Tuesday, April 23, 2013
Complete DHS Daily Report for April 23, 2013
• Authorities continued to search for a suspect who exchanged gunfire with a security officer at the perimeter of the Watts Bar Nuclear Power Plant. – Knoxville News Sentinel
3. April 22, Knoxville News Sentinel – (Tennessee) Search still on for gunman after shootout near Watts Bar plant. Authorities continued to search April 22 for a suspect who exchanged gunfire with a security officer at the perimeter of the Watts Bar Nuclear Power Plant near Spring City the night of April 21. Source: http://www.knoxnews.com/news/2013/apr/22/search-still-on-for-gunman-after-shootout-near/
• Torrential rains impacted six Midwestern States with high water levels, forced evacuations, closed roads and bridges, swamped hundreds of thousands of acres of farmland, closed a manufacturing plant, and shut down barge traffic on much of the upper Mississippi River. – Associated Press
10. April 21, Associated Press – (National) Midwestern rivers reach dangerously high levels; communities evacuated due to rising waters. Torrential rains the week of April 15, which dumped up to 7 inches of rain in some locations, affected six Midwestern States with high water levels, forced evacuations, closed roads and bridges, swamped hundreds of thousands of acres of farmland, closed a manufacturing plant, and shut down barge traffic on much of the upper Mississippi River. Source: http://www.10news.com/news/u-s-world/midwestern-rivers-reach-dangerously-high-levels-communities-evacuated-due-to-rising-waters-04212013
• The surviving Boston Marathon bombing suspect was accused of using and conspiring to use a weapon of mass destruction resulting in deaths after being captured April 19. – Bloomberg News
34. April 22, Bloomberg News – (Boston) Marathon suspect faces weapon of mass destruction charges. The surviving Boston Marathon bombing suspect was accused of using and conspiring to use a weapon of mass destruction resulting in deaths after being captured and hospitalized from injuries sustained during a gunfight and a 4 day manhunt. Source: http://www.businessweek.com/news/2013-04-22/boston-marathon-bomb-suspect-charged-by-u-dot-s-dot-in-terror-attack
• The Illinois governor declared more than 38 counties State disaster areas, easing the process for relief aid to those affected by the near-record levels of rainfall. – Chicago Tribune
43. April 19, Chicago Tribune – (Illinois) Residents rescued as rivers rise and levees break. The Illinois governor declared more than 38 counties State disaster areas, easing the process for relief aid to those affected by the near-record levels of rainfall that threatens levee breaches. Areas saw up to 4 feet of standing water, prompting road detours and closures, and requiring some residents to be rescued by boat. Source: http://www.chicagotribune.com/news/local/breaking/chi-flooding-april-19-20130419,0,6669807,full.story
Banking and Finance Sector
6. April 22, Help Net Security – (International) World’s largest bitcoin exchange under DDoS attack. Mt. Gox, the largest exchange service for virtual currency Bitcoin, was downed by a distributed denial of service (DDoS) attack April 22, the latest in a series of recent DDoS attacks against the site. Source: http://www.net-security.org/secworld.php?id=14787
7. April 19, KPTV 12 Portland – (Oregon) Police arrest ‘Hammer Pants Bandit’ for 3 bank robberies. A suspect known as the “Hammer Pants Bandit” was arrested by Portland police and accused of robbing three bank branches since October 2012. Source: http://www.kptv.com/story/22025566/police-arrest-hammer-pants-bandit-for-3-bank-robberies
Information Technology Sector
30. April 22, Softpedia – (International) Researchers identify Reflection API vulnerability in Java 7 Update 21. Researchers at Security Explorations identified a new Reflection API vulnerability in all variants of Java 7, including the newest Update 21, which can be used to achieve a security sandbox bypass. Source: http://news.softpedia.com/news/Researchers-Identify-Redirection-API-Vulnerability-in-Java-7-Update-21-347204.shtml
31. April 22, Softpedia – (International) TorRAT malware launches MitB attack to hijack Twitter accounts. A variant of the banking credential malware TorRAT has been found in the wild that steals authentication tokens to hijack users’ Twitter accounts and then send out tweets with malicious links. Source: http://news.softpedia.com/news/TorRAT-Malware-Launches-MitB-Attack-to-Hijack-Twitter-Accounts-347310.shtml
32. April 22, Help Net Security – (International) 108,000+ account details of Sims players leaked. The NewSeaSims resource for players of The Sims suffered a leak of user information affecting around 108,000 users. Source: http://www.net-security.org/secworld.php?id=14788
33. April 19, EuroGamer.net – (International) World of Tanks security breach exposes email addresses and password hashes, but financial information remains safe. Wargaming.net, the owners of World of Tanks, reported a security breach where users information may have been compromised. Financial information was not affected, and Wargaming.net advised users to change their passwords. Source: http://www.eurogamer.net/articles/2013-04-19-world-of-tanks-security-breach-exposes-email-addresses-and-password-hashes-but-financial-information-remains-safe
Nothing to report
Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information
About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport
Content and Suggestions: Send mail to email@example.com or contact the DHS Daily Report Team at (703)387-2314
Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.
Removal from Distribution List: Send mail to firstname.lastname@example.org.
To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at email@example.com or (202) 282-9201.
To report cyber infrastructure incidents or to request information, please contact US-CERT at firstname.lastname@example.org or visit their Web page at www.us-cert.go v.
Department of Homeland Security Disclaimer
The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.