Friday, September 6, 2013




Complete DHS Daily Report for September 6, 2013

Daily Report

Top Stories

 • A Union Pacific railroad bridge located near the town of Byers, Colorado, will remain closed for an undetermined amount of time until officials can inspect the damage from an August 4 fire. – KMGH 7 Denver

14. September 4, KMGH 7 Denver – (Colorado) Union Pacific railroad bridge between Denver and Kansas City closed after early morning fire. A fire prompted the closure of a Union Pacific railroad bridge August 4 near the town of Byers for an undetermined amount of time until officials can inspect the damage. The line runs from Denver to Kansas and handles 8 to 10 trains a day. Source: http://www.thedenverchannel.com/news/local-news/union-pacific-railroad-bridge-between-denver-and-kansas-city-closed-after-early-morning-fire

 • Safeway Inc. reached a settlement with the U.S. Environmental Protection Agency September 4 to curb refrigerant leaks at 659 stores and pay a $600,000 fine. – Bloomberg News

17. September 4, Bloomberg News – (National) Safeway agrees to stop leaks of refrigerant chemical. Safeway Inc. reached a settlement to curb harmful refrigerant leaks at 659 of its stores and pay a $600,000 fine to the U.S. Environmental Protection Agency September 4. The company failed to promptly repair leaks of hydrochlorofluorocarbon and will spend $4.1 million to reduce the releases. Source: http://www.bloomberg.com/news/2013-09-04/safeway-agrees-to-stop-leaks-of-refrigerant-chemical.html

 • A total of 13 brain-surgery patients, including 8 from the Catholic Medical Center in Concord, New Hampshire, may have been inadvertently exposed to Creutzfeldt-Jakob Disease, a rare, degenerative disorder, as a result of improperly sterilized surgical equipment. – USA Today

20. September 5, USA Today – (National) 13 patients possibly exposed to fatal brain disease. New Hampshire health officials announced September 4 that 8 brain-surgery patients at Catholic Medical Center in Concord may have been exposed to the rare, degenerative disorder, Creutzfeldt-Jakob Disease through potentially contaminated equipment. Five additional patients in other States may have also been exposed to the disease as a result of improperly sterilized surgical equipment. Source: http://www.usatoday.com/story/news/nation/2013/09/04/new-hampshire-hospital-fatal-brain-disease/2764645/

 • Rockford, Michigan officials issued a boil advisory for residents and closed six schools September 5 after an equipment malfunction resulted in E. coli contamination being found in the city’s water system. – MLive.com

23. September 4, MLive.com – (Michigan) 3,000 Rockford students staying home Thursday because of E. coli detected in city water system. Officials closed 6 schools in Rockford September 5 after E. coli contamination was found in the city’s water system. A boil advisory was issued for residents after an equipment malfunction resulted in lower levels of chlorine residuals in the water system and tests showed coliform bacteria was present in the water. Source: http://www.mlive.com/news/grand-rapids/index.ssf/2013/09/3000_rockford_students_staying.html

Details

Banking and Finance Sector

5. September 5, Dark Reading – (International) New, advanced banking trojan discovered in the wild. Researchers at ESET identified a new banking trojan with advanced features called Win32/Spy.Hesperbot targeting users in Turkey, the U.K., and the Czech Republic via phishing emails. The trojan can log keystrokes, set up a remote proxy, create a hidden virtual network computing (VNC) server, and attempts to get users to install a mobile component of the malware on their mobile devices. Source: http://www.darkreading.com/end-user/new-advanced-banking-trojan-discovered-i/240160826

6. September 4, Marine Independent Journal – (California) San Rafael credit union robbed by bandit in earflaps as crime streak continues. A man linked to at least five other bank robberies in Marin robbed a Redwood Credit Union branch in San Rafael September 4. Source: http://www.marinij.com/crimebeat/ci_24015540/san-rafael-credit-union-robbed-by-bandit-earflaps

Information Technology Sector

27. September 4, Threatpost – (International) Public exploit available for patched Safari bug. Packet Storm released a proof-of-concept exploit for a patched Safari heap buffer overflow vulnerability. The vulnerability was patched in November 2012 and affects users who have not yet updated to newer versions of OS X and iOS. Source: http://threatpost.com/public-exploit-available-for-patched-safari-bug

28. September 4, IDG News Service – (International) FTC: Negligence by security camera vendor harms customers’ privacy. TRENDnet settled U.S. Federal Trade Commission charges that were brought due to lax security practices in software for its security cameras that allowed the cameras’ feeds to be remotely posted and watched by unauthorized users. Source: http://www.networkworld.com/news/2013/090413-ftc-negligence-by-security-camera-273485.html

