Wednesday, July 23, 2014





Complete DHS Report for July 23, 2014

Daily Report

Top Stories



· Sysco Corporation entered into an agreement with the State of California and will pay $19.4 million in restitution settle reports that the company stored over 400,000 meat, produce, and dairy products in unsafe conditions. – Food Poisoning Bulletin


11. July 20, Food Poisoning Bulletin – (California) Sysco pays $19.4 million for dangerous food storage practices. Sysco Corporation entered into an agreement with the State of California and will pay $19.4 million in restitution settle reports that the company stored over 400,000 meat, produce, and dairy products in unsafe conditions, including unrefrigerated and dirty storage units, between July 2009 and August 2013. An investigation by health officials also revealed that the products were delivered to restaurants, hospitals, and schools in unrefrigerated cars, and there were 25 unregistered and unrefrigerated drop sites from Sacramento to San Diego. Source: http://foodpoisoningbulletin.com/2014/sysco-pays-19-4-million-for-dangerous-food-storage-practices/

 · Crews reached 75 percent containment July 21 of the Buzzard Complex series of fires after it burned 396,000 acres in Oregon. – KGW 8 Portland; Associated Press



16. July 21, KGW 8 Portland; Associated Press – (Oregon) Oregon’s largest fire complex 396,000 acres. Crews reached 75 percent containment July 21 of the Buzzard Complex after burning 396,000 acres in Oregon. Fire departments worked to contain several other complex fires in the State that combined burned more than 200,000 acres by July 20. Source: http://www.kgw.com/news/Largest-Oregon-wildfire-burning-nearly-400000-acres-267962211.html

 · Police are searching for two masked robbers that stole over $180,000 from the Caesars Atlantic City casino in New Jersey July 21. – WCAU 10 Philadelphia



22. July 22, WCAU 10 Philadelphia – (New Jersey) Masked robbers steal over $180K from Caesars casino. Police are searching for two masked robbers that stole over $180,000 from the Caesars Atlantic City casino in New Jersey July 21 when at least one suspect brandished a gun and both individuals stole two plastic cash boxes holding the money. Source: http://www.nbcphiladelphia.com/news/local/Masked-Robbers-Steal-Over-180K-From-Caesars-Casino-268027331.html

 · Authorities are investigating the cause of a 3-alarm fire that damaged or destroyed 35 units and affected 15 more at a Houston apartment complex July 21, displacing up to 135 residents. – KPRC 2 Houston



24. July 21, KPRC 2 Houston – (Texas) Dozens displaced after 3-alarm apartment fire in northwest Houston. Authorities are investigating the cause of a 3-alarm fire that damaged or destroyed 35 units and affected 15 more at a Houston apartment complex July 21. No injuries were reported and up to 135 residents were displaced by the blaze. Source: http://www.click2houston.com/news/breaking-3alarm-apartment-fire-in-northwest-houston/27052920

Financial Services Sector

2. July 22, Securityweek – (International) Attackers bypass 2FA systems used by banks in ‘Operation Emmental’. Researchers with Trend Micro released a report July 22 detailing a cybercrime campaign targeting banks in Europe and Japan dubbed “Operation Emmental” that uses computer and Android mobile device malware to steal users’ banking credentials and two-factor authentication (2FA) tokens. The malware used in the campaign can install fake Secure Sockets Layer (SSL) certificates, delete itself after use, and perform other actions to trick users. Source: http://www.securityweek.com/attackers-bypass-2fa-systems-used-banks-operation-emmental

3. July 21, Krebs on Security – (National) Banks: Card breach at Goodwill Industries. Goodwill Industries stated that it is working with the U.S. Secret Service to investigate a possible breach of payment card data from some of its U.S. stores. The company stated that it became aware of a possible breach July 18 after they were contacted by a payment card industry fraud investigation unit and federal authorities. Source: http://krebsonsecurity.com/2014/07/banks-card-breach-at-goodwill-industries/


4. July 21, KVTK 3 Phoenix – (California) 147 fraudulent debit, credit cards seized; 2 people arrested. Two people were arrested July 21 in Blythe, California, by Yuma Sector Border Patrol agents after 147 fraudulent debit and pre-paid cards were found during a vehicle stop. Source: http://www.azfamily.com/news/147-fraudulent-debit-credit-cards-seized-2-people-arrested-267992761.html

5. July 21, NextGov – (National) Significant deficiencies found in Treasury’s computer security. Two reports by the Government Accountability Office released the week of July 14 found new computer security vulnerabilities at the U.S. Department of the Treasury’s Bureau of Fiscal Service and existing security issues at the Federal Deposit Insurance Corporation that remain unaddressed from 2012 which could compromise reporting efficiency or the security of data. Source: http://www.nextgov.com/cybersecurity/2014/07/significant-deficiencies-found-treasurys-computer-security/89144/
  
Information Technology Sector

20. July 22, Securityweek – (International) iOS backdoors expose personal data: Researcher. A security researcher presenting at a security conference reported that Apple’s iOS mobile operating system contains several undocumented services which could be used in some circumstances to access email, location data, media, and other personal data. Apple stated that the services are used for diagnostic purposes and can only be used to access data with user approval. Source: http://www.securityweek.com/ios-backdoors-expose-personal-data-researcher

21. July 21, V3.co.uk – (International) Fresh threat to critical infrastructure found in Havex malware. Researchers at FireEye analyzed a variant of the Havex malware (also known as Fertger or Peacepipe) and found that it contained an open-platform communication (OPC) scanner that could be used to target supervisory control and data acquisition (SCADA) systems used by several industries, including power plants and water utilities. Source: http://www.v3.co.uk/v3-uk/news/2356410/fresh-threat-to-critical-infrastructure-found-in-havex-malware

Communications Sector

Nothing to report