REDOPS) program, by providing a collaborative structure for addressing improvised explosive device (IED) capability gaps.

Through the REDOPS program’s Micro R&D focus area, DHS S&T has worked with bomb squad technicians to evaluate an innovative new technology – a reliable voltage measuring tool that enables a bomb technician to determine the health of their X-ray generator batteries.

The batteries that power bomb technicians’ X-ray generators often lack battery power indicators to let the users know when charging is required. To avoid having an X-ray generator run out of power during a response, bomb technicians often measure the voltage with a multi-meter. This method is time consuming and introduces a complex process that requires ancillary expertise to successfully complete.

This invention will assist bomb technicians’ safety and operational capabilities by giving them more confidence in their equipment before going down range of an IED and will help countless colleagues avoid equipment failures. Now that it has been thoroughly assessed by other bomb squad technicians and evaluated by S&T, detailed instructions for how to build and use the voltage measuring tool are being securely shared with bomb squads across the country.

Since it was stood up in 2016, the Micro R&D portfolio has worked with bomb squads across the country to identify useful DIY tools created by their team members to meet specific needs. So far, more than 200 bomb squads have built Micro R&D tools to fulfill all sorts of mission requirements. All products developed under DHS S&T’s REDOPS Micro R&D portfolio are assessed for safety and effectiveness prior to being shared with the broader community via the Federal Bureau of Investigation (FBI)’s secure online Law Enforcement Enterprise Portal.

In addition to the Micro R&D focus area, the REDOPS program includes two other focus areas: a Bomb Squad Test Bed and Traditional Research and Development (R&D). The REDOPS program fosters collaboration among the country’s leading experts, including the Federal Bureau of Investigation (FBI), Department of Defense, the National Bomb Squad Commanders Advisory Board and boots-on-the-ground bomb technicians at every level of government.

You can learn more about the REDOPS program by visiting DHS S&T’s REDOPS webpage and watching the REDOPS Revisited in 100 Seconds video.

(Source: DHS S&T)

CISA kicks of its inaugural Emergency Communications Month

On April 4, the Cybersecurity and Infrastructure Security Agency (CISA) announced it has designated this April as the first ever Emergency Communications Month.

CISA recognizes that emergency communications have evolved to be so much more than just being able to dial 9-1-1. Emergency communications are a complex ecosystem that allows people to share critical information in real time during an emergency. Today, emergency communicators include 9-1-1 telecommunicators, first responders, and even cyber professionals.

Throughout the month, CISA will highlight the growing community of emergency communicators and how they serve the American public, the role of cybersecurity in emergency communications, and the role CISA’s partnerships and stakeholders play in helping the agency achieve its goals. Some upcoming highlights for the month include:

• National Public Safety Telecommunicators Week (April 10-16). During this week, CISA will honor telecommunications personnel for their commitment, service, and sacrifice.
• CISA’s partnerships with members of the emergency response community through programs such as SAFECOM, which was formed in 2001 after the terrorist attacks of 9/11. SAFECOM collaborates with emergency responders and elected officials across all levels of government to improve emergency response providers’ inter-jurisdictional and interdisciplinary emergency communications interoperability.
• Cybersecurity resources for emergency communications. As communications technology evolves and as 911 systems move from stand-alone 911 emergency communication centers (ECCs) to an interconnected network, cybersecurity is often cited as one of the major vulnerabilities. CISA has developed many resources for local jurisdictions to assess and mitigate cyber risks with their emergency communications systems.

To learn more about Emergency Communications Month and how to amplify CISA’s many resources, visit cisa.gov/emergency-communications-month. For additional Emergency Communications Resources from CISA, please visit cisa.gov/emergency-communications and cisa.gov/safecom.

(Source: CISA)

Webinar: Preventing DNS Infrastructure Tampering

The Cybersecurity and Infrastructure Security Agency (CISA) is offering a cybersecurity awareness webinar, Preventing DNS Infrastructure Tampering (IR 106), on Thursday, April 28, from 11:00 a.m. to 12:00 p.m. EST. This event is intended for a general audience including managers and business leaders but also includes topics and perspectives that may be useful to technical specialists.

The Domain Name System, commonly known as DNS, is often referred to as the “phone book” of the Internet. Every time we access the Internet to visit our favorite websites, shop and pay bills online, or access online portals for healthcare or banking, we depend on DNS infrastructure to securely route us to our intended destinations. While this shared infrastructure is incredibly powerful and useful, it also presents a rich attack surface for threat actors: allowing them to shut down websites and online services, replace legitimate website content with threats and extortion attempts, or even route traffic to a carbon copy of a legitimate website to steal any information entered by users trying to conduct business as usual.

Participants will learn what they need to know to protect themselves and their organization from DNS infrastructure tampering, including common vulnerabilities, how to identify a potential attack, and guidance and best practices to reduce the likelihood and impact of a successful DNS attack.

