Friday, June 24, 2016



Complete DHS Report for June 24, 2016

Daily Report                                            

Top Stories

• The U.S. President signed a chemical safety act into law June 22 that gives the U.S. Environmental Protection Agency authority to review and regulate chemicals, and mandates that the agency update its inventory of current chemicals, among other provisions. – Washington, D.C. Environment & Energy Publishing

1. June 22, Washington, D.C. Environment & Energy Publishing – (National) U.S. President signs TSCA reform into law. The U.S. President signed the “Frank R. Lautenberg Chemical Safety for the 21st Century Act” into law June 22 that gives the U.S. Environmental Protection Agency authority to review and regulate chemicals, and mandates that the agency update its inventory of current chemicals as well as creates a risk evaluation process within 6 months. The bill aims to ensure the safety of the public and support U.S. manufacturing while boosting the U.S. economy. Source: http://www.eenews.net/stories/1060039241

• Bolthouse Farms issued a recall June 22 for 3.8 million bottles of its Protein PLUS shakes products and its Mocha Cappuccino Perfectly Protein products due to possible spoilage. –U.S. Food and Drug Administration

12. June 22, U.S. Food and Drug Administration – (National) Bolthouse Farms voluntarily recalls protein beverage due to possible spoilage. Bolthouse Farms issued a voluntary recall June 22 for 3.8 million bottles of its Protein PLUS shakes products sold in 14 variations and its Mocha Cappuccino Perfectly Protein products sold in 2 variations due to possible spoilage after the company received consumer complaints and reports of illness in connection with the products. The cause of the issue is under investigation and the products were distributed nationwide. Source: http://www.fda.gov/Safety/Recalls/ucm508221.htm

• Federal authorities announced June 22 that 301 people were charged for their roles in health care fraud schemes involving about $900 million in fraudulent billings to Medicare and Medicaid. – U.S. Department of Justice

19. June 22, U.S. Department of Justice – (National) National health care fraud takedown results in charges against 301 individuals for approximately $900 million in false billing. Federal authorities announced June 22 that 301 people were charged in a nationwide sweep for their roles in health care fraud schemes involving about $900 million in fraudulent billings to Medicare and Medicaid. The individuals allegedly participated in various schemes to submit claims for treatments that were medically unnecessary or never provided, or for home health care, mental health services, and pharmacy fraud. Source: https://www.justice.gov/opa/pr/national-health-care-fraud-takedown-results-charges-against-301-individuals-approximately-900

• Security researchers discovered that a CouchDB database containing details on over 154 million U.S voters was compromised after a hacker took down L2’s, a company that manages access to U.S. voter records, firewall. – Softpedia; Austin Daily Dot See item 26 below in the Information Technology Sector

Financial Services Sector

Nothing to report

Information Technology Sector

26. June 23, Softpedia; Austin Daily Dot – (International) Hackers breach US company and unwittingly expose 154 million voter records. Security researchers from MacKeeper discovered that a CouchDB database containing details on over 154 million U.S voters was compromised after a hacker took down L2’s, a company that builds, manages, and sells access to U.S. voter records, firewall. The database contained 1-year-old information and was taken down, and authorities were unsure of the identity of the hacker. Source: http://news.softpedia.com/news/hackers-breach-us-company-and-unwittingly-expose-154-million-voter-records-505553.shtml

27. June 23, Softpedia – (International) Criminals set up fake companies to hijack and sell IPv4 addresses. Security researchers from Check Point reported that cyber criminals were leveraging legacy networks belonging to companies no longer in existence by scanning the IPv4 address pool and searching for networks’ contact information, and if no data is found, attackers impersonate the defunct company by re-registering old business names or expired domain names. Source: http://news.softpedia.com/news/criminals-set-up-fake-companies-to-hijack-and-sell-ipv4-addresses-505554.shtml

28. June 23, Softpedia – (International) Massive spam flood delivering Cerber ransomware hit users at the end of May. Check Point released a report which detailed that the Cerber ransomware was attacking victims in April and May through two recent incidences that included large amounts of email spams containing Microsoft Office documents loaded with malicious macros that were downloading and installing the ransomware. Source: http://news.softpedia.com/news/massive-spam-flood-delivering-cerber-ransomware-hit-users-at-the-end-of-may-505556.shtml

Communications Sector

29. June 22, TurlockCityNews.com – (California) Damaged fiber optic line causes Charter service outage. Charter Communications customers in Turlock, Escalaon, and Riverbank lost Internet, video, and phone services for at least 3 hours June 22 after a fiber optic line operated by a third party provider was damaged. Crews worked to repair the damaged line. Source: http://www.turlockcitynews.com/news/item/5863-damaged-fiber-optic-line-causes-charter-service-outage

For another story, see item 25 below from the Emergency Services Sector

Thursday, June 23, 2016



Complete DHS Report for June 23, 2016

Daily Report                                            

Top Stories

• Pacific Gas and Electric Co. agreed June 21 to close the Diablo Canyon Power Plant in California by 2025 and replace the nuclear plant with solar power and other energy sources. – Associated Press

3. June 21, Associated Press – (California) California closing last nuclear plant after 3 decades. Pacific Gas and Electric Co., and several environmental groups agreed June 21 to close the Diablo Canyon Power Plant in San Luis Obispo County by 2025 and replace the nuclear plant with solar power and other energy sources that do not produce climate-changing greenhouse gases. The closure will ensure that earthquakes will not fracture the facility as the plant sits 650 yards from the nearest fault line. Source: http://abc7.com/news/california-closing-last-nuclear-plant-after-3-decades/1394704/

• U.S. officials announced June 21 that Analogic Corp., and its Danish subsidiary, BK Medical ApS, agreed to pay nearly $15 million to settle parallel civil and criminal actions involving Foreign Corrupt Practices Act (FCPA) violations. – U.S. Securities and Exchange Commission

19. June 21, U.S. Securities and Exchange Commission – (International) SEC charges medical device manufacturer with FCPA violations. The U.S. Securities and Exchange Commission announced June 21 that Analogic Corp., and its Danish subsidiary, BK Medical ApS, agreed to pay nearly $15 million to settle parallel civil and criminal actions involving Foreign Corrupt Practices Act (FCPA) violations after the Danish subsidiary engaged in hundreds of sham transactions with distributors that funneled about $20 million to third parties, while Analogic Corp., reportedly failed to keep accurate books and records and maintain adequate internal accounting controls.

