Friday, May 23, 2014




Complete DHS Report for May 23, 2014

Daily Report

Top Stories

 • Several flights to and from Denver International Airport in Colorado were diverted, delayed, or canceled May 21 due to a tornado warning and a thunderstorm that dropped hail, damaging six jets in Frontier Airlines’ Airbus fleet. – KMGH 7 Denver

9. May 22, KMGH 7 Denver – (Colorado) Tornado warning disrupts DIA: Frontier jets damaged by hail, flights diverted and canceled by storm. Dozens of flights to and from the Denver International Airport in Colorado were diverted, delayed, or canceled May 21 due to a tornado warning and a large thunderstorm that dropped hail, damaging six jets in Frontier Airlines’ Airbus fleet. Source: http://www.thedenverchannel.com/news/front-range/denver/no-flights-moving-at-dia-during-storm

 • Officials advised nearly 5,000 patrons who ate at a Red Robin restaurant in Springfield, Missouri, between May 8 and 16 to obtain a vaccination for hepatitis A after an employee was diagnosed with the virus. – KOZL 27 Springfield; KOLR 10 Springfield (See item 13)

13. May 22, KOZL 27 Springfield; KOLR 10 Springfield – (Missouri) Health Department: 5,000 people may be affected from hepatitis A at Red Robin. Health officials advised nearly 5,000 patrons who ate at a Red Robin restaurant in Springfield, Missouri, between May 8 and 16 to obtain a vaccination for hepatitis A due to a report that an employee at the restaurant was diagnosed with the virus. The employee cannot return to work until granted medical clearance and has not been inside the restaurant since May 16. Source: http://www.ozarksfirst.com/story/d/story/health-department-5000-people-may-be-affected-from/32095/_jgAfk31R0GKATRf4ExUAQ

 • Two former executives of an Iowa-based company were charged May 21 with bribing a public official and selling shell eggs tainted with the strain of Salmonella connected to a 2010 outbreak that sickened at least 1,900 people and prompted the recall of 550 million eggs. – Associated Press

14. May 21, Associated Press – (Iowa) Iowa egg company, 2 execs charged in 2010 outbreak. Quality Egg LLC and two former executives of the Iowa-based company were charged May 21 with selling shell eggs tainted with the strain of Salmonella connected to a 2010 outbreak that sickened at least 1,900 people and prompted the recall of 550 million eggs. The men were also charged with bribing a public official in an alleged 2010 payment meant to influence U.S. Department of Agriculture inspectors to approve shell eggs that failed to meet federal standards. Source: http://www.press-citizen.com/story/news/crime-and-courts/2014/05/21/iowa-egg-company-2-execs-charged-in-2010-salmonells-outbreak/9373565/

 • Crews worked towards containing a wildfire May 22 that burned about 4,500 acres in a canyon between Sedona and Flagstaff, Arizona, while officials warned roughly 3,200 residents to be ready to evacuate if the fire advances. – Associated Press

20. May 22, Associated Press – (Arizona) Many flee Arizona towns as wildfire grows in scenic canyon popular with hikers, campers. Fire crews continued work towards containing a wildfire May 22 that burned about 4,500 acres in a canyon between Sedona and Flagstaff. Officials warned roughly 3,200 residents to be ready to evacuate if the fire advances while more than 100 businesses and homes in a 2-mile stretch near the Slide Rock State Park were already evacuated. Source: http://www.foxnews.com/us/2014/05/22/many-flee-arizona-towns-as-wildfire-grows-in-scenic-canyon-popular-with-hikers/

Financial Services Sector

5. May 22, U.S. Securities and Exchange Commission – (New York) SEC charges vitamin company’s former board member and brothers with insider trading. The U.S. Securities and Exchange Commission charged a former director of Long Island-based NBTY Inc., and four others with using nonpublic information on NBTY’s sale to The Carlyle Group to engage in insider trading and collect illicit profits totaling $175,000. The accused agreed to pay more than $500,000 in a settlement to resolve the charges. Source: http://www.sec.gov/News/PressRelease/Detail/PressRelease/1370541879100

