Tuesday, October 14, 2014



Complete DHS Report for October 14, 2014

Daily Report

Top Stories

 · The North Dakota Department of Health announced that about 1,000 barrels of brine spilled from a corroded pipeline at an Oasis-owned well site in McKenzie County October 9. – United Press International

1. October 10, United Press International – (North Dakota) North Dakota spill reaches waterway. The North Dakota Department of Health announced that about 1,000 barrels of brine spilled from a corroded pipeline at an Oasis-owned well site in McKenzie County October 9. Officials reported that a majority of the water brine was contained to the site and an unknown amount spilled onto adjacent land and into a stream. Source: http://www.upi.com/Business_News/Energy-Resources/2014/10/10/North-Dakota-spill-reaches-waterway/1491412937745/

 · Residents in Mahtomedi, Minnesota, were warned to stay out of Lost Lake after approximately 25,000 gallons of raw sewage spilled into the lake October 4 when a force main broke. – White Bear Press

14. October 8, White Bear Press – (Minnesota) Raw sewage enters Lost Lake. Residents in Mahtomedi were warned to stay out of Lost Lake after approximately 25,000 gallons of raw sewage spilled into the lake October 4 when a force main broke. Authorities redirected the waste water into a new sewer pipe and are monitoring bacteria levels in the lake water. Source: http://www.presspubs.com/white_bear/news/article_e8fc5ca6-4e79-11e4-aa07-eb5194827534.html

 · Crews reached full containment October 9 of the 97,000-acre King Fire in the Eldorado National Forest near Sacramento, California. – Los Angeles Times

21. October 9, Los Angeles Times – (California) 97,000-acre King fire is fully contained, officials say. Crews reached full containment October 9 of the 97,000-acre King Fire in the Eldorado National Forest near Sacramento which forced thousands of residents to evacuate and destroyed 12 homes and 68 other structures. Source: http://www.latimes.com/local/lanow/la-me-ln-king-fire-contained-20141009-story.html

 · Dairy Queen representatives reported October 9 that the payment systems for 395 of its stores nationwide were compromised by the Backoff malware, exposing the personal and financial information of less than 600,000 customers. – Bloomberg News

29. October 9, Bloomberg News – (National) Dairy Queen customer data compromised by Backoff malware. Dairy Queen representatives reported October 9 that the payment systems for 395 of its stores nationwide were compromised by the Backoff malware, exposing the personal and financial information of less than 600,000 customers who used payment cards at affected locations between August and September. Source: http://www.bloomberg.com/news/2014-10-09/dairy-queen-says-customer-data-compromised-by-backoff-malware.html

Financial Services Sector

5. October 10, KTVB 7 Boise – (Idaho) Police: Counterfeiting ring suspects were heavily armed. Police arrested a Boise woman and a Miami, Florida man at a residence in Boise as part of an investigation into a counterfeit payment card ring linked to the arrest of a Miramar, Florida man in September who allegedly purchased around $12,000 in gift cards using fake payment cards. Police stated that they seized payment card counterfeiting equipment at the home along with several firearms. Source: http://www.ktvb.com/story/news/crime/2014/10/09/guns-armor-arrest/16996199/

For additional stories, see items 29 above in Top Stories and 31 below from the Commercial Facilities Sector

31. October 9, WOFL 35 Orlando – (Florida) G.H. Bass & Co. reports data breach at Orlando store. G. H. Bass & Co. officials reported October 9 that an unauthorized party attached a skimming device to a cash register at one of the company’s stores in Orlando, and that the device is believed to have captured the personal information, including name and payment card data, of customers who shopped at the location between about August 13 and September 12. Source: http://www.myfoxorlando.com/story/26751393/gh-bass-co-reports-data-breach-at-orlando-store

Information Technology Sector

26. October 10, Securityweek – (International) New Rovnix variant targets users in EU countries. Researchers with CSIS Security Group identified a new variant of the Rovnix malware currently targeting users in European Union countries that includes a new domain generation algorithm (DGA), changes to avoid detection, and removes a bootkit component. Source: http://www.securityweek.com/new-rovnix-variant-targets-users-eu-countries

27. October 9, Threatpost – (International) Shellshock exploits spreading Mayhem botnet malware. Researchers at Malware Must Die reported detecting a number of Linux and UNIX systems infected by several IP addresses belonging to the Mayhem botnet. The botnet was found to be pinging Internet-facing systems looking for the Shellshock vulnerability in order to drop a new remote installer written in Perl. Source: http://threatpost.com/shellshock-exploits-spreading-mayhem-botnet-malware/108793

Communications Sector

28. October 9, Missoula Missoulian – (Montana) CenturyLink internet service restored in western Montana. Internet service for CenturyLink customers in portions of western Montana was restored after several hours following inadvertent damage to a fiber optic line October 9. Source: http://missoulian.com/news/local/updated-centurylink-internet-service-restored-in-western-montana/article_35e48c18-4ff7-11e4-bb12-87e430b8d70c.html