Burt Steel / AP file

Former Ku Klux Klan leader David Duke speaks to supporters at a reception in 2004, in Kenner, La. Duke was fresh out of prison after serving 15 months for tax fraud.

Former Ku Klux Klansman David Duke is making an online appeal for financial support after his arrest in Germany prevented him from speaking at a nationalist gathering.

The ex-Louisiana state legislator, 61, who was dubbed an “undesirable foreigner” and detained in Cologne before he could address a group called Outside the Network on Friday, said he needs the money to stay in German and wage a battle “for my rights and the rights of the people of Europe to hear me.”

“As much as I would like to, I can’t just go back to Louisiana right now as I have to fight this improper action against me and our brothers and sisters,”  Duke, who is now free but reportedly facing deportation, declared on his official website. “The truth is that I and all who stand up for the heritage and freedom of the European and American people… and the right to preserve their identity and unique human rights.”

While most of you will be getting ready for the warmth and love and friendship and family of Christmas, I will be far from home fighting the good fight… Please remember me and this sacred struggle for our people at this beautiful time of year that is such an expression of our exquisite culture and values... I believe you will come through with great generosity, even sacrifice at this time, even with all your personal needs during the Christmas season."

The Southern Poverty Law Center, a nonprofit that tracks hate groups and fights discrimination cases, describes Duke as the “most recognizable figure of the American radical right, a neo-Nazi, longtime Klan leader and now international spokesman for Holocaust denial.”

Supporters see Duke as a political dissident.

“Because the person being persecuted was a pro-White advocate … his arrest has so far been ignored by the mainstream media, and the U.S. government remains quiet about this too,” wrote James Buchanan, who describes himself as an advocate for white civil rights, on the site Whitelaw Towers.

Grounds for Duke's arrest are unclear. The German embassy in Washington, D.C. directed enquiries about Duke to the U.S. embassy in Germany.

In Germany and several other European countries, laws prohibit hate speech that may incite violence against any racial or religious group and speech that denies or minimizes the Holocaust perpetrated under the Nazis. He was arrested in Prague in 2009 on suspicion of denying the Holocaust and promoting the neo-Nazi movement, and expelled from the country hours later. Duke denied the charges, saying he was there to lecture about Israeli control of U.S. foreign policy.

Duke served as grand wizard of the Knights of the Ku Klux Klan in the 1970s. He gave the organization a make-over — shedding the white robes for business suits and arguing that the organization was “not anti-black” but “pro-white” and pro-Christian.” Duke was elected to the Louisiana Legislature, where he served from 1990-1992 before making an unsuccessful run for U.S. president in 1992.

In 2002, he served 15 months in prison term and paid a fine of $10,000 after being convicted of federal tax fraud.

He now travels regularly to Europe touting his books espousing white separatism and opposition to what he views as Jewish control of media, government and financial institutions.

Click here to follow Kari Huus on Facebook.

A notary public who signed tens of thousands of false documents in a massive foreclosure scam before blowing the whistle on the scandal has been found dead in her Las Vegas home.

NBC station KSNV of Las Vegas reported that the woman, Tracy Lawrence, 43, was scheduled to be sentenced Monday morning after she pleaded guilty this month to notarizing the signature of an individual not in her presence. She failed to show up for her hearing, and police found her body at her home later in the day.

It could not immediately be determined whether Lawrence, who faced up to one year in jail and a fine of up to $2,000, died of suicide or of natural causes, KSNV reported. Detectives said they had ruled out homicide.

Lawrence came forward earlier this month and blew the whistle on the operation, in which title officers Gary Trafford, 49, of Irvine, Calif., and Geraldine Sheppard, 62, of Santa Ana, Calif. — who worked for a Florida processing company used by most major banks to process repossessions — allegedly forged signatures on tens of thousands of default notices from 2005 to 2008.

Trafford and Sheppard were charged two weeks ago with 606 counts of offering false instruments for recording, false certification on certain instruments and notarization of the signature of a person not in the presence of a notary public. You can read a .pdf version of their indictment here.

Police said at the time that the alleged scam had thrown into question the legality of most Las Vegas home foreclosures in the past few years, leaving many people living in foreclosed-upon homes that they unknowingly don't actually own.

"I would suggest you review your documents and bring them to an expert and an attorney," said John Kelleher, chief deputy attorney general for Nevada's fraud unit.

A Marine sergeant who received the Medal of Honor from President Barack Obama last September for saving 36 comrades has sued  his previous employer, a major weapons manufacturer, for defamation, the Wall Street Journal reported Tuesday.

Details weren't released at the time of the original lawsuit in June, the Journal added, but Dakota Meyer filed an amended complaint on Monday in which he accuses BAE Systems of retaliation after he criticized the company for selling sniper scopes to Pakistan that he said were better than what U.S. soldiers got.

"We are taking the best gear, the best technology on the market to date and giving it to guys known to stab us in the back," Meyer wrote to his superviser, according to the lawsuit. "These are the same people killing our guys."

 Meyer says he later tried to return to a job with an earlier employer but was spurned when his BAE supervisor made false claims about a drinking problem and that he was "mentally unstable."