6. May 22, ParkLabrea News/Beverly Press – (California) ‘Purse packing bandit’ robs Chase. Police believe that a suspect known as the “Purse-Packing Bandit” was responsible for the robbery of a Chase Bank branch in the Los Angeles area May 17, the eighth robbery linked to the suspect since October 2012. Source: http://parklabreanewsbeverlypress.com/news/2014/05/%E2%80%98purse-packing-bandit%E2%80%99-robs-chase/

7. May 21, IDG News Service – (International) Point-of-sale attacks accounted for a third of data breaches in 2013, report says. Trustwave released a report on data breaches that the company investigated in 2013, which found that e-commerce intrusions accounted for 54 percent of investigated data breaches, while point-of-sale (POS) system intrusions constituted 33 percent of data breaches, among other findings. Source: http://www.networkworld.com/news/2014/052114-point-of-sale-attacks-accounted-for-a-281793.html

8. May 21, The Register – (International) PayPal Manager bug left web stores wide open to cyber-burglars. PayPal closed a vulnerability in its PayPal Manager that allowed attackers to change merchants’ passwords, hijack accounts, and order merchandise for free. The vulnerability was closed after a researcher at Securatary identified and reported it to PayPal, and the company stated that there was no evidence that customer information had been compromised. Source: http://www.theregister.co.uk/2014/05/21/paypal_account_hijack_vuln_patched/

Information Technology Sector

26. May 22, Help Net Security – (International) Sophisticated Google Drive phishing campaign persists. Researchers at Symantec reported that a persistent phishing campaign targeting Google users is using a Google Drive phishing page that appears more legitimate than most due to it being served over SSL from the Google Drive service itself. Users who fall victim to the phishing page are also redirected to another malicious page and may be exposed to malware infection. Source: http://www.net-security.org/secworld.php?id=16908

27. May 22, Softpedia – (International) Hackers bypass iOS 7/iCloud activation lock, free thousands of iPhones (some potentially stolen). Two researchers created a service which can unlock devices locked by Apple’s iCloud Activation Lock system, allowing users to return locked devices to service. The same service could be used by criminals to unlock stolen Apple devices however, and the researchers contacted Apple to inform them of the flaw that allows the unlocking. Source: http://news.softpedia.com/news/Hackers-Bypass-iOS-7-Activation-Lock-Free-Thousands-of-iPhones-443323.shtml

28. May 21, IDG News Service – (International) New Internet Explorer zero-day details released after Microsoft fails to patch. Details of an unpatched zero-day vulnerability in Microsoft’s Internet Explorer (IE) 8 browser were released by HP’s Zero Day Initiative after the researcher that discovered the flaw reported it 6 months ago. The vulnerability is classified as a use-after-free flaw and could allow an attacker to gain the same user rights as a user who is brought to a malicious Web site. Source: http://www.networkworld.com/news/2014/052214-new-internet-explorer-zero-day-details-281820.html

29. May 21, SC Magazine – (International) A billion shortened URLs go down following DoS attack. Link-shortening service is.gd was disrupted May 18 due to a denial-of-service (DoS) attack that made around a billion links shortened by the service unavailable. Source: http://www.scmagazine.com/a-billion-shortened-urls-go-down-following-dos-attack/article/347958/

For another story, see item 7 above in the Financial Services Sector

Communications Sector

30. May 22, Mohave Valley Daily News – (Arizona) Cable cut knocks out service for 12 hours: Frontier customers lose phone, Internet. Frontier Communications customers in the Bullhead City area lost telephone, Internet, and cable services for roughly 12 hours May 21 after a cable owned by another company was damaged. Crews restored service after repairing the cable. Source: http://www.mohavedailynews.com/news/cable-cut-knocks-out-service-for-hours-frontier-customers-lose/article_c5e6393e-e192-11e3-bc58-001a4bcf887a.html