Monday, June 17, 2013
Complete DHS Daily Report for June 17, 2013
• At least one person was killed and over 170,000 homes and businesses lost power in Virginia as severe storms swept through the State. – Associated Press
2. June 13, Associated Press – (Virginia) Storm leaves 1 dead, 170K without power in Va. At least one person was killed and over 170,000 homes and businesses lost power in Virginia as severe storms swept through the State June 13. Source: http://www.wvec.com/news/Storm-leaves-1-dead-170K-without-power-in-Va-211475461.html
• A Hicksville, New York man pleaded guilty to his role in a $200 million international credit card fraud scheme. – Newark Star Ledger See item 6 below in the Banking and Finance Sector
• Two individuals were killed during Colorado’s Black Forest wildfire that has burned 15,700 acres, destroyed 360 homes, and caused 32,000 people to evacuate. – Los Angeles Times
25. June 13, Los Angeles Times – (Colorado) Black Forest fire claims two lives, sets Colorado records. Two individuals were killed while apparently trying to flee from their home during Colorado’s Black Forest wildfire that has burned 15,700 acres, destroyed 360 homes, and caused 32,000 people to evacuate. Firefighters reached 5 percent containment June 13. Source: http://www.latimes.com/news/nationworld/nation/la-na-colorado-fires-20130614,0,4924526.story
• A waterfront patio deck at a Miami restaurant gave way, injuring as many as two dozen as approximately 100 people fell 5 feet into the water. – Miami Herald
37. June 14, Miami Herald – (Florida) At least two dozen injured as deck collapses at Shuckers restaurant during Heat game. A waterfront patio deck at Schuckers Waterfront Grill in Miami gave way June 13, injuring as many as two dozen as approximately 100 people fell 5 feet into the water. Source: http://www.miamiherald.com/2013/06/13/3450248/breaking-deck-collapses-at-shuckers.html
Banking and Finance Sector
6. June 13, Newark Star-Ledger – (International) Alleged ‘leader’ in $200M credit card fraud pleads guilty in federal court. A Hicksville, New York man pleaded guilty to his role in an international credit card fraud scheme that allegedly involved at least 22 individuals in several States and Pakistan who colluded to steal $200 million. Source: http://www.nj.com/news/index.ssf/2013/06/one_of_alleged_leaders_of_massive_200_million_credit_card_fraud_pleads_guilty_in_federal_court.html
7. June 13, Threatpost – (International) Zeus money mule recruiting scam targets job seekers. Attackers involved in a Zeus trojan campaign configured their variant of the banking malware to redirect users trying to access CareerBuilder to a fake jobs Web site in an attempt to recruit them as money mules for the fraud operation. Source: https://threatpost.com/zeus-money-mule-recruiting-scam-targets-job-seekers/
Information Technology Sector
29. June 14, Softpedia – (International) RARSTONE RAT used in targeted attacks against Asian organizations. Trend Micro researchers identified a cybercrime campaign dubbed Naikon that uses the RARSTONE remote access trojan (RAT) to take control of targets’ computers. The campaign has been seen targeting media, energy, and government organizations in Asia and spreads through spearphishing. Source: http://news.softpedia.com/news/RARSTONE-RAT-Used-in-Targeted-Attacks-Against-Asian-Organizations-360843.shtml
30. June 14, Softpedia – (International) Flash Player clickjacking flaw allows hackers to hijack your webcam. A researcher discovered a vulnerability in Adobe’s Flash Player that can be exploited to access a user’s webcam and microphone if the user is using the Mac version of Chrome, Linux, Chromium, and possibly other configurations. Source: http://news.softpedia.com/news/Flash-Player-Clickjacking-Flaw-Allows-Hackers-to-Hijack-Your-Webcam-360980.shtml
31. June 14, Softpedia – (International) AnonGhost claims to have hacked Mozilla emails, company responds. Mozilla reported that 50 email addresses were published by hackers associated with the AnonGhost group but that 16-character strings published with them were activation codes for Mozilla blogging software and not passwords as the hackers claimed. Source: http://news.softpedia.com/news/Anon-Ghost-Claims-to-Have-Hacked-Mozilla-Emails-Company-Responds-360887.shtml
32. June 13, Softpedia – (International) Kilim trojan hijacks social media accounts with rogue browser extensions. Microsoft researchers found that the Kilim trojan uses malicious Chrome browser extensions to hijack targets’ social media accounts. Source: http://news.softpedia.com/news/Kilim-Trojan-Hijacks-Social-Media-Accounts-with-Rogue-Browser-Extensions-360678.shtml
33. June 13, Threatpost – (International) iOS 7 beta bug enables lockscreen bypass. An iPhone user published a demonstration of a method to bypass the lockscreen on phones running the beta version of Apple’s iOS 7 mobile operating system. Source: https://threatpost.com/ios-7-beta-bug-enables-lockscreen-bypass/
For another story, see item 7 above in the Banking and Finance Sector
34. June 13, KWWL 7 Iowa City – (Iowa) Land line 911 service disrupted Thursday for Alburnett, Robins. The Enhanced 9-1-1 land line service for the cities of Alburnett and Robins was disrupted for about an hour June 13 as maintenance workers from USA Communications worked on a fiber optic lines. Source: http://www.kwwl.com/story/22586846/2013/06/13/landline-911-service-disrupted-tonight-for-alburnett-robins
35. June 13, WPTZ 5 Plattsburgh – (New York) WPTZ out for NY Charter customers, again. Charter Communications reported a technical issue caused an outage for WPTZ TV 5 viewers that was expected to last 4-5 hours June 13. Source: http://www.wptz.com/news/vermont-new-york/plattsburgh/wptz-out-for-ny-charter-customers-again/-/9277622/20552526/-/nngsjh/-/index.html
Department of Homeland Security (DHS)
DHS Daily Open Source Infrastructure Report Contact Information
About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for ten days on the Department of Homeland Security Web site: http://www.dhs.gov/IPDailyReport
Content and Suggestions: Send mail to firstname.lastname@example.org or contact the DHS Daily Report Team at (703)387-2314
Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow instructions to Get e-mail updates when this information changes.
Removal from Distribution List: Send mail to email@example.com.
To report physical infrastructure incidents or to request information, please contact the National Infrastructure
Coordinating Center at firstname.lastname@example.org or (202) 282-9201.
To report cyber infrastructure incidents or to request information, please contact US-CERT at email@example.com or visit their Web page at www.us-cert.go v.
Department of Homeland Security Disclaimer
The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source material.