Thursday, May 23, 2013   

Complete DHS Daily Report for May 23, 2013

Daily Report

Top Stories

 • Large turbine blades fell in separate events in southern California and Iowa, prompting operators to slow operations at hundreds of wind farms worldwide that are equipped with turbines mounting Siemens B53 blades. – Associated Press; U-T San Diego

2. May 21, Associated Press; U-T San Diego – (International) Huge wind turbine blade falls in So. Cal. Large turbine blades fell in separate events in southern California and Iowa, prompting operators to slow operations at hundreds of wind farms worldwide that are equipped with turbines mounting Siemens B53 blades. The estimated 700 turbines will likely continue operations at slower speeds, while the Ocotillo, California unit was completely shut down. Source: http://www.kusi.com/story/22307994/huge-wind-turbine-blade-falls-in-so-cal

 • A New York City grocery wholesaler pleaded guilty to running an $82 million check kiting scheme. – New York Times See item 6 below in the Banking and Finance Sector

 • A New York Police Department (NYPD) detective was charged with allegedly hiring an email hacking service to purchase access to at least 43 personal email accounts and one cellular phone belonging to more than 30 different people, including 21 associated with the NYPD. – Help Net Security

32. May 21, Associated Press – (Virginia) FBI: Agents fell to deaths during training. The FBI announced the two agents who died while training along the Virginia coastline fell from a helicopter that had trouble during a maritime training exercise. Authorities are still investigating but believe the agents fell while in the process of fast-roping from a helicopter onto a ship and sustained severe injuries. Source: http://www.officer.com/news/10946547/fbi-agents-fell-to-deaths-during-training

 • Residents of Cavalier, North Dakota, were placed under mandatory evacuation as rain and runoff threatened the capacity of the Renwick Dam, with authorities expecting a breach. – WDAZ 8 Grand Forks

42. May 21, WDAZ 8 Grand Forks – (North Dakota) Mandatory evacuation order issued as Cavalier, ND prepares for Renwick Dam failure. Residents of Cavalier, North Dakota, were placed under mandatory evacuation May 21 as falling rain and runoff threaten the capacity of the Renwick Dam. Makeshift levees were built to prevent spillover from the dam, however officials expected a breach within 12 hours. Source: http://www.wdaz.com/event/article/id/17983/

Details

Banking and Finance Sector

6. May 21, New York Times – (New York) Staten Island wholesale king pleads guilty to bank fraud. A New York City grocery wholesaler pleaded guilty to running an $82 million check kiting scheme. Source: http://www.nytimes.com/2013/05/22/nyregion/saquib-khan-staten-island-wholesaler-pleads-guilty-to-bank-fraud.html

7. May 21, Louisville Courier-Journal – (National) Cattle brokerage officials sentenced in fraud. The former owner and chief operating officer of Eastern Livestock Co. were both sentenced for running a check kiting scheme that induced a bank to provide them to release funds from a $32 million line of credit. The fraud processed cattle sales in 11 States before it collapsed in 2010. Source: http://www.courier-journal.com/article/20130521/NEWS01/305210094/Cattle-brokerage-officials-sentenced-fraud

8. May 21, Threatpost – (International) New Citadel malware strain targeting Payza service. Researchers at Trusteer discovered a new variant of the Citadel banking malware targeting users of the Payza money transfer service. The malware uses a man-in-the-browser technique to obtain users’ login information and PIN. Source: http://threatpost.com/new-citadel-malware-strain-targeting-payza-service/

Information Technology Sector

33. May 22, V3.co.uk – (International) Apache Darkleech PDF and JavaScript attacks infect hundreds more websites. Researchers at Zscaler discovered a marked increase in the number of Web sites being infected by Darkleech (a.k.a. Linux Cdorked) JavaScript attacks. The exploit injects malicious redirections that lead to a page hosting the Blackhole exploit kit. Source: http://www.v3.co.uk/v3-uk/news/2269775/apache-darkleech-pdf-and-javascript-attacks-infect-hundreds-more-websites

34. May 22, V3.co.uk – (International) Apple OS X Oslo malware linked to sophisticated ‘Operation Hangover’ gang in India. Researchers at security firm Norman discovered a large malware and cyber-espionage campaign involving OS X malware recently uncovered at a conference in Norway. The campaign appears related to a non-state group in India. Source: http://www.v3.co.uk/v3-uk/news/2269659/researchers-connect-oslo-os-x-malware-to-india-hangover-gang

35. May 21, IDG News Service – (International) Researchers find critical vulnerabilities in popular game engines. Researchers at ReVuln found memory corruption and buffer-overflow issues in four computer game engines that could allow attackers to launch remote code execution or denial of service attacks against clients and servers. Source: http://www.networkworld.com/news/2013/052113-researchers-find-critical-vulnerabilities-in-270012.html

36. May 21, Threatpost – (International) IE 8 zero day pops up in targeted attacks against Korean military sites. A malware campaign targeting South Korean military and political Web sites dubbed the Sunshop Campaign was found to be using two Java exploits and the same Internet Explorer (IE) 8 exploit used recently against the U.S. Department of Labor. Source: http://threatpost.com/ie-8-zero-day-pops-up-in-targeted-attacks-against-korean-military-sites/

37. May 21, Threatpost – (International) Google fixes more than a dozen flaws in Chrome 27. Google released the newest version of its Chrome browser, addressing 16 vulnerabilities ranging in severity. Source: http://threatpost.com/google-fixes-more-than-a-dozen-flaws-in-chrome-27/

Communications Sector

40. May 21, St. Louis Post Dispatch – (Illinois; Missouri) Tornado destroys part of Mount Olive business district. Hail, high winds, and an EF 2 tornado destroyed four commercial buildings in Mount Olive, Illinois, and caused damage to several other commercial, residential, and communications structures in the town and in Hannibal, Missouri. Source: http://www.firehouse.com/news/10946512/winds-destroy-ill-fire-department-storage-building-businesses



Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport

Contact Information

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS Daily Report Team at (703)387-2314

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.

Removal from Distribution List:     Send mail to support@govdelivery.com.


Contact DHS

To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at  nicc@dhs.gov or (202) 282-9201.

To report cyber infrastructure incidents or to request information, please contact US-CERT at  soc@us-cert.gov or visit their Web page at  www.us-cert.go v.

Department of Homeland Security Disclaimer

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.