Friday, August 30, 2013



  
Complete DHS Daily Report for August 30, 2013

Daily Report

Top Stories

 • Officials closed the Bay Bridge that connects San Francisco and Oakland, California, August 27 until September 3 so that workers can complete a new eastern span. – CNN

9. August 28, CNN – (California) California’s Bay Bridge closure starting. Officials closed the Bay Bridge that connects San Francisco and Oakland for August 27 so that workers can complete a new eastern span. The bridge is scheduled to reopen September 3. Source: http://www.cnn.com/2013/08/28/us/california-bay-bridge-closure/index.html

 • The U.S. Fish and Wildlife Services and U.S. Geological Survey issued a report that found hydraulic fracturing fluids that spilled from a natural gas well site near Acorn Fork, Kentucky, in 2007 were the cause of a fishkill in a nearby stream. – WFPL 89.3FM Louisville

20. August 28, WFPL 89.3FM Louisville – (Kentucky) Study finds 2007 eastern Kentucky fish kill likely caused by natural gas fracking fluid. The U.S. Fish and Wildlife Services jointly with the U.S. Geological Survey issued a report that found hydraulic fracturing fluids, spilled from a natural gas well site near Acorn Fork in 2007, were the cause of the death of fish in an eastern Kentucky stream. The study reported lesions found on the fish gills were consistent with exposure to acidic water and toxic concentrations of heavy metals found in samples from a nearby natural gas well site. Source: http://wfpl.org/post/study-finds-2007-eastern-kentucky-fish-kill-likely-caused-natural-gas-fracking-fluid

 • Firefighters reached 23 percent containment of California’s Rim Fire after it burned over 187,000 acres August 29, with full containment expected by September 10. – Los Angeles Times

24. August 29, Los Angeles Times – (California) Rim fire spreading more slowly; containment expected in 2 weeks. Firefighters reached 23 percent containment of California’s Rim Fire after it burned over 187,000 acres August 29. Officials expect full containment by September 10. Source: http://www.latimes.com/local/lanow/la-me-ln-rim-fire-containment-20130828,0,2975657.story

 • The domain and hosting service for several media sites hit by defacement and redirect attacks August 27 confirmed that the company’s systems were compromised due to successful spearphishing emails. – Softpedia See item 32 below in the Information Technology Sector

Details

Banking and Finance Sector

4. August 28, Associated Press – (New York) Son of prominent financier enters NY plea, joins 3 siblings in admitting hiding $12M overseas. A man pleaded guilty in a New York City courtroom to hiding more than $12 million inherited from his father for the purpose of evading taxes. Three of his siblings also pleaded guilty to similar tax evasion. Source: http://www.greenfieldreporter.com/view/story/7ba8b1a61f7c49278b6b9f367e4ceae7/US--Tax-Fraud

For another story, see item 27 from the Government Facilities Sector below:

27. August 28, Chicago Tribune – (Illinois) Ex-aide to former Cook County board president convicted of theft, money-laundering. A former deputy chief of staff for a former Cook County board president was found guilty August 28 of theft and money-laundering charges after she stole over $300,000 with a second aide through use of fraudulent contracts and kickbacks paid in cash-stuffed envelopes. Source: http://articles.chicagotribune.com/2013-08-28/news/chi-exaide-to-todd-stroger-convicted-of-theft-moneylaundering-20130828_1_arrei-management-inc-cgc-communications-attorney-robert-podlasek

Information Technology Sector

32. August 29, Softpedia – (International) Melbourne IT confirms that Syrian Electronic Army used spear phishing in latest attack. Melbourne IT, the domain registration and hosting company that was compromised as part of attacks against several media Web sites, confirmed that the company’s systems were compromised due to some of its employees falling for spearphishing emails. Source: http://news.softpedia.com/news/Melbourne-IT-Confirms-that-Syrian-Electronic-Army-Used-Spear-Phishing-in-Latest-Attack-378945.shtml

33. August 28, Threatpost – (International) Kelihos relying on CBL blacklists to evaluate new bots. Researchers found that the peer-to-peer botnet Kelihos is now using legitimate, freely available composite blocking list (CBL) services to determine whether a potential victim’s IP address has been flagged as a spam source or proxy. Source: http://threatpost.com/kelihos-relying-on-cbl-blacklists-to-evalute-new-bots

34. August 28, Help Net Security – (International) Researchers detail attacks for compromising Dropbox user accounts. Researchers presenting at the USENIX Security Symposium published a paper that details how to reverse engineer frozen Python applications, including the Dropbox client, as well as, how to intercept Dropbox server SSL traffic bypass the service’s two factor authentication, and hijack Dropbox accounts. Source: http://www.net-security.org/secworld.php?id=15480

35. August 28, Threatpost – (International) Remote unauthenticated bug haunts Cisco ACS Server. Cisco warned of a remotely-exploitable vulnerability in several versions of its Secure Access Control Server (ACS) that can allow an attacker to take full control of a server if it is configured as a RADIUS server. Source: http://threatpost.com/remote-unauthenticated-bug-haunts-cisco-acs-server

Communications Sector

Nothing to report