BAE, for its part, stated: "Although we strongly disagree with his claims, which we will address through the appropriate legal process, we wish him success and good fortune in his endeavors."

A colleague at his earlier employer, Ausgar Technologies, told ABC News that Meyer was "an outstanding employee."

"He exhibited a maturity for his age and an insightful capability to get the job done and provide recommendations to improve on what we are doing," said Tom Grant, a retired naval officer and a senior program manager at Ausgar. "I was very impressed while he was working for us."

scottsdalegunclub.com

Want to improve the caliber of your family’s Christmas card this year? How about having your picture taken with Santa Claus and your choice of machine guns?

For a fee of $5 for members and $10 for non-members, the Scottsdale Gun Club in Arizona will arrange a Yuletide photo op with Santa and a selection of automatic weapons valued at $170,000.

"It's been really fun," said Brooke Rodda, a spokesperson for the club. "We've had a tremendous response from the community."

The "unique" opportunity, Rodda said, permits families to handle weapons in a "safe, controlled environment." About 500 people turned out for the club’s first shoot on Nov. 26, and Rodda expects more crowds for the second "Santa and Machine Guns" event on Dec. 10.

Among the firearms to choose from are M60s, M249s, M240s and a modified Ar15, as well as more traditional holiday props such as reindeer antlers.

The event isn't attracting just gun enthusiasts:  "It has a broader appeal from families to older people," Rodda said.

But if firearms don’t exactly convey your holiday message, Rodda says don't worry: Santa can be just as disarming for the camera without the weapons.

More news and other features:
Case of the drowned million-dollar car to go to trial 

How to make an honest profit in politics

Give me all your money or my penguin will explode

Neighbors of an Atlanta woman shot dead when police said they saw her stabbing her 4-year-old daughter were trying to figure out what caused the woman to snap.

Carulus Hines, 40, had recently lost her job and the home she shared with her two children had no water, NBC partner 11alive.com reported Tuesday.

Police were called to the home Monday after her son, 8, was thrown out the window and ran to a neighbor's house.

When police arrived, an officer "looked in there and says she was stabbing the little girl, already killed her I guess, stabbing her," neighbor Joe Daniel said.

"I think she just snapped," said neighbor Charles Harris. "'Cause she was by my house (Sunday) around 9:30 saying nine demons come out of her ... that she had been possessed."

Read the full story at 11alive.com.

New York City Department of Transportation

Half of the 200 signs will be hung in pairs, with the image and haiku text together. Others will carry QR codes revealing the haiku.

Colorful 8-inch-square signs featuring safety messages in haiku are being installed at high-crash locations near cultural institutions and schools, including the Bronx's Grand Concourse, MoMA, downtown Brooklyn and the Brooklyn Botanical Garden.      

City Transportation Commissioner Janette Sadik-Khan announced the new safety campaign, called Curbside Haiku, on Tuesday.      

• Read the original story at NBCNewYork.com

Paid for using a state grant from DWI funds, the series includes 12 designs with accompanying haikus that each deliver a targeted safety message by focusing on one transportation mode.

Half of the signs will be hung in pairs, with the image and haiku text appearing. The remaining set feature an image with a QR code to allow New Yorkers to access the safety message via smartphone.

A man accused in a shooting rampage at a Los Angeles-area hair salon pleaded not guilty Tuesday to charges of killing his ex-wife and seven others.

Scott Dekraai, 42, was charged with eight counts of murder and one count of attempted murder. The judge set a preliminary hearing date of April 24 and also approved cameras in the courtroom.

Dekraai faces the death penalty, if convicted. He was jailed without bail after the Oct. 12 shooting at Salon Meritage in Seal Beach.

Dekraai and his former wife, Michelle Fournier, were in court a day before the slayings for a custody hearing that involved their 8-year-old son. A court-ordered report recommended that Dekraai not receive full custody, and authorities alleged that Dekraai sought revenge by opening fire in the busy salon.

Read about this case on NBC Los Angeles

Witnesses told police Dekraai was wearing a protective vest and carrying several weapons when he was taken into custody just blocks from the salon.

The eight people killed were Dekraai's ex-wife; the salon's owner, Randy Lee Fannin, 62; Victoria Ann Buzzo, 54; Lucia Bernice Kondas, 65; Laura Lee Elody, 46; Christy Lynn Wilson, 47; Michele Daschbach Fast, 47; and David Caouette, 64, who was shot in his Range Rover outside the salon.

Hattie Stretz, 73, was shot, but survived.

Two families have filed lawsuits against Dekraai. Wilson's family filed a lawsuit earlier this month seeking payment for her hospital and funeral expenses.

Fournier's parents also filed a similar lawsuit against Dekraai.

Syracuse police knew of sex-abuse allegations against a Syracuse University basketball coach back in 2002 but were unable to arrest him because the statute of limitations had run out, the city's police chief said Tuesday.

Then police Chief Dennis DuVal, who himself was a Syracuse basketball player in the 1970s, was aware of accusations against assistant coach Bernie Fine, current Syracuse police Chief Frank Fowler said in a statement.

