Wednesday, January 23, 2013


Daily Report

Top Stories

 • A waiter at Tribeca restaurant stole around $126,000 over a 3-month period by skimming customer credit card numbers. – New York Post See item 8 below in the Banking and Finance Sector

 • There were several highway pileups in the Cincinnati and Columbus area that involved dozens of vehicles, hospitalized around 20 people, and killed a child. – Associated Press

10. January 21, Associated Press – (Ohio) Scores of vehicles snared in Ohio highway pileups. Interstate 275 was one of several highway pileups in the Cincinnati area that involved dozens of vehicles, hospitalized around 20 people, and killed a child. Interstate 75 saw a pileup of roughly 50 vehicles while, in the Columbus area, State police shut down lanes of Interstate 71 after a pileup that involved 20 cars and trucks. Source: http://abcnews.go.com/US/wireStory/dozens-vehicles-involved-ohio-pileups-18275260

 • Around $103 million is being reimbursed by the Federal Emergency Management Agency to New York Health and Hospitals Corporation for repairs made after Superstorm Sandy. – LongIsland.com

23. January 21, LongIsland.com – (New York) 100 million in federal funds for NYC hospitals damaged by Sandy. Around $103 million is being reimbursed by the Federal Emergency Management Agency to New York Health and Hospitals Corporation for repairs made after Hurricane Sandy. Source: http://www.longisland.com/news/01-21-13/100-million-in-federal-funds-for-nyc-hospitals-damaged-by-sandy.html

 • A school-campus shooting sent two victims to the hospital and forced the lock down of four Lone Star College campuses and three other public schools. – KTRK 13 Houston

24. January 22, KTRK 13 Houston – (Texas) Two shot at Lone Star College in north Houston. Local police and school officials verified that there was a shooting at a Houston campus that sent two victims to the hospital. Authorities lock downed four Lone Star College campuses and three public schools in the surrounding area. Source: http://abclocal.go.com/ktrk/story?section=news/local&id=8963781

Details

Banking and Finance Sector

6. January 22, Associated Press – (Illinois) FBI: Suspected ‘Ray Bandit’ arrested near Chicago. The man named “Ray Bandit,” who is accused of robbing 17 banks and stealing over $75,000 across 7 States, was arrested the week of January 14. Source: http://www.mercurynews.com/news/ci_22424814/fbi-suspected-ray-bandit-arrested-near-chicago

7. January 18, Associated Press – (National) HSBC to pay $249M to settle foreclosure-abuse case. The U.S. division of HSBC will pay out $249 million as part of a settlement with the Federal Reserve and the Office of the Comptroller of the Currency after the bank wrongly foreclosed on homeowners who should have been allowed to stay. Under the settlement, HSBC will pay $96 million to roughly 112,000 homeowners and the remaining $153 million will be paid towards mortgage relief. Source: http://business.time.com/2013/01/18/hsbc-to-pay-249m-to-settle-foreclosure-abuse-case/

8. January 17, New York Post – (New York) Tribeca waiter busted for swiping credit card info. A waiter at Tribeca restaurant skimmed credit card numbers from roughly 120 customers, stealing $126,000 between February 1, 2012, through April 30, 2012. He also spent close to $90,000 from stolen Chase credit card numbers taken from restaurant customers. Source: http://www.nypost.com/p/news/local/manhattan/tribeca_waiter_busted_for_swiping_htOCnrRiu0p0hanTPsA0cP

Information Technology

30. January 22, Softpedia – (International) PayPal addresses blind SQL injection vulnerability after being notified by experts. About 5 months after being notified by cyber security experts, PayPal has fixed a security flaw on their Web site which was vulnerable to a Blind SQL Injection. Source: http://news.softpedia.com/news/PayPal-Addresses-Blind-SQL-Injection-Vulnerability-After-Being-Notified-by-Experts-323053.shtml

31. January 19, Softpedia – (International) Website of Sony Music Mexico hacked, defaced. The Web site of Sony Music Mexico was penetrated and defaced by an Internet hacker. Source: http://news.softpedia.com/news/Website-of-Sony-Music-Mexico-Hacked-Defaced-322541.shtml

32. January 18, SC Magazine – (International) XSS, password flaws found in popular ESPN app. Researchers found a cross-site scripting coding flaw in the ESPN SportCenter mobile phone application that could leave its users’ information vulnerable to 3rd-party exposure. Source: http://www.scmagazine.com/xss-password-flaws-found-in-popular-espn-app/article/276723/

33. January 18, The H – (International) Silent installs of add-ons still possible in Firefox. Security researchers have learned how to overcome a Firefox Sqlite3 database security feature which blocks unauthorized installations of 3rd-party Firefox add-on applications. Source: http://www.h-online.com/security/news/item/Silent-installs-of-add-ons-still-possible-in-Firefox-1787297.html

34. January 18, The H – (International) Critical security vulnerability at Amazon fixed. The Amazon Web site has fixed a cross-site scripting vulnerability which could have been used to inject malicious JavaScript code which allows 3rd-party access to various elements of a user’s account, including the shopping cart, history, name, and email address associated with the account. Source: http://www.h-online.com/security/news/item/Critical-security-vulnerability-at-Amazon-fixed-1787328.html

Communications Sector

35. January 21, Syracuse Your News Now – (New York) Fire knocks two North Country radio stations off the air. Two North Country radio stations, WYSX 96.7 FM Morristown and WPAC 98.7 FM Ogdensburg, went off the air when lightning struck their tower January 21. Source: http://centralny.ynn.com/content/top_stories/632195/fire-knocks-two-north-country-radio-stations-off-the-air/