Wednesday, April 9, 2014




Complete DHS Report for April 9, 2014

Daily Report

Details

 • A 16-inch water main that broke April 6 and spilled over 5 million gallons of water in Petersburg, Virginia, and caused low-water pressure for some residents who were placed under a 24-hour boil advisory through April 9. – Petersburg Progress-Index

12. April 8, Petersburg Progress-Index – (Virginia) City loses 5 million gallons of water; boil advisory continues. A 16-inch water main that broke April 6 and spilled over 5 million gallons of water in Petersburg, Virginia, caused flooding that blocked part of South Crater Road for several hours and caused low-water pressure for some residents. Affected residents were placed under a 24-hour boil advisory through April 9 due to a risk of water contamination while free bottled water was also made available. Source: http://progress-index.com/news/city-loses-5-million-gallons-of-water-boil-advisory-continues-1.1664274

 • Authorities are investigating a fire at a Missouri State Highway Patrol maintenance building in Jefferson City that caused about 10 patrol vehicles to be total losses with total damage ranging from $4 million to $5 million. – KRCG 13 Jefferson City

17. April 8, KRCG 13 Jefferson City – (Missouri) Crews battle two-alarm fire at highway patrol facility. The Missouri Fire Marshall is investigating a fire at the Missouri State Highway Patrol Troop F maintenance building in Jefferson City that caused about 10 patrol vehicles to be total losses, with total damage ranging from $4 million to $5 million. Source: http://www.connectmidmissouri.com/news/story.aspx?id=1028511

 • Microsoft ended support April 8 for its Windows XP operating system, leaving the widely-used operating system vulnerable to any vulnerabilities identified in the future. – CNNMoney See item 19 below in the Information Technology Sector

 • A new version of OpenSSL was released after security researchers identified and reported a vulnerability that exposes all data transmissions, encryption keys, usernames, passwords, and other content via a memory leak known as Heartbleed. – Softpedia See item 20 below in the Information Technology Sector

Financial Services Sector

4. April 8, KMGH 7 Denver – (Colorado) ‘Good Grammar Bandit’ suspected in 4 robberies over 5 days in north metro area. The FBI is looking for a suspect known as the “Good Grammar Bandit” wanted in connection with four bank robberies in the Denver metro area between April 2 and April 7. Source: http://www.thedenverchannel.com/news/local-news/good-grammar-bandit-suspected-in-4-robberies-over-5-days-in-north-metro-area04072014

5. April 7, WNEW 99.1 FM Bowie – (Washington, D.C.) Taxi cab crashes into building in northwest D.C. A taxi cab crashed into the front of the Inter-American Development Bank in Washington D.C. April 7, injuring two people and closing the street while authorities investigated. Source: http://washington.cbslocal.com/2014/04/07/taxi-cab-crashes-into-building-in-northwest-d-c/

For another story, see item 19 below in the Information Technology Sector

Information Technology Sector

19. April 8, CNNMoney – (International) Microsoft drops Windows XP support. Microsoft ended support April 8 for its Windows XP operating system, leaving the widely-used operating system vulnerable to any vulnerabilities identified in the future. The operating system is still used on a significant portion of systems, including personal computers, ATMs, medical systems, industrial control systems, and other critical infrastructure systems. Source: http://money.cnn.com/2014/04/08/technology/security/windows-xp/

20. April 8, Softpedia – (International) OpenSSL 1.0.1g released to prevent hackers from eavesdropping on communications. A new version of OpenSSL was released after security researchers from Codenomicon and Google Security identified and reported a vulnerability that exposes all data transmissions, encryption keys, usernames, passwords, and other content via a memory leak known as Heartbleed. The vulnerability affects a variety of applications and users are advised to update as soon as possible. Source: http://news.softpedia.com/news/OpenSSL-1-0-1g-Released-to-Prevent-Hackers-from-Eavesdropping-on-Communications-436397.shtml

21. April 8, Softpedia – (International) Information disclosure flaw in Flickr fixed after two months. Yahoo fixed an information disclosure vulnerability in its Flickr photo sharing service which could have been exploited to reveal users’ names and email addresses. Source: http://news.softpedia.com/news/Information-Disclosure-Flaw-in-Flickr-Fixed-After-Two-Months-436497.shtml

22. April 8, Softpedia – (International) Expert finds 8 files vulnerable to SQL injection in Yahoo HK promotions page. Yahoo removed vulnerable files from its Hong Kong promotions subdomain after a security researcher identified and reported several SQL injection vulnerabilities. Source: http://news.softpedia.com/news/Expert-Finds-8-Files-Vulnerable-to-SQL-Injection-in-Yahoo-HK-Promotions-Pages-436377.shtml

23. April 8, The Register – (International) Google kills fake anti-virus app that hit No. 1 on Play charts. Google removed the Virus Shield app from its Google Play store after the app, which briefly was a top download, was found to be a fake app with no functionality. Appbrain estimated that the fake app generated around $40,000 from sales for its developer. Source: http://www.theregister.co.uk/2014/04/08/google_kills_virus_app_after_decompilation_proves_its_a_fake/

Communications Sector

24. April 7, IDG News Service – (National) AT&T cites power problem in U-verse outage. Some AT&T U-verse customers experienced broadband Internet and TV outages for several hours April 7 due to a power issue with the U-verse service. AT&T also stated that voice, Internet, and TV service in Kansas City, Missouri, were also affected before technicians repaired the issue. Source: http://www.computerworld.com/s/article/9247503/AT_amp_T_cites_power_problem_in_U_verse_outage