Fine, who has been fired, denies the allegations.

Detective Doug Fox in 2002 told the accuser -- who has been identified as Bobby Davis, a former ball boy for the university's basketball team -- that since the allegations were from 12 years earlier the statute of limitations had passed, Fowler said. Fox advised his supervisor but didn't file a formal report.

Fowler said Syracuse police would from now on formally document all reports of sexual abuse.

Davis, 39, told ESPN that Fine first molested him in 1984 and that sexual contact continued until he was around 27. Davis' stepbrother, Mike Lang, 45, who also was a ball boy, also told ESPN that Fine molested him.

The full statement issued on behalf of Syracuse Police Chief Frank Fowler:

I would like to set the record straight and clear up some misconceptions that have surfaced in the media about what did or did not happen in 2002 under a previous Syracuse Police Department Administration when allegations of abuse by Bernie Fine were brought to the attention of a Syracuse Police Detective.

It is my belief that the public has the right to know who knew what and when in 2002 and 2003. After reviewing this matter for nearly two weeks, the following is an explanation of what occurred since 2002 within the Syracuse Police Department

In 2002, the Syracuse Police Department did not start an investigation into sexual abuse allegations against Bernie Fine. Syracuse Police will not identify the original victim. However, the victim revealed to a friend, who we now know to be Danielle Roach, that Bernie Fine had sexually abused him over the course of several years. Ms. Roach convinced the victim to report the abuse to authorities. Ms. Roach contacted a local attorney who provided her the name of Det. Doug Fox of the Syracuse Police Department's Abused Persons Unit. This attorney then notified Det. Fox that he may be getting a phone call from a female who wanted to speak to him about a sexual abuse case. Several weeks later, Ms. Roach contacted that detective and told him that Bernie Fine had sexually abused her friend. Ms. Roach was asked to have the victim contact Syracuse Police directly. Approximately a month later, Det. Fox took a call from the victim who told the detective he was calling from Utah. In a brief phone conversation, he stated that Bernie Fine had sexually abused him while growing up and the abuse had occurred while he stayed at the Fine residence. He stated the abuse had occurred at least twelve (12) years prior to the phone call. After hearing the victim's allegations and the timeframe, Det. Fox informed the victim the statute of limitations had expired. Due to the amount of time that had passed, authorities would be precluded by law from making an arrest. Det. Fox then told the victim that if he wished to meet with him in person, or if he was aware of any current victims, he would like the victim to share additional information. The victim believed he knew the first names of possible victims and that if he learned their last names, he would call back.

Det. Fox notified his supervisor in the Abused Persons Unit and it was decided that unless the victim met with the detective or the victim was able to provide names of other victims, then an investigation would not be initiated. The Syracuse Police Chief at that time, Dennis DuVal, was made aware of the allegations against Bernie Fine. Due to the fact that no investigation was started, Det. Fox did not prepare any formal reports.

Several months later, in 2003, the Syracuse Police Department received an inquiry from the Syracuse Post Standard as to whether an investigation had been conducted on Bernie Fine. The Post Standard was informed that no investigation had taken place.

It should be noted that the first time the Syracuse Police Department ever met face to face with any victim in this case was on November 17, 2011, when two victims came to the Syracuse Police Department, along with new evidence. Ms. Roach informed us that the Syracuse Post Standard and ESPN were both in possession of a copy of that evidence and had been in possession of the evidence since 2003. At no time in the last eight years did the Post Standard or ESPN notify Syracuse Police that they were in possession of that evidence.

The first time the Syracuse Police Department learned of Syracuse University's internal investigation was when the University presented the Syracuse Police Department with a copy of its report on November 17, 2011.

On November 17, 2011, after hearing the allegations made by the victims and reviewing new evidence, the Syracuse Police Department initiated an investigation to determine if in fact these allegations were true, and if there are any current sexual abuse victims. The investigation is active and ongoing and has entered a new phase with the U.S. Attorney's Office and the U.S. Secret Service taking the lead.

The Syracuse Police Department will continue to work diligently with the U.S. Attorney's Office, the U.S. Secret Service and the Onondaga County District Attorney to fully investigate all allegations.

I was not the Chief in 2002 and I cannot change the procedures in place at that time or the way this matter was then handled. But what I can and will do as Chief today is ensure that moving forward all reports of sexual abuse are formally documented. I have ordered a review of all Syracuse Police Department policies and procedures regarding the documentation of sexual abuse allegations made over the phone and appropriate changes will be made accordingly.

Joe Raedle / Getty Images file

Maureen Stevens' husband, Bob Stevens, a photo editor for American Media Inc., was the first fatality in the anthrax mailings.

The U.S. government has agreed to pay $2.5 million to the widow and family of a Florida tabloid photo editor killed in the 2001 anthrax attacks.

A document obtained Tuesday by The Associated Press shows that Maureen Stevens will drop all other claims stemming from the death of Robert Stevens. The document also says the U.S. is not admitting fault.