• The governor of Michigan signed a $617 million bailout and restructuring plan June 21 for Detroit Public Schools which will split the district in two July 1. – Associated Press

21. June 21, Associated Press – (Michigan) Michigan governor signs $617M Detroit schools bailout. The governor of Michigan signed a $617 million bailout and restructuring plan June 21 for Detroit Public Schools which will split the district in two July 1. A new school board is set to be elected in November and a commission of State appointees that oversee city budgets will review the schools’ finances. Source: http://www.freep.com/story/news/education/2016/06/21/michigan-governor-rick-snyder-signs-617m-detroit-schools-bailout/86202378/

• Florida officials announced June 20 that Florida Power & Light will have 10 years to clean up a large underground plume of saltwater threatening drinking water well fields near its Turkey Point plant. – Miami Herald

32. June 21, Miami Herald – (Florida) Florida gives FPL 10 years to clean up cooling canals. The Florida Department of Environmental Protection announced June 20 that Florida Power & Light will have 10 years to clean up a large underground plume of saltwater threatening drinking water well fields near its Turkey Point plant, which will include freshening and improving the efficiency of the 5,900-acre loop of canals used to cool two nuclear reactors at the plant, and the installation of a network of extraction wells to halt and ultimately shrink the plume, among other plans.

Financial Services Sector

5. June 21, U.S. Securities and Exchange Commission – (California) SEC halts scheme defrauding pro athletes. The U.S. Securities and Exchange Commission unsealed a complaint June 21 charging and freezing the assets of The Ticket Reserve Inc., its chief executive officer, a chief operating officer, and a managing director from RGT Capital Management after the group allegedly siphoned more than $33 million from professional athletes’ bank accounts without their authorization in order to invest the money into The Ticket Reserve, make Ponzi-like payments to existing investors using money from new investors, and falsify documents, among other illicit actions in order to conceal the scheme. The charges also allege that the managing director received nearly $2 million in hidden compensation from the company, failed to disclose to investors that he was a member of The Ticket Reserve’s board of directions, and falsely claimed to be a certified public accountant (CPA). Source: https://www.sec.gov/news/pressrelease/2016-124.html

Information Technology Sector

24. June 22, SecurityWeek – (International) Over a dozen flaws patched in Pidgin chat client. Pidgin chat client released Pidgin 2.11.0 patching 16 information disclosure flaws, denial-of-service (DoS) flaws, directory traversal, and buffer overflow flaws after a security researcher from Cisco Talos discovered the vulnerabilities could allow a man-in-the-middle (MitM) attacker to overwrite arbitrary files on the system, among other actions. Source: http://www.securityweek.com/over-dozen-flaws-patched-pidgin-chat-client

25. June 22, Softpedia – (International) Carbonite online backup service resets all users passwords after cyber-attack. Carbonite, the online backup software for Apple Mac and Microsoft Window products, reported that it issued a service-wide password reset for all of its users June 21 after the company discovered an ongoing, large account takeover (ATO) or Identify Testing Attacks in its systems. The company stated the third-party attack did not compromise any users’ accounts and initiated the password reset as a precautionary measure. Source: http://news.softpedia.com/news/carbonite-online-backup-service-resets-all-users-passwords-after-cyber-attack-505512.shtml

26. June 22, Softpedia – (International) WordPress 4.5.3 fixes bug that allowed password change via stolen cookies. WordPress released its newest version WordPress 4.5.3 fixing 8 security bugs and 17 maintenance issues including simple cross-site scripting (XSS) flaws, a denial-of-service (DoS) flaw, and an insecure input filtering flaw after a company security researcher discovered that one of the flaws could allow attackers to change a user’s password by leveraging stolen cookies. Source: http://news.softpedia.com/news/wordpress-4-5-3-fixes-bug-that-allowed-password-change-via-stolen-cookies-505508.shtml

27. June 21, SecurityWeek – (International) Several vulnerabilities patched in Libarchive library. Libarchive released a new version for its open-source library, Libarchive 3.2.1 after a security researcher from Cisco Talos discovered three severe flaws in the system, including a stack-based buffer overflow flaw and a heap corruption flaw that can lead to arbitrary code execution, as well as an integer overflow flaw that could allow an attacker to execute arbitrary code using specially crafted 7-Zip files. Source: http://www.securityweek.com/several-vulnerabilities-patched-libarchive-library

For another story, see item 28 below in the Communications Sector

Communications Sector

28. June 21, IDG News Service – (International) New Android malware can secretly root your phone and install programs. Security researchers from Trend Micro reported that a new Android malware dubbed Godless is targeting devices running Android 5.1 and earlier versions to root the operating system (OS) on a device and allow unauthorized apps to be installed, opening the software to potential spyware installation. Source: http://www.computerworld.com/article/3087003/security/new-android-malware-can-secretly-root-your-phone-and-install-programs.html#tk.rss_security