Thursday, January 30, 2014


Complete DHS Report for January 30, 2014

Daily Report

 • A Russian man extradited overseas pleaded guilty in an Atlanta court to developing, selling, and customizing the SpyEye banking trojan that infected more than 1.4 million computers in order to steal millions of dollars. – Wired.com See item 2 below in the Financial Services Sector

 • Bainbridge Island, Washington officials estimated that 145,000 gallons of raw sewage spilled into Eagle Harbor January 23 due to a sewer pipe break. – Bainbridge Island Review

10. January 28, Bainbridge Island Review – (Washington) Broken sewer pipe spills 145K gallons of raw sewage into Eagle Harbor. Bainbridge Island officials estimated that 145,000 gallons of raw sewage spilled into Eagle Harbor January 23 due to a sewer pipe break. Crews stopped flow through the pipeline and set up a temporary bypass. Source: http://www.bainbridgereview.com/news/242459141.html

 • Healthcare providers are asking hospitals, dialysis centers, and doctors to use smaller IV bags of intravenous saline and find alternatives to cope with a nationwide shortage. – Washington Post

14. January 28, Washington Post – (National) Shortage of saline causes hospitals, dialysis centers to scramble to manage supply. Healthcare providers are asking hospitals, dialysis centers, and doctors to use smaller IV bags of intravenous saline and find alternatives to cope with a nationwide shortage. The U.S. Food and Drug Administration is working with three manufacturers of intravenous saline solutions to address the shortage, and is looking into alternative sources. Source: http://www.washingtonpost.com/national/health-science/shortage-of-saline-causing-hospitals-dialsysis-centers-to-scramble-to-manage-supply/2014/01/28/9cfe2b8c-8862-11e3-833c-33098f9e5267_story.html

 • Southern U.S. States were hit by a severe winter storm January 28 that prompted the closure of dozens of schools, students remaining sheltered overnight in schools, hours-long traffic gridlock, and the cancellation of more than 3,200 flights nationwide. – Associated Press 

20. January 29, Associated Press – (National) Winter storm socks the Deep South with snow, ice; students stranded in Alabama schools. Southern U.S. States were hit by a severe winter storm January 28 that dropped snow and ice, prompting the closure of dozens of schools and the cancellation of more than 3,200 flights nationwide. Students in several schools were forced to remain sheltered overnight while traffic was gridlocked for hours, causing hundreds of cars to slide off the road or into each other. Source: http://abclocal.go.com/ktrk/story?section=news/national_world&id=9411313

Details

Financial Services Sector

2. January 28, Wired.com – (International) Coder behind notorious bank-hacking tool pleads guilty. A Russian man extradited from the Dominican Republic pleaded guilty in an Atlanta court to developing, selling, and customizing the SpyEye banking trojan that infected more than 1.4 million computers. The trojan was sold to over 150 customers worldwide who used it to compromise thousands of bank accounts and steal millions of dollars. Source: http://www.wired.com/threatlevel/2014/01/spy-eye-author-guilty-plea/

 3. January 28, USA Today – (National) BBB warns of scam charging $9.84 to credit cards. The Better Business Bureau warned consumers of a payment card fraud scheme that has been making $9.84 charges to consumers’ cards in the name of a generic customer support Web site. Source: http://www.clarionledger.com/article/20140128/BIZ/140128016/BBB-warns-scam-charging-9-84-credit-cards 4. January 28, Los Angeles Times – (California) ‘Ho-hum bandit’ pleads guilty to seven more bank robberies. A man known as the “Ho-Hum Bandit” pleaded guilty January 28 to robbing seven banks in the San Diego area from February to June 2010. The man had previously been convicted of four bank robberies in Denver, Colorado, and Cheyenne, Wyoming. Source: http://www.latimes.com/local/lanow/la-me-ln--ho-hum-20140128,0,268882.story

For another story, see item 26 below in the Information Technology Sector

Information Technology Sector

23. January 29, Help Net Security – (International) VPN bypass attack possible also on Android KitKat. Security researchers at Ben Gurion University found that a previously-reported VPN bypass vulnerability in Android 4.3 was also able to be modified and used on devices running Android 4.4 ‘KitKat.’ Source: http://www.net-security.org/secworld.php?id=16277

24. January 29, Softpedia – (International) Rovio confirms hackers defaced Angry Birds website, no user data compromised. Rovio confirmed that hacktivists briefly defaced the Web site of the Angry Birds game via DNS hijacking but did not compromise any user data. Source: http://news.softpedia.com/news/Rovio-Confirms-Hackers-Defaced-Angry-Birds-Website-No-User-Data-Compromised-421857.shtml

25. January 28, Softpedia – (International) Java bot can launch DDoS attacks from Windows, Mac and Linux machines. Researchers at Kaspersky identified a malicious Java application designed to perform distributed denial of service (DDoS) attacks that can run on Windows, Linux, and Mac OS computers dubbed HEUR:Backdoor.Java.Agent.a. The malware is believed to have been used to attack a bulk email service. Source: http://news.softpedia.com/news/Java-Bot-Can-Launch-DDOS-Attacks-from-Windows-Mac-and-Linux-Machines-421551.shtml

26. January 28, Softpedia – (International) Patnote virus used to distribute ZeuS trojan. Trend Micro researchers discovered a malware distribution campaign using the Patnote virus to spread the ZeuS malware. The virus adds its code to all executable files in a system and on removable and network drives, and contains mechanisms to prevent it from being analyzed. Source: http://news.softpedia.com/news/Patnote-Virus-Used-to-Distribute-ZeuS-Trojan-421468.shtml

For another story, see item 2 above in the Financial Services Sector

Communications Sector

Nothing to report