USPS Drops Size Allocations for Collection Bins

USPS Seemingly Small Size Standards Change Is Actually Extremely Significant

     In direct response to recent pressures regarding mail-borne threats, the United States Postal Service (USPS) reduced the acceptable size of mail deposited in blue collection boxes.  Acknowledging that the majority of mail hazards are deposited in USPS collection boxes, this change will affect future threats in several ways.  Obviously, mail items will become smaller and more compact. As a result, more small packages are needed to move the same amount of contraband, driving the need for ever-more sophisticated detection capabilities.  The overall effect is an increased requirement for technology that can detect at lower levels than previously required.

     The size change is intended to reduce threats from packages from unknown and possibly nefarious chains of custody.  Previously accepted sizes, approximately 4”x8”x12” are now reduced to 1/8 the size. The maximum allowable weight is now only 10 ounces, roughly 25% less than in previously accepted mail. According to the new requirements, “Customers who need to mail packages with postage stamps that are larger than one-half inch thick or heavier than 10 ounces must conduct the transaction in person at a Post Office retail counter.

     This directive was sent out in a postal bulletin, to employees, by the USPS without advertising to the public:  ”Effective October 1, 2019, mail pieces bearing stamps for postage that are more than one-half inch thick or weigh more than 10 ounces will be prohibited from entering the mail stream through collection boxes, building mail chutes, and Post Office mail slots.”

What you need to know from the USPS:

·        Carriers have been instructed not to accept packages that do not fit the restricted criteria, even in face-to-face transactions (these transactions must occur at a Post Office Retail location).

·        Items that cannot be returned immediately are to be isolated and returned to sender via surface transportation only.

For additional information on this and other emerging threats contact:  will@raysecur.com                     USPS Link: https://about.usps.com/postal-bulletin/2019/pb22529/pb22529.pdf

What if there is no return address shown?

The supervisor, manager, or postmaster will contact the addressee by phone and describe the mailpiece to the addressee, providing the city and state of the postmark, if possible. The addressee should be asked: a. Are you expecting the package? b. If yes, does this mailpiece contain anything liquid, fragile, perishable, or potentially hazardous such as lithium batteries or perfume?

If the addressee is expecting the mailpiece and confirms that it does not contain anything liquid, fragile, perishable, or potentially hazardous, the supervisor, manager, or post-master must:

-Identify the mailpiece via a $0.00 PVI, meter strip, or AVSEC stamp.

-Cancel the postage (if not already canceled).

-Apply Label 127, Surface Transportation Only, and transport the mailpiece via surface transportation only. The supervisor, manager, or postmaster must contact the Inspection Service if the addressee:

-Has no phone number that can be identified by using directory assistance, the phone book, or Internet;

Is not expecting the package; or

-Cannot confirm that the mailpiece does not contain anything liquid, fragile, perishable, or potentially hazardous.

Ricin: A Threat Yes But Not Often Fatal

Ricin was found this week on letters at two separate prison mailrooms in California.  Ricin, naturally found in castor beans, is extremely toxic and easily refined into the deadly poison.  This toxin has been used in warfare, although some applications violated ethical conventions, and assassinations since World War One. How did ricin get into two […]

False Positives: More Common Than You Think

Earlier this month when Facebook’s Sarin nerve agent threat hit the news it highlighted a reality often overlooked when planning for emergencies: the most common end state of an emergency situation is that of a false alarm.  By the end of the day, the apparent nerve agent threat was deemed a false positive.  In most cases, such situations can be de-escalated by stopping, taking a breath, and ensuring that the indications of a threat are self-consistent with all of the evidence at hand.  Once an organization’s emergency response plan is activated, the most important goal for all involved is to return to normal operations.

False alarms and false positives are the most common reason that emergency action or response plans are initiated.  But what happens when something is initiated and there is no clear and definite endpoint to the emergency?  The answer is ambiguous unless there is a holistic understanding of the threat and those involved in making decisions are fully-informed of the best possible way to return to organizational normalcy.  Facebook, from the outside looking in, missed the mark on this point.  Sarin is not the most likely conclusion even when an identification system produces it as an answer.  If it looks like a duck, walks like a duck, quacks like a duck but one system says it’s a dog; what is the most likely correct conclusion?

Simply stated, chemical identification systems are only as good as the library they reference.  Nearly all chemical detectors compare their measurements of a sample with a database or library that looks for similarities between the measurement and a precursor, or even whole compounds, that make up a threat.  In the case of sarin, which is produced all over the world, no two batches test exactly the same.  Facebook’s response was most likely, a false positive because their detector simply identified a compound that fell within the parameters of Sarin in the library they have.  Events that resemble this happen every day, in every country and in every location that chemical identification efforts take place.  Until a better method of identification is invented the best option is to ensure human involvement to confirm plausibility and verify legitimate threats while de-escalating and weeding out false positives at an appropriate point in the decision cycle.

Adding technical expertise to an organizational response plan inserts a checks and balances capability to the threat management plan. It increases the speed at which companies recover and decreases the amount of lost revenue.  This essentially places a facilitator inside of larger units to ensure the “correct” answer gets to the right people as quickly as possible.  Unfortunately, most identification systems are not effectively tied to someone that has a complete understanding of the possible threats their users face.   For organizations to be truly successful in the emergency management arena requires expert human involvement to consider all of the relevant factors to arrive at the correct decision; so that while one system might say it’s a dog, if it has wings, feathers, webbed feet, quacks, and is swimming in a pond it must be a duck!