Thursday, September 10, 2015



Complete DHS Report for September 10, 2015

Daily Report                                            

Top Stories

 • A British Airways flight caught fire on the runway of McCarran International Airport in Las Vegas September 8, leaving 13 people injured. – CNN

4. September 9, CNN – (Nevada) British Airways plane catches fire at Las Vegas airport; 13 injured. A British Airways flight headed to London’s Gatwick Airport caught fire on the runway of McCarran International Airport in Las Vegas September 8, leaving 13 people injured when all 172 passengers and crew members evacuated the plane. The Federal Aviation Administration reported that the aircraft’s left engine caught fire before takeoff. Source: http://www.cnn.com/2015/09/08/us/las-vegas-british-airways-fire/

 • Residents in Red Springs, North Carolina, were issued a 72-hour boil advisory notice beginning September 8 after 2.5 million gallons of stored water was lost due to a broken water line. – WBTW 13 Florence

8. September 8, WBTW 13 Florence – (North Carolina) Car crash leads to boil water advisory in Red Springs. Residents in Red Springs, North Carolina, were issued a 72-hour boil advisory notice beginning September 8 after a vehicle hit a fire hydrant and ruptured a water line September 4. The break caused a 2.5 million gallon water shortage and officials estimated that water service would be restored after several hours. Source: http://wbtw.com/2015/09/08/car-crash-leads-to-dry-water-taps-in-red-springs/

 • California State University officials reported September 8 that the personal information of nearly 80,000 students enrolled in an online sexual violence prevention course was exposed by hackers through a third-party vendor. – Los Angeles Times

13. September 8, Los Angeles Times – (California) Cal State data breach hits nearly 80,000 students. California State University officials reported September 8 that the personal information, including login information, gender, race, sexual identity, and campus-issued email addresses of nearly 80,000 students enrolled in an online sexual violence prevention course through the third-party vendor, We End Violence, was exposed by a vulnerability in the underlying code. Authorities are investigating the breach which involved eight university campuses. Source: http://www.latimes.com/local/lanow/la-me-ln-cal-state-data-breach-20150908-story.html

 • A security researcher discovered seven zero-day stack-based buffer overflow vulnerabilities affecting Advantech’s WebAccess software used in human-machine interfaces (HMI) and supervisory control and data acquisition (SCADA) systems which an attacker could exploit for remote code execution. – Securityweek See item 18 below in the Information Technology Sector
 
Financial Services Sector

1. September 8, U.S. Securities and Exchange Commission – (International) SEC charges video management company executives with accounting fraud. The U.S. Securities and Exchange Commission charged two former executives at KIT Digital September 8 with accounting fraud in connection to schemes in which the executives allegedly manipulated the company’s books and misled investors, including an off-the-books slush fund used to generate payments back to the company while creating a false appearance that the company was being paid for its products, among other deceptions. Source: http://www.sec.gov/news/pressrelease/2015-183.html

2. September 8, U.S. Securities and Exchange Commission – (National) SEC charges three RMBS traders with defrauding investors. The U.S. Securities and Exchange Commission charged three former Nomura Securities International residential mortgage-backed securities (RMBS) traders September 8 with fraud, alleging that the suspects misrepresented RMBS bids, offers, prices, and spreads, generating at least $7 million in fraudulent revenue. The suspects also allegedly invented phantom third-party sellers and fictional offers for bonds that the company already owned.

Information Technology Sector

14. September 9, Securityweek – (International) Microsoft patches Windows vulnerability exploited in the wild. Microsoft released security bulletins patching over 50 vulnerabilities, including a Win32k memory corruption flaw allowing privilege escalation that has been exploited in the wild, a kernel address space layout randomization (ASLR) bypass, a Windows Media Center remote code execution (RCE) vulnerability, a .NET Framework integer overflow, and a memory corruption flaw in the Edge and Internet Explorer Web browsers, among others. Source: http://www.securityweek.com/microsoft-patches-windows-vulnerability-exploited-wild

15. September 9, Securityweek – (International) Adobe patches critical vulnerabilities in Shockwave Player. Adobe released an update addressing two critical memory corruption vulnerabilities in its Shockwave Player for Microsoft Windows versions 12.1.9.160 and earlier that could allow an attacker to take control of an affected system and execute malicious code. Source: http://www.securityweek.com/adobe-patches-critical-vulnerabilities-shockwave-player

16. September 9, Securityweek – (International) ICS flaw disclosures at high levels since Stuxnet attack: Report. Findings from a report published by Recorded Future revealed a dramatic increase in disclosed industrial control system (ICS) vulnerabilities since a 2011 Stuxnet attack targeting Iran’s nuclear facilities, including almost 50 new vulnerabilities discovered in 2015 through mid-July. Source: http://www.securityweek.com/ics-flaw-disclosures-high-levels-stuxnet-attack-report

17. September 8, Securityweek – (International) NETGEAR patches vulnerability in Wireless Management System. NETGEAR released a firmware update addressing a vulnerability in its WMS5316 ProSafe 16AP Wireless Management System running version 2.1.4.15 (Build 1236) in which an attacker could gain unauthorized access and privilege escalation by including a specific symbol in the password value for the system’s login. Source: http://www.securityweek.com/netgear-patches-vulnerability-wireless-management-system

18. September 8, Securityweek – (International) Researcher discloses zero-day flaws in Advantech WebAccess. A security researcher discovered seven zero-day stack-based buffer overflow vulnerabilities affecting Advantech’s WebAccess software versions 8.0 and earlier used in human-machine interfaces (HMI) and supervisory control and data acquisition (SCADA) systems which an attacker could exploit for remote code execution. Source: http://www.securityweek.com/researcher-discloses-zero-day-flaws-advantech-webaccess

19. September 8, SC Magazine – (International) Verified Play Store apps found to be spreading MKero malware. Security researchers from Bitdefender discovered malware dubbed MKero present in at least seven Google Play Store apps that uses a CAPTCHA translation service that evades detection to automatically sign users up for a premium short message service (SMS). Source: http://www.scmagazine.com/bitdefender-details-new-android-malware/article/437384/

Communications Sector

Nothing to report