Friday, June 5, 2015




Complete DHS Report for June 5, 2015

Daily Report

Top Stories

 · Federal officials released a report June 3 that revealed that the 10.6-mile pipeline in California that failed and spilled over 100,000 gallons of crude into the Pacific Ocean in May was suffering from extensive corrosion and a metal loss of over 45 percent of the pipe wall’s thickness in the area of the break. – Los Angeles Times

2. June 3, Los Angeles Times – (California) Ruptured pipeline was corroded, Federal regulators say. The U.S. Pipeline and Hazardous Materials Safety Administration released preliminary findings June 3 revealing that the 10.6-mile pipeline that failed and spilled over 100,000 gallons of crude into the Pacific Ocean in May was suffering from extensive corrosion and a metal loss of over 45 percent of the pipe wall’s thickness in the area of the break. Despite the findings, investigators believe the corrosion was not the cause of the failure. Source: http://www.latimes.com/local/lanow/la-me-ln-oil-spill-pipeline-20150603-story.html

 · Interstate 380 near Mount Pocono in Pennsylvania was closed for several hours June 3 due to an accident that involved 2 semi-trucks and an Academy Bus, killing 3 people and injuring 13 others. – WPVI 6 Philadelphia

8. June 3, WPVI 6 Philadelphia – (Pennsylvania) Bus driver id’d in deadly I-380 crash in Poconos. Interstate 380 near Mount Pocono was closed for several hours June 3 due to an accident that involved 2 semi-trucks and an Academy Bus, killing 3 people and injuring 13 others. Source: http://6abc.com/traffic/2-trucks-bus-collide-in-poconos-leaving-3-dead-many-hurt/764031/

 · The Los Angeles Police Department reported June 4 that the Men’s Central Jail in downtown Los Angeles remains on lock down after a June 3 fight began between 80 inmates, resulting in 4 non-life threating injuries. – Los Angeles Daily News

18. June 4, Los Angeles Daily News – (Los Angeles) 4 inmates injured after riot breaks out at L.A. County jail. The Los Angeles Police Department reported June 4 that the Men’s Central Jail in downtown Los Angeles remains on lock down after a June 3 fight began between 80 inmates, resulting in 4 non-life threating injuries. Police authorities resolved the disturbance. Source: http://www.dailynews.com/general-news/20150603/4-inmates-injured-after-riot-breaks-out-at-la-county-jail

 · Officials launched an investigation for the May 21 incident where an act of vandalism against a dam on Alameda Creek allowed 49 million gallons of water to flow into San Francisco Bay. – KQED 9 San Francisco

24. June 3, KQED 9 San Francisco – (California) EPA probes Fremont vandalism that ruined dam, allowed water to escape. The U.S. Environmental Protection Agency launched an investigation for the May 21 incident where an act of vandalism against a dam on Alameda Creek allowed 49 million gallons of water to flow into San Francisco Bay, leading to the loss of over 150 acre-feet of water. Officials awarded a $2.4 million contract to replace the dam the week of May 31. Source: http://ww2.kqed.org/news/2015/06/03/epa-probes-fremont-vandalism-that-ruined-dam-allowed-water-to-escape

Financial Services Sector

5. June 4, Chicago Sun-Times – (Illinois) Police: ATMs stolen from businesses in West Side burglaries. Chicago Police issued an alert and are seeking information after 5 ATMs were stolen from West Side businesses in Chicago between April and June. In two instances, the thieves pulled the electric meter from the back of the ATMs to disable surveillance and alarm systems. Source: http://chicago.suntimes.com/crime/7/71/661396/police-atms-stolen-businesses-west-side-burglaries

For another story, see item 21 below in the Information Technology Sector

Information Technology Sector

20. June 4, Softpedia – (International) Hoard of vulnerabilities found in SysAid Help Desk. A security researcher discovered 11 vulnerabilities in SysAid Help Desk version 14.4, including a flaw that could allow an attacker to create an administrator account without any authentication, and an exploit in which an attacker could perform remote execution by uploading arbitrary files via directory transversal attacks. The software is used by over 10,000 organizations worldwide. Source: http://news.softpedia.com/news/Hoard-of-Vulnerabilities-Found-in-SysAid-Help-Desk-483295.shtml

21. June 3, Securityweek – (International) Cloud providers hit hard by DDoS attacks in Q1: VeriSign. VeriSign reported research finding that information technology (IT) services and cloud providers received over one third of all distributed denial-of-service (DDoS) attacks in the first quarter of 2015, followed by the government and financial services sectors, where the frequency of attacks increased by 3 percent. The total number of attacks increased seven percent since the last quarter of 2014. Source: http://www.securityweek.com/cloud-providers-hit-hard-ddos-attacks-q1-verisign

22. June 3, Threatpost – (International) Zero-day disclosed in Unity Web Player. Unity Technologies acknowledged bug reports and released details about a zero-day vulnerability in the company’s Unity Web Player browser plugin in which an attacker could load or inject a malicious Unity app in order to use a victim’s credentials to read messages or gain access to online services. Source: https://threatpost.com/zero-day-disclosed-in-unity-web-player/113124

Communications Sector

23. June 3, Fort Morgan Times – (Colorado) Charter outage causes problems. Customers of Charter Communications in the Fort Morgan area lost Internet service for hours June 3 after a utility contractor inadvertently cut a fiber line. Source: http://www.fortmorgantimes.com/ci_28248371/charter-outage-causes-problems