At 8:32 a.m. EST on December 16, 2025, the Global Internet Forum to Counter Terrorism (GIFCT) activated a Perpetrator Content Incident (PCI) in response to a violent extremist event in Moscow Oblast, Russia.
The PCI was activated due to perpetrator-produced content from a violent extremist attack circulating online.
As a result, GIFCT members share relevant information for other members’ situational awareness about the event. Hashes corresponding to the perpetrator-produced content depicting the attack, in video and image form, qualify to be added to the GIFCT hash-sharing database. This enables other GIFCT members to identify whether the same content has been shared on their platforms and address it in accordance with their respective platform policies.
For more information about GIFCT’s:
- Incident Response Framework that guides how GIFCT and its members respond to mass violent attacks and their online dimensions, see here: https://gifct.org/incident-response/
- Hash-sharing database, see here: https://gifct.org/hsdb/
GIFCT is working with members and partners to monitor developments and respond accordingly. We thank our stakeholders for their continued engagement, and our thoughts remain with the victims and affected communities.
We will provide further updates on this post.
