Tuesday, February 19, 2013
Complete DHS Daily Report for February 19, 2013
• The Michigan Department of Transportation found that around 20 percent of streetlights along freeways in four counties were dark due to copper theft, aging infrastructure, and a lack of replacement funds. – Detroit News
5. February 15, Detroit News – (Michigan) MDOT: Thieves rob metro freeway of light. The Michigan Department of Transportation found that around 20 percent of streetlights along freeways in Oakland, Wayne, Macomb, and St. Clair counties were dark due to copper theft, aging infrastructure, and a lack of replacement funds. Source: http://www.detroitnews.com/article/20130215/METRO05/302150344/MDOT-Thieves-rob-Metro-freeways-light?odyssey=tab%7Ctopnews%7Ctext%7CFRONTPAGE
• The U.S. Department of Transportation announced it will send investigators to inspect and shut down bus companies found to be unsafe and in violation of regulations following recent bus accidents. – Bloomberg News
6. February 14, Bloomberg News – (National) U.S. pledges another unsafe-bus crackdown after crashes. The U.S. Department of Transportation announced it will send investigators to inspect and shut down bus companies found to be unsafe and in violation of regulations following recent bus accidents. Source: http://www.bloomberg.com/news/2013-02-14/u-s-pledges-another-unsafe-bus-crackdown-after-crashes.html
• The Federal Communications Commission and the Virginia State Corporation Commission blamed Verizon and the condition of equipment in their Virginia offices for the inability of roughly 2 million people to reach emergency services after a June 2012 storm. – WBBT 12 Richmond See item 31 below in the Communications Sector
• Six small fires within 2 days at a housing complex under construction at Temple University brought an investigation from the Bureau of Alcohol, Tobacco, Firearms, and Explosives. – Associated Press
35. February 13, Associated Press – (Pennsylvania) Officials probe fires at Temple University building. A series of small fires at a $216 million dollar housing complex under construction at Temple University brought an investigation from the Bureau of Alcohol, Tobacco, Firearms, and Explosives. Officials reported that 6 small fires over the past 2 days resulted in about $100,000 in damages. Source: http://www.abc27.com/story/21143002/officials-probe-fires-at-temple-u-building
Banking and Finance Sector
4. February 14, Modesto Bee – (California) Sonora, Modesto police crack credit card fraud. Police in Sonoma identified two individuals accused of running a credit card fraud operation, and seized equipment, receipts, and skimming devices from their residence. Source: http://www.modbee.com/2013/02/14/2579480/sonora-modesto-police-crack-credit.html
Information Technology Sector
26. February 15, Softpedia – (International) RIM fixes remote code execution flaws in BlackBerry Enterprise Server components. Research in Motion (RIM) released BlackBerry Enterprise Server 5.0.4 MR2 to address vulnerabilities that could be exploited to run arbitrary code. Source: http://news.softpedia.com/news/BlackBerry-Fixes-Remote-Code-Execution-Flaws-in-Enterprise-Server-Components-329891.shtml
27. February 15, Help Net Security – (International) iOS flaw used to bypass iPhone’s lockscreen. A way to bypass the lockscreen on iPhones running iOS 6.x was discovered which allows a person to access the device and its services. Source: http://www.net-security.org/secworld.php?id=14425
28. February 15, eWeek – (International) Apple working on Exchange-crippling iOS 6.1 bug. Apple reported that it is working to fix a problem with its iOS 6.1 mobile operating system that causes Exchange 2010 servers that iOS devices connect to to experience a spike in CPU and RAM usage. Source: http://www.eweek.com/security/apple-working-on-exchange-crippling-ios-6.1-bug/
29. February 14, Softpedia – (International) Two DOM-based XSS vulnerabilities addressed by Booking.com. Booking.com corrected two cross-site scripting (XSS) vulnerabilities on their Web site spotted by a researcher. Source: http://news.softpedia.com/news/Two-DOM-Based-XSS-Vulnerabilities-Addressed-by-Booking-com-329435.shtml
30. February 14, The Register – (International) Spammers unleash DIY phone number slurping web tool. A new phone number harvesting tool was seen being offered for sale openly online, which allows the harvesting of users’ phone numbers to be used in SMS spam campaigns or other fraud. Source: http://www.theregister.co.uk/2013/02/14/phone_harvesting_service_creates_spam_menace/
31. February 15, WWBT 12 Richmond – (Virginia) 12 Investigates: 911 failure during storms. The Federal Communications Commission and the Virginia State Corporation Commission blamed Verizon and the condition of equipment in their Virginia offices for the inability of roughly 2 million people to reach emergency services after a June 2012 storm. Source: http://www.nbc12.com/story/21202544/12-investigates-cell-phone-failure-during-storms
Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information
About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport
Content and Suggestions: Send mail to email@example.com or contact the DHS Daily Report Team at (703)387-2314
Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.
Removal from Distribution List: Send mail to firstname.lastname@example.org.
To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at email@example.com or (202) 282-9201.
To report cyber infrastructure incidents or to request information, please contact US-CERT at firstname.lastname@example.org or visit their Web page at www.us-cert.go v.
Department of Homeland Security Disclaimer
The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.