This is an Awareness Webinar Event within CISA’s Incident Response Training curriculum, which provides no-cost training to federal, state, local, tribal, and territorial governments, as well as to educational and critical infrastructure partners.

While other training events in this curriculum provide more technical and hands-on training for cybersecurity professionals, Awareness Webinar Events provide cybersecurity topic overviews for a general audience, including managers and business leaders, providing core guidance and best practices to prevent incidents and prepare an effective response if an incident occurs.

To register for this webinar, visit the registration page. You can view and register for upcoming events in this series in CISA’s Connect Event Catalog.

These webinars are available to the public at the Federal Virtual Training Environment (FedVTE). Recorded webinars from 2021 are available on CISA’s YouTube Channel. To ask a question or provide other feedback on Incident Response training, contact CyberInsights@cisa.dhs.gov

(Source: CISA)

Cyber Incident Assistance

MS-ISAC
SOC@cisecurity.org
1-866-787-4722

IdentityTheft.gov

IC3

Cybercrime Support Network

General Information

StopRansomware.gov

CISA's Known Exploited Vulnerabilities Catalog

FTC scam list

CISA alerts

Law Enforcement Cyber Center

TLP Information

These ten hacking groups have been targeting critical infrastructure and energy

Cybersecurity company Dragos recently released a report detailing how electricity, oil, gas, and other critical infrastructure facilities are being increasingly targeted by cyberattackers who seek to compromise industrial control systems (ICS) and operational technology (OT). The report from Dragos details ten different hacking operations that are known to actively target industrial systems in North America and Europe. Dragos also warned that this malicious activity is likely to grow over the next year.

Although it could take years to conduct a successful attack and understand the intricacies of the OT systems, hackers may be working to lay the groundwork for a major attack now.

(Source: OODA Loop)

Spring4Shell flaw: Here's why it matters, and what you should do about it

Microsoft has weighed in on Spring4Shell, a recently discovered flaw in the Spring Framework for Java. Microsoft is telling customers of its Azure cloud service to patch the recently disclosed bug, a critical-rated remote code execution (RCE) vulnerability that's been tagged as CVE-2022-22965 and dubbed SpringShell or Spring4Shell — a twist on the dire Log4Shell bug affecting another Java-based application logging utility. CISA on April 1 urged all US organizations, including federal agencies, to patch it immediately. On April 4, CISA added the bug to its catalog of known exploited vulnerabilities, which requires federal agencies to patch it within a deadline.

(Source: ZDNet)

Breach reports show diversity of healthcare cyber targets

Recent data breach reports filed by a law enforcement benefits health plan, a healthcare staffing firm and a rural medical center are the latest examples of the diverse range of healthcare sector entities being targeted by cyberattackers.

Each of the hacking incidents affected the protected health information of tens of thousands of individuals.

One of attacks was on Law Enforcement Health Benefits Inc., a nonprofit firm that provides health benefits to Philadelphia law enforcement employees, including members of the city's police department, reported to the U.S. Department of Health and Human Services on Monday a ransomware incident affecting nearly 85,300 individuals.

(Source: Data Breach Today)

State Department launches cyber bureau amid rising global tensions

The U.S. State Department formally launched the Bureau of Cyberspace and Digital Policy on Monday, part of a longstanding effort to weave international diplomacy into federal efforts to combat the rise of malicious nation-state cyberattacks and the proliferation of criminal ransomware.

The Bureau opens at a critical time for U.S. cybersecurity policy, as U.S. and European critical infrastructure providers are on high alert for potential nation-state and ransomware attacks stemming from the Russian invasion of Ukraine.

(Source: Cybersecurity Dive)

The InfoGram is distributed weekly to provide members of the Emergency Services Sector with information concerning the protection of their critical infrastructures.

Fair Use Notice:
This InfoGram may contain copyrighted material that was not specifically authorized by the copyright owner. The EMR-ISAC believes this constitutes “fair use” of copyrighted material as provided for in section 107 of the U.S. Copyright Law. If you wish to use copyrighted material contained within this document for your own purposes that go beyond “fair use,” you must obtain permission from the copyright owner.

Disclaimer of Endorsement:
The appearance of external hyperlinks does not constitute endorsement of the linked websites or the information, products or services contained therein. Reference to any specific commercial products, process or service by trade name, trademark, manufacturer or otherwise, does not necessarily constitute or imply its endorsement, recommendation or favoring by the EMR-ISAC or the U.S. government.

Section 504 Notice:
Section 504 of the Rehabilitation Act requires that FEMA grantees provide access to information for people with disabilities. If you need assistance accessing information or have any concerns about access, please contact FEMAWebTeam@fema.dhs.gov.