Complete DHS Daily Report for August 30, 2013
Daily Report
Top Stories
• Officials closed the Bay Bridge that connects
San Francisco and Oakland, California, August 27 until September 3 so that
workers can complete a new eastern span. – CNN
9.
August 28, CNN – (California) California’s
Bay Bridge closure starting. Officials closed the Bay Bridge that connects
San Francisco and Oakland for August 27 so that workers can complete a new
eastern span. The bridge is scheduled to reopen September 3. Source: http://www.cnn.com/2013/08/28/us/california-bay-bridge-closure/index.html
• The U.S. Fish and Wildlife Services and U.S.
Geological Survey issued a report that found hydraulic fracturing fluids that
spilled from a natural gas well site near Acorn Fork, Kentucky, in 2007 were
the cause of a fishkill in a nearby stream. – WFPL 89.3FM Louisville
20. August
28, WFPL 89.3FM Louisville – (Kentucky) Study finds 2007 eastern
Kentucky fish kill likely caused by natural gas fracking fluid. The U.S.
Fish and Wildlife Services jointly with the U.S. Geological Survey issued a
report that found hydraulic fracturing fluids, spilled from a natural gas well
site near Acorn Fork in 2007, were the cause of the death of fish in an eastern
Kentucky stream. The study reported lesions found on the fish gills were
consistent with exposure to acidic water and toxic concentrations of heavy
metals found in samples from a nearby natural gas well site. Source: http://wfpl.org/post/study-finds-2007-eastern-kentucky-fish-kill-likely-caused-natural-gas-fracking-fluid
• Firefighters reached 23 percent containment
of California’s Rim Fire after it burned over 187,000 acres August 29, with
full containment expected by September 10. – Los Angeles Times
24.
August 29, Los Angeles Times –
(California) Rim fire spreading more slowly; containment expected in 2
weeks. Firefighters reached 23 percent containment of California’s Rim Fire
after it burned over 187,000 acres August 29. Officials expect full containment
by September 10. Source: http://www.latimes.com/local/lanow/la-me-ln-rim-fire-containment-20130828,0,2975657.story
• The domain and hosting service for several
media sites hit by defacement and redirect attacks August 27 confirmed that the
company’s systems were compromised due to successful spearphishing emails. – Softpedia See item 32 below in the Information Technology Sector
Details
Banking and Finance Sector
4. August 28, Associated Press – (New York) Son
of prominent financier enters NY plea, joins 3 siblings in admitting hiding
$12M overseas. A man pleaded guilty in a New York City courtroom to hiding
more than $12 million inherited from his father for the purpose of evading
taxes. Three of his siblings also pleaded guilty to similar tax evasion.
Source: http://www.greenfieldreporter.com/view/story/7ba8b1a61f7c49278b6b9f367e4ceae7/US--Tax-Fraud
For another story,
see item 27 from the Government Facilities Sector below:
27. August 28, Chicago Tribune – (Illinois) Ex-aide
to former Cook County board president convicted of theft, money-laundering. A
former deputy chief of staff for a former Cook County board president was found
guilty August 28 of theft and money-laundering charges after she stole over
$300,000 with a second aide through use of fraudulent contracts and kickbacks
paid in cash-stuffed envelopes. Source: http://articles.chicagotribune.com/2013-08-28/news/chi-exaide-to-todd-stroger-convicted-of-theft-moneylaundering-20130828_1_arrei-management-inc-cgc-communications-attorney-robert-podlasek
Information Technology Sector
32. August
29, Softpedia – (International) Melbourne IT confirms that Syrian Electronic
Army used spear phishing in latest attack. Melbourne IT, the domain
registration and hosting company that was compromised as part of attacks
against several media Web sites, confirmed that the company’s systems were
compromised due to some of its employees falling for spearphishing emails.
Source: http://news.softpedia.com/news/Melbourne-IT-Confirms-that-Syrian-Electronic-Army-Used-Spear-Phishing-in-Latest-Attack-378945.shtml
33. August
28, Threatpost – (International) Kelihos relying on CBL blacklists to evaluate
new bots. Researchers found that the peer-to-peer botnet Kelihos is now
using legitimate, freely available composite blocking list (CBL) services to
determine whether a potential victim’s IP address has been flagged as a spam
source or proxy. Source: http://threatpost.com/kelihos-relying-on-cbl-blacklists-to-evalute-new-bots
34. August
28, Help Net Security – (International) Researchers detail
attacks for compromising Dropbox user accounts. Researchers presenting at
the USENIX Security Symposium published a paper that details how to reverse
engineer frozen Python applications, including the Dropbox client, as well as,
how to intercept Dropbox server SSL traffic bypass the service’s two factor
authentication, and hijack Dropbox accounts. Source: http://www.net-security.org/secworld.php?id=15480
35. August
28, Threatpost – (International) Remote unauthenticated bug haunts Cisco ACS
Server. Cisco warned of a remotely-exploitable vulnerability in several
versions of its Secure Access Control Server (ACS) that can allow an attacker
to take full control of a server if it is configured as a RADIUS server.
Source: http://threatpost.com/remote-unauthenticated-bug-haunts-cisco-acs-server
Communications Sector
Nothing to
report