Stevens' lawsuit, filed in 2003, claimed the government was negligent because it failed to stop someone at the U.S. Army Medical Research Institute of Infectious Diseases at Fort Detrick, Md., from creating weapons-grade anthrax used in letters that killed her husband and four other people. Seventeen more people were sickened.

Maureen Stevens' attorney did not immediately return a telephone call seeking comment. The settlement names her and her three grown children, and notes that attorneys' fees of no more than 25 percent will be paid out of that amount.

Robert Stevens worked in Boca Raton for American Media Inc., publisher of the National Enquirer, Sun and Globe tabloids when he was exposed to anthrax. He died Oct. 5, 2001. Other anthrax-laced letters were mailed to television networks in New York and a U.S. Senate office building in Washington.

After a lengthy and unprecedented investigation, the FBI concluded that a government scientist, Dr. Bruce Ivins, was solely responsible for the attacks. Ivins, however, committed suicide in 2008 and some who worked with him at Fort Detrick have expressed doubt that he did it or had the means to create the anthrax used in the letters.

For years the FBI investigation focused on another scientist, Steven Hatfill, who was identified as a "person of interest" in 2001 by then-Attorney General John Ashcroft. Hatfill was eventually cleared and sued the government for invasion of privacy, resulting in a $5.8 million settlement.

Lawsuits filed by other victims have been dismissed, although at least one is on appeal.

EDINBURG, Texas – While flying an afternoon patrol along the twists and turns of the Rio Grande, Lt. Johnny Prince, a veteran pilot for the Texas Department of Public Safety, spotted something suspicious: "Look here, we got a raft, a raft right here." 

Below him, in the middle of the river which separates Mexico from the United States was a group of men frantically paddling back to the southern riverbank, their attempt to reach the American side thwarted by the helicopter patrol.

Prince said he suspected the men were a team of drug cartel scouts who were planning to search the U.S. side of the river to make sure there were no law enforcement officers nearby.  If they determined the area was clear, he explained, they would then signal others to sneak a load of narcotics across the river in a raft.

Mike Avila, the helicopter's tactical flight officer, said that this was happening near an area nicknamed "Smugglers' Alley," because of all the illicit activity here.  Well-worn trails and a narrowing of the river have made this area a favorite for Mexican drug traffickers.

‘That car's loaded to the gills’
Earlier that same day, Prince and Avila found themselves flying inland in hot pursuit of two vehicles –a car and a truck –loaded with Mexican marijuana.  As the vehicles sped through city streets on the American side of the river, Avila trained the helicopter’s high-powered camera on the fleeing smugglers and Prince called out their locations by radio to pursuing troopers on the ground.

Mark Potter / NBC News

Lt. Johnny Prince, the pilot on the right, and Mike Avila, the tactical flight officer on the left, patrol the Rio Grande in a helicopter looking for drug smugglers.

One of the drivers sped along the wrong side of the road, then he raced through an intersection, almost striking two cars with his pickup truck.  "Oh no, oh no," groaned Prince.  Avila described another close call as the driver raced through a school zone before crashing into a building: "He nearly struck two school buses."

In both cases, the drivers – a man and a woman – were apprehended and troopers seized loads of marijuana from both their vehicles. Even from the sky, the pilots could see that one of the cars was carrying a lot of drug bundles.  "That car's loaded to the gills," said Prince. 

Increased aggression along a ‘porous’ border
For the helicopter teams, chasing smugglers along the Rio Grande in South Texas is virtually a daily occurrence. Pilots say they've seen the Mexican traffickers pushing larger amounts of illicit drugs into the United States over the last few years and have watched them become more menacing toward law enforcement officers and U.S. citizens.

"I've been working along the border for 14 years and in those 14 years I've seen the level of aggression increase exponentially.  The sheer volume of narcotics that's being pumped into our border has risen," said Capt. Stacy Holland, of the Texas Department of Public Safety Aircraft Section.

It's not unusual, Holland said, for smugglers to take only a couple of minutes to move more than a ton of marijuana across the river, up the U.S. side of the riverbank and into a vehicle which then heads north. "Our border is very open, our border is very porous," he said.

The pilots said they are convinced traffickers are much more likely now than they were a few years ago to confront U.S. law enforcement officials.  "We have video of them carrying AK-47's and side arms during these operations and they are not afraid to use them," said Holland. 

While flying in his helicopter, Prince has more than once been eye to eye with smugglers on the ground upset with his presence above.  "I've seen guns pointed at me, long guns.  I've seen rocks thrown at us.  One of the things they do is use sling shots with ball bearings in them," he said.  "A ball bearing with a good slingshot can do damage to this helicopter and that's been done."

Another serious concern is for the safety of Texas troopers and U.S. Border Patrol agents who have to tangle with the traffickers on the ground.  A particularly dangerous scenario involves agents coming upon a large group of smugglers loading a car with illegal drugs on the U.S. side of the Rio Grande. 

"Usually there's only one or two officers that first arrive at the particular vehicle on the river and they are encountering 15 or 20 cartel members," said Prince.  "On the other side, you will see another 10 to 15 cartel members, and if you see them armed they are going to be trying to cover the guys on the U.S. side."

