Friday, January 30, 2015




Complete DHS Report for January 30, 2015

Daily Report

Top Stories

 · Officials identified January 28 the chemicals involved in a CSX train derailment in Allendale County, South Carolina, and reported that about 19,000 gallons of hydrochloric acid and 4,000 gallons of diesel fuel spilled during the incident January 27 leading to continued cleanup efforts.– Columbia The State

4. January 28, Columbia The State – (South Carolina) Authorities identify chemicals that leaked from train wreck. The South Carolina Department of Health and Environmental Control reported January 28 that about 19,000 gallons of hydrochloric acid and other acid solutions in addition to 4,000 gallons of diesel fuel, spilled from rail cars that were damaged during a CSX train derailment in Allendale County January 27. Crews used booms to absorb chemicals that spilled into Lower Three Runs Creek and in the Savannah River where the small creek empties. Source: http://www.thestate.com/2015/01/28/3955948_authorities-identify-chemicals.html?rh=1

 · Investment advisory firm and broker dealer Oppenheimer & Co. will pay $20 million in regulatory fines for improperly selling billions of shares of penny stocks in unregistered offerings on behalf of customers. – USA Today (See item 8) below in the Financial Services Sector

 · The U.S. Federal Aviation Administration proposed a $1.3 million fine on United Airlines for allegedly violating hazardous material regulations. – KDVR 31 Denver

9. January 28, KDVR 31 Denver – (National) United charged with $1.3 million penalty for hazardous material violation. The U.S. Federal Aviation Administration (FAA) proposed a $1.3 million fine on United Airlines for allegedly violating hazardous material regulations after the FAA found 120 cases in 4 cities during inspections where the airline failed to follow regulations. Most of the violations involved failure to notify the pilot of accurate information about hazardous materials onboard. Source: http://kdvr.com/2015/01/28/united-charged-with-1-3-million-penalty-for-hazardous-material-violation/

 · A worker at the Loma Linda University Medical Center in California was arrested January 27 for allegedly stealing $360,000 worth of Apple MacBooks and iPads from her job site at the medical center. – Riverside Press-Enterprise

15. January 28, Riverside Press-Enterprise – (California) Redlands: Medical center worker arrested in $360,000 embezzlement case. A worker at the Loma Linda University Medical Center in California was arrested January 27 for allegedly stealing $360,000 worth of Apple MacBooks and iPads from her job site at the medical center. Source: http://www.pe.com/articles/redlands-759123-home-embezzlement.html

Financial Services Sector

8. January 27, USA Today – (International) Oppenheimer hit with $20M in fines. Investment advisory firm and broker dealer Oppenheimer & Co. will pay $20 million in regulatory fines for improperly selling billions of shares of penny stocks in unregistered offerings on behalf of customers, failing to file Suspicious Activity Reports, and withholding and remitting more $3 million in backup withholding taxes from sale proceeds. Source: http://www.usatoday.com/story/money/2015/01/27/oppenheimer-sec-fine/22396695/

Information Technology Sector

23. January 29, Dark Reading – (International) ZeroAccess click-fraud botnet back in action again. Researchers at Dell SecureWorks reported that the ZeroAccess botnet that was disrupted by authorities in 2013, resurfaced and is targeting major search engines and browsers to perpetrate click fraud templates to compromised systems. Source: http://www.darkreading.com/zeroaccess-click-fraud-botnet-back-in-action-again/d/d-id/1318865

24. January 28, Securityweek– (International) Apple fixes tens of vulnerabilities in OSX, iOS, Safari, Apple TV. Apple released updates for OSC, iOS, Safari and Apple TV addressing a total of 54 security issues and the disabling of all Flash Player plugins prior to versions 16.0.0.296 and 13.0.0.264 following recent reports of Adobe Flash Player zero-days. Source: http://www.securityweek.com/apple-fixes-tens-vulnerabilities-os-x-ios-safari-apple-tv

25. January 27, Threatpost – (International) GHOST glibc remote code execution vulnerability affects all Linux systems. Researchers with Qualys discovered a critical vulnerability in the Linux GNU C Library (glibc) known as GHOST that can be triggered by the library’s gethostbyname functions that could allow attackers to execute code and remotely gain control of Linux machines. Source: https://threatpost.com/ghost-glibc-remote-code-execution-vulnerability-affects-all-linux-systems/110679

Communications Sector

26. January 28, KENS 5 San Antonio – (Texas) Cut fiber cable causes service disruption for Bandera, Bexar counties. Internet and cellphone services were interrupted for an unknown number of AT&T, Verizon, Cricket, and Sprint customers January 28 in Bandera and Bexar counties in San Antonio after fiber cables were accidentally cut by another company. AT&T confirmed that service in Bandera was restored after several hours. Source: http://www.kens5.com/story/news/2015/01/28/bandera-bexar-internet-connection-cell-phone/22507575/