|
|
|
|
|
|
by ohsnapman
3194 days ago
|
|
|
Saw a lot of speculation about what ISIS does or does not do without actual links. Here are a few good ones I've seen in the past: https://www.wired.com/2015/11/isis-opsec-encryption-manuals-... This podcast was pretty good. ISIS were using a Turkish Dropbox like service to move files ... except the service was actually based in France, something a whois on the domain could have easily detected. Fighters have also geotagged tweets/instagram/Facebook posts, which led to a drone strike: https://gimletmedia.com/episode/62-decoders/ So ... they're both more sophisticated than you think when it comes to opsec. And less sophisticated than you think when it comes to opsec. |
|
|
A lot of their recruits are people in their 20s or even teens from various countries including western ones. They are basically regular users that try to learn opsec as they do. And the youth from most muslim countries also use smartphones and most of the services we use too.
ISIS used to be more sophisticated in terms of opsec when their officers were mostly former officers from Saddam but since then it feels like either the drone strikes managed to decapitate their hierarchy or that there were internal purges to promote the truly ideologically crazies.
Also, when an operation is said to have succeed thanks to opsec, always remember that it can be a way to cover an internal humint source.