Splashdowns
A highly unusual technique used by Mexican smugglers to elude capture by American authorities involves them driving trucks loaded with drugs into the waters of the Rio Grande.  It happens after Border Patrol agents or Texas troopers spot a drug-laden vehicle on the U.S. side of the river and give chase. 

If the smugglers can't elude their pursuers – either by speeding up or by throwing spikes into the road to flatten the tires of the officers behind they – they will then head back to the same spot along the river where traffickers brought the drugs ashore after floating them across from Mexico.

"If the loads get compromised, they will drive around in the United States, in Texas here, until they get their recovery teams set up on the river, to return the drugs back to Mexico," said Prince. 

The Texas Department of Public Safety has shot numerous helicopter videos of Mexican smugglers paddling over to the American side of the river to await the arrival of the truck racing toward them.  When the truck reaches the riverbank, it keeps going – right into the water. 

Texas Dept. Of Public Safety / Texas Dept. of Public Safety

Photo taken of a "splashdown" taken by the Texas Department of Public Safety. Drug smugglers drove their truck back into the Rio Grande river to escape U.S. law enforcement.

"Bam! All units, we have a splashdown, a splashdown in the river," a pilot on one of the videos can be heard transmitting on the radio. 

Before the truck sinks, the driver climbs out through the window and the recovery teams move quickly to save as much of the drug load as possible, throwing the tightly-wrapped bales into rafts. 

"Ok, we've got rafts in the river, a bunch of people on the U.S. side; that thing is loaded," said a pilot watching from above in one video.  "Suspects are in the water, trying to unload the vehicle," said another pilot hovering over a different scene.

As soon as the rafts are filled with off-loaded drugs, the smugglers paddle back to the Mexican side of the river where they are safe from arrest by American authorities.  Sometimes, the traffickers are so brazen they will make obscene hand gestures toward U.S. agents watching from across the river, or from above in helicopters.

The agents' only recourse at that moment is to notify Mexican authorities and hope they arrive in time to apprehend the smugglers.  Or, they can hope to catch the loads of drugs next time, when inevitably they are floated back across the Rio Grande during another smuggling attempt – sometimes on the very same day the drugs are recovered after a splashdown.

No end in sight
The pilots who routinely fly along the Rio Grande said they see nothing that would suggest there is any let up in the amount of smuggling along the river.  In fact, they predict increased violence on U.S. soil.

"You get a lot more home invasions, a lot of crook on crook crimes, a lot of kidnappings, the cartels coming over here maybe trying to collect money and then retreating back over to Mexico," said Holland. 

Texas newspapers have reported recently on cartel shoot-outs in Houston and McAllen, the wounding of a deputy, the arrests of alleged cartel leaders in the Rio Grande Valley and the seizure of cartel property in the U.S.—along with the almost daily news of major drug seizures.

Statements by the Obama Administration and by some local officials that the U.S.-Mexican border is safer than ever are derided by many of the pilots.

"Our citizens in our border towns are caught in the crossfire, and I mean that in the most literal sense sometimes," said Holland.  "It's important that our citizens, not only in the state (of Texas), but in the United States are aware of how porous our border is and what the threats are, and could be."

More coverage from Mark Potter: Along Mexican border, US ranchers say they live in fear

See more of Mark Potter's reporting on NBC's Nightly News with Brian Williams Tuesday evening.

Prince William County police

Stephanie Lynn Schwab, 26, is a former gang member accused of a recent spate of crimes in the Virginia-Maryland area.

By NBCWashington.com and msnbc.com

A so-called "blond bandit" suspected of multiple heists in Virginia has been linked to another crime, this one a carjacking on Thanksgiving Day in Maryland. 

Stephanie Lynn Schwab, 26, described as a 5'3'' white female with blond hair and green eyes, earned her nickname after being named in connection with an earlier carjacking and two bank robberies, all of which took place between Nov. 18 and Nov. 21, according to Virginia's InsideNova.com.

In Thursday's incident, Baltimore County police say Schwab asked a woman for a ride from the parking lot of a Safeway supermarket to a Shoppers Food Warehouse. But when the victim stopped her car, Schwab allegedly displayed a knife and told her to keep driving.

The victim asked a nearby man for help, at which point the suspect attempted to climb into the driver's seat. The victim tried to grab the knife from Schwab and was cut on the hand, officials said. Schwab then fled on foot, police said, according to InsideNova.com.

Schwab is also wanted in an armed carjacking on Nov. 19 of a silver 2003 Acura.

In that incident, a 59-year-old woman had offered the suspect a ride from the parking lot of Neiman Marcus at the Tysons Corner shopping center in Virginia. They left together in the Acura, but at a nearby intersection, the suspect showed a knife and told the victim to get out of the car. That victim was left at the intersection, reported NBCWashington.com. The Acura was found on Friday. Detectives connected Schwab to the crime and have obtained a warrant for her arrest. 

Schwab also has been linked to a Nov. 18 bank robbery in Prince William County, Va. She may have been involved in another bank robbery Nov. 22, at a BB&T in Springfield, Va. 

She was last seen Thursday, running eastbound on Route 40 towards Baltimore City. She has no known connection to that area, and may be staying in a motel, waiting for a chance to commandeer a getaway car, reported WBALTV.com. Police are asking drivers to use caution, as the suspect may approach vehicles asking for a ride. 

Former gang member
Schwab, of Manassas, Va., is a former member of the MS-13 gang, according to court records. The Richmond Times-Dispatch reported that she joined the group after running away from home at the age of 12. She reportedly had a fellow gang member's child three years later, and is now a mother of two, reported WBALTV.com. In 2005, Schwab testified against MS-13 members in a murder trial, reported InsideNova.com.

Police don't know what prompted the recent robbery spree.

Anyone with information is asked to call Baltimore County Police at 410-307-2020 or Metro Crime Stoppers at 866-7-LOCKUP (866-756-2587). To text a tip to Metro Crime Stoppers, send to "CRIMES" (274637), then enter the message starting with "MCS," or e-mail a tip to www.metrocrimestoppers.org. 

Those contacting Metro Crime Stoppers can remain anonymous and might be eligible for a cash reward of up to $2,000.

A gay softball organization has agreed to pay an undisclosed sum to three players who were disqualified from its 2008 Gay Softball World Series because of their perceived heterosexuality.

And, as part of the settlement announced late Monday, their team will be awarded the second-place trophy it was denied at the time.

The men -- Stephen Apilado, Laron Charles and John Russ -- filed the federal lawsuit against the North American Gay Amateur Athletic Alliance last year, claiming they had been discriminated against because they were bisexual, not gay.

They had played for years on a San Francisco-based team called D2. Rumors had persisted that the team was stacked with straight ringers, and when they made it all the way to the finals of the 2008 tournament in the Seattle area, others filed a protest, accusing D2 of exceeding the limit of two heterosexual players per team.

Tournament officials convened a protest committee and brought in five D2 members for questioning. In a conference room filled with about 25 people, many of them strangers, the players were asked questions about their sexuality and private lives. The protest committee then voted on whether the men were gay.

Two were determined to be gay, but the committee found Apilado, Charles and Russ to be straight. The organization said that at the time, the men never identified themselves as bisexual, were evasive or refused to answer questions about their sexuality. Minutes of the hearing say that Charles claimed to be gay but acknowledged being married to a woman, and Apilado initially said he was both gay and straight but then acknowledged being more attracted to women.

The men said they weren't given the option of stating outright that they were bisexual, even though the organization considered bisexual players to be gay for roster purposes. They and their team were disqualified. One observer at the hearing commented, "This is not a bisexual World Series. This is a gay World Series."

Constitutional right
NAGAA said the settlement came after the organization won a series of motions limiting what claims the players could present at trial.

The players initially asked the court to throw out the roster limit on straight players as discriminatory. But U.S. District Judge John Coughenour ruled that the organization had a constitutional right to limit the number of straight players as a means of promoting their message that openly gay, bisexual and transgendered individuals can thrive in competitive sports.

The judge said the case could proceed to trial because questions remained about the way the softball association applied its rule, including whether the questions asked at the hearing were unnecessarily intrusive. The trial was set for next month.

"We have been vindicated by the judge's First Amendment rulings," said Roy Melani, NAGAAA's commissioner. "This lawsuit threatened not only the purpose of our organization, but also its future. We fought hard to protect ourselves and our core identity and I am relieved this issue is finally behind us."

Since the lawsuit was filed, NAGAAA has added language to its rules clarifying that bisexual and transgender players are fully welcomed participants in its events. As part of the settlement, the organization said disqualifying D2 was not consistent with its goal of welcoming bisexual players.

"NAGAAA regrets the impacts the 2008 protest hearing had on plaintiffs and their team," the settlement reads.

The National Center for Lesbian Rights, which represented the men, welcomed the changes but said they should go even further. The group still wants NAGAAA to delete its roster limits on straight players, on the grounds that it encompasses gay players who are in the closet or who choose not to put a label on their sexuality.

Charles said he's looking forward to playing more softball.

"It means a lot to me that NAGAAA is going to recognize our second place finish in 2008," Charles said in a statement. "I look forward to continuing to play ball with my friends, teammates and community in NAGAAA's tournaments."

Columbia University

This time-lapsed image of a screen on an HP LaserJet shows the impact of a rogue print job used to reprogram the device.

Could a hacker from half-way around the planet control your printer and give it instructions so frantic that it could eventually catch fire? Or use a hijacked printer as a copy machine for criminals, making it easy to commit identity theft or even take control of entire networks that would otherwise be secure?

It’s not only possible, but likely, say researchers at Columbia University, who claim they've discovered a new class of computer security flaws that could impact millions of businesses, consumers, and even government agencies.

Printers can be remotely controlled by computer criminals over the Internet, with the potential to steal personal information, attack otherwise secure networks and even cause physical damage, the researchers argue in a vulnerability warning first reported by msnbc.com.  They say there's no easy fix for the flaw they’ve identified in some Hewlett-Packard LaserJet printer lines – and perhaps on other firms’ printers, too – and there's no way to tell if hackers have already exploited it.

The researchers, who have working quietly for months in an electronics lab under a series of government and industry grants, described the flaw in a private briefing for federal agencies two weeks ago. They told Hewlett-Packard about it last week.

HP said Monday that it is still reviewing details of the vulnerability, and is unable to confirm or deny many of the researchers’ claims, but generally disputes the researchers’ characterization of the flaw as widespread.  Keith Moore, chief technologist for HP's printer division, said the firm "takes this very seriously,” but his initial research suggests the likelihood that the vulnerability can be exploited in the real world is low in most cases.      

“Until we verify the security issue, it is difficult to comment,” he said, adding that the firm cannot say yet what printer models are impacted.

But the Columbia researchers say the security vulnerability is so fundamental that it may impact tens of millions of printers and other hardware that use hard-to-update “firmware” that’s flawed.

'Crystal clear'
The flaw involves firmware that runs so-called "embedded systems" such as computer printers, which increasingly are packed with functions that make them operate more like full-fledged computers. They also are commonly connected to the Internet. 

"The problem is, technology companies aren't really looking into this corner of the Internet. But we are," said Columbia professor Salvatore Stolfo, who directed the research in the Computer Science Department of Columbia University’s School of Engineering and Applied Science. “The research on this is crystal clear.  The impact of this is very large. These devices are completely open and available to be exploited.”

Printer security flaws have long been theorized, but the Columbia researchers say they've discovered the first-ever doorway into millions of printers worldwide.  In one demonstration of an attack based on the flaw, Stolfo and fellow researcher Ang Cui showed how a hijacked computer could be given instructions that would continuously heat up the printer’s fuser – which is designed to dry the ink once it’s applied to paper –  eventually causing the paper to turn brown and smoke.

In that demonstration, a thermal switch shut the printer down – basically, causing it to self-destruct – before a fire started, but the researchers believe other printers might be used as fire starters, giving computer hackers a dangerous new tool that could allow simple computer code to wreak real-world havoc.

Hewlett Packard, in a statement, said all its printers include such thermal switches, and these would prevent a printer fire in all cases.

"(The thermal breaker) cannot be overcome by a firmware change or this proposed vulnerability," it said.

Click here to read H-P's full statement issued in response to this story.

Cui and Stolfo say they've reverse engineered software that controls common Hewlett-Packard LaserJet printers. Those printers allow firmware upgrades through a process called "Remote Firmware Update." Every time the printer accepts a job, it checks to see if a software update is included in that job.  But they say printers they examined don't discriminate the source of the update software – a typical digital signature is not used to verify the upgrade software’s authenticity – so anyone can instruct the printer to erase its operating software and install a booby-trapped version.

In all cases, the Columbia researchers claim, duping a would-be target into printing a virus-laden document is enough to take control of that person's printer; but in some cases, printers are configured to accept print jobs via the Internet, meaning the virus can be installed remotely, without any interaction by the printer's owner.

“It's like selling a car without selling the keys to lock it,” Stolfo said. “It’s totally insecure.”

Columbia University

Columbia researcher Ang Cui explains how he was able to infect an HP printer with malicious code.

Rewriting the printer's firmware takes only about 30 seconds, and a virus would be virtually impossible to detect once installed. Only pulling the computer chips out of the printer and testing them would reveal an attack, Cui said.  No modern antivirus software has the ability to scan, let alone fix, the software which runs on embedded chips in a printer.

“First of all, how the hell doesn't HP have a signature or certificate indicating that new firmware is real firmware from HP?” said Mikko Hypponen, head of research at security firm F-Secure, when told of the flaw. “Printers have been a weak spot for many corporate networks.  Many people don’t realize that a  printer is just another computer on a network with exactly the same problems and, if compromised, the same impact.”

There are plenty of points of contention between HP and the researchers, however. Moore, the HP executive, said the firm’s newer printers do require digitally signed firmware upgrades, and have since 2009. The printers tested by the researchers are older models, Moore said. 

In contrast, the Columbia researchers say they purchased one of the printers they hacked in September at a major New York City office supply store.

Moore also said that the impact of any potential vulnerability is limited because most home users have InkJet printers – not LaserJet printers – and they do not permit remote firmware upgrade, he said.

Still, a widespread flaw in LaserJet printers would raise serious issues. Hewlett Packard dominates the printer market; the firm says it's sold 100 million LaserJet printers since 1984, meaning millions of computers could be vulnerable. HP, by far the dominant printer seller worldwide with 42 percent of the market, sells about 50 million printers of all kinds annually, according to IDC.

In an exclusive demonstration for msnbc.com at Columbia University’s Intrusion Detection Systems Laboratory, Cui and Stolfo revealed the kind of havoc an attacker could wreak once they gained control of a printer. After sending a virus-laced print job to a target printer, the device's small screen read, in sequence, "Erasing...Programming...Code Update Complete."

In one demonstration, Cui printed a tax return on an infected printer, which in turn sent the tax form to a second computer playing the part of a hacker’s machine. The latter computer then scanned the document for critical information such as Social Security numbers, and when it found one, automatically published it on a Twitter feed.

A hacker who merely wanted to wreak havoc could easily disable thousands – or perhaps millions – of vulnerable printers, Cui said, as it is trivial to send the printer upgrades that would render it inoperable.  

Beachhead?
But the researchers say the possibilities created by hijacked printers go far beyond pranks or identity theft. Printers on a company network are nearly always trusted by other computers. A hijacked printer could act as a beachhead to attack a company's network that was otherwise protected by a firewall. Few companies are prepared to protect themselves from an attack by their own printer.

Moore also disagreed with this assertion. He said standard print jobs could not be used to initiate a firmware upgrade; only specially-crafted files sent directly to the printer can do that. Were that true, the vulnerability could only be exploited on printers left exposed to the Internet; printers behind a firewall would be safe.

“This (vulnerability) is probably not as broad as what I had heard in their first announcement,” Moore said. “It sounds like we disagree on what the exposure might be.”

But the Columbia researchers say standard print commands sent both from a Macintosh computer and a PC running Linux tricked an HP printer into reprogramming itself. Moore later conceded that might be true; but the two sides disagreed on whether users in a Microsoft Windows environment were safe from the attack.

Even home users with printers that are not directly connected to the Internet are at risk, Cui said.  As long as the printer is connected to a computer – through a USB cable, for example –  it could be used to launch attacks, or as part of a botnet.

A quick scan of unprotected printers left open to Internet attack by the researchers found 40,000 devices that they said could be infected within minutes. 

Cui discovered the lack of authentication by physically disassembling the printer, and painstakingly reading output from its chipset, one character at a time. The chips run off-the-shelf operating systems like VxWorks and Linx, a scaled-down version of the Linux operating system designed for embedded devices.  Reprogramming the chip was relatively easy, he said – and now that the concept has been proven, he thinks others could reproduce his work in a day or two. 

"In fact, it's almost impossible to think that someone else hasn't already done this," he said.

Fixing the flaw will not be easy, Stolfo said.  There is no natural path to update printer operating system software, as there is for desktop PC software.  It's possible a consortium of firms could "push out a fix," once one is available, he said. He urged HP to work with companies like Microsoft to help consumers update their printers. (Msnbc.com is a joint venture of Microsoft and NBC Universal.)

One particularly vexing part of the fix: Printers that are already compromised by rogue software likely cannot be fixed. An attacker could easily shut down the pathway for future updates that would “cure” an infected printer.

“If and when HP rolls out a fix, if a printer is already compromised, the fix would be completely ineffective.  Once you own the firmware, you own it forever. That’s why this problem is so serious, and so different,” Cui said. “This is nothing like fixing a virus on your PC.”

Such inability to help consumers manually secure their printers could ultimately have disastrous consequences, Stolfo said.

 “It may ultimately lead to telling everyone they just have to throw their printers out and start over,” he said. "Fixing this is going to require a very coordinated effort by the industry," Stolfo said.

Rogue software
Hypponen said that the anti-virus industry could develop software tools that would detect booby-trapped print jobs in word processing documents or emails, and thwart attempts to update printers with rogue software that way. But such an approach would hardly be foolproof.

The Columbia researchers are just beginning to sample printers sold by other manufacturers; the research is inconclusive so far, but Stolfo and Cui believe the problem is not limited to Hewlett-Packard machines.

 “I think it is very wise to broadcast the problem as soon as possible so all of the printer manufacturers start looking at their security architectures more seriously,” Stolfo said.  “It is conceivable that all printers are vulnerable. …Printers that are 3-, 4-, 5-years-old and older, I’d think, all used unsigned software. The question is, ‘How many of those printers are out there?’ It could be much more than 100 million.”

That’s why Stolfo and Cui decided to go public with the vulnerability: They believe the sheer scope of the flaw requires immediate attention and cooperation from multiple elements of the tech industry. The two are currently helping HP devise a mitigation strategy.

HP continues to research the potential flaw, but it’s too early for the firm to announce which products might be impacted, or what consumers should do.

“Until we know things like whether Windows users are affected, whether this is a class or specific product issue, it is frankly irresponsible to say more,” Moore said.  “If this turns out to be the broad (problem) that's being discussed…we will reach out to customers and get it fixed.  We support our customers and value their trust.”

Printers, however, are just the tip of the iceberg when it comes to vulnerable embedded devices, Stolfo warned.  Columbia researchers have found that many gadgets now wired to connect to the Internet – including DVD players, telephone conference tools, even home appliances – have no security at all.

"Right now, very few people are thinking about the security of all these devices, so we're moving on to look at many more of them,” Stolfo said, noting that supposedly secure offices – even in sensitive government agencies – have networked teleconferencing devices, printers, even thermostats that create security risks.

“This is a whole area that is being ignored,” he continued. “While most folks are focused on applications, there is a comfort level with (embedded systems) that is nonsensical. There's no focus on the security of these devices we take for granted and we carry into secure environments every day.”

Don't miss the next Red Tape:
*Get Red Tape headlines on your Facebook Wall
*Follow Bob on Twitter. 
*Get an e-mail newsletter with Red Tape stories (requires Newsvine registration).