For another story, see item 5 above in the Banking and Finance Sector

Communications Sector

Nothing to report

Thursday, September 5, 2013 published on Friday, September 6, 2013 @ 11AM



  
Complete DHS Daily Report for September 5, 2013

Daily Report

Top Stories

 • Over 1,200 passengers Amtrak trains traveling between Wilmington, Delaware, and Perryville, Maryland, were delayed or forced to transfer trains September 2 after thunderstorms damaged the railroad's signaling system. – Baltimore Sun

15. September 3, Baltimore Sun – (Delaware; Maryland) Amtrak service disrupted, riders trapped after storm damage. Over 1,200 passengers on five different Amtrak trains traveling between Wilmington, Delaware, and Perryville, Maryland, were delayed for hours or forced to transfer trains September 2 after a line of thunderstorms damaged the railroad's signaling system. Source: http://www.baltimoresun.com/news/maryland/bs-md-amtrak-delays-20130903,0,4662353.story

 • Authorities are investigating an incident at Spring High School near Houston after one student was killed and three others were reportedly injured in a stabbing September 4. – KPRC 2 Houston

20. September 4, KPRC 2 Houston – (Texas) 1 killed, 3 injured in stabbing at Houston-area high school. One student was killed and three others were reportedly injured in a stabbing at Spring High School near Houston September 4. Authorities are investigating the incident. Source: http://www.nbcdfw.com/news/local/Multiple-People-Stabbed-at-Houston-Area-High-School-222335781.html

 • Firefighters continued to battle the 235,841-acre Rim Fire burning in and around Yosemite National Park in California as they reached 80 percent containment September 4. – Los Angeles Times

24. September 4, Los Angeles Times – (California) Rim fire: Containment of Yosemite-area blaze at 80%. Firefighters continued to battle the 235,841-acre Rim Fire burning in and around Yosemite National Park as they reached 80 percent containment September 4. Source: http://www.latimes.com/local/lanow/la-me-ln-rim-fire-yosemite-containment-80-20130904,0,5841792.story

 • Officials designated the former Fillipo Dry Cleaners site in Rutland, Vermont, as an environmental emergency and committed a $1.2 million budget to prevent the further spread of toxic chemicals from the site. – Vermont Digger

34. September 2, Vermont Digger– (Vermont) State paying $1.2 million for cleanup of Rutland dry-cleaner contamination. Vermont officials designated the former Fillipo Dry Cleaners site in Rutland as an environmental emergency and committed a $1.2 million budget to prevent the further spread of toxic chemicals from the site toward a residential neighborhood. The cleanup includes removal of contaminated soil and water from the site. Source: http://vtdigger.org/2013/09/02/state-paying-1-2-million-for-cleanup-of-rutland-dry-cleaner-contamination/

Details

Banking and Finance Sector

5. September 4, The Register – (International) Citadel botnet resurges to storm Japanese PCs. Trend Micro reported that the Citadel botnet has returned to service and been spotted in a campaign targeting online banking credentials at Japanese financial institutions as well as email services such as Gmail, Yahoo Mail, and Hotmail. Source: http://www.theregister.co.uk/2013/09/04/citadel_wreaks_havoc_in_japan/

6. September 3, Fort Meyers News-Press – (Florida) Two Lehigh Acres men arrested in credit card scam. Two men from Lehigh Acres were arrested after making several purchases in the Sarasota area using fraudulent credit cards. Police found 120 counterfeit cards and 29 victims’ personal information in their possession. Source: http://www.news-press.com/article/20130903/CRIME/130903015/Two-Lehigh-acres-men-arrested-credit-card-scam

Information Technology Sector

29. September 3, Threatpost – (International) Cisco warned users of four vulnerabilities. Cisco published four moderate-severity security notices, warning customers of issues in its IOS XR carrier routing software, unified computing system, Adaptive Security Appliance software, and the Web administrator interface for its wireless LAN controllers. Source: http://threatpost.com/cisco-warns-users-of-four-vulnerabilities

30. September 3, Threatpost – (International) Njworm: A RAT with legs and a thirst for no-IP credentials. Researchers discovered a variant of the njRAT remote access trojan (RAT) named njw0rm that contains the same capabilities but also seeks to copy itself to removable storage devices and spread to other systems. The RAT can collect various information from victims’ systems and also looks for passwords in Chrome, XML files, and the No-IP dynamic DNS service. Source: http://threatpost.com/njw0rm-a-rat-with-legs-and-a-thirst-for-no-ip-credentials

For another story, see item 5 above in the Banking and Finance Sector

Communications Sector

